Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/MDCZQabYT6Tb3a8PTs2Z-fBDz9w.cer
File: MDCZQabYT6Tb3a8PTs2Z-fBDz9w.cer (raw, json)
Hash identifier: dDGIptv7O6hFlsgYFVgjd4VtjrhGNirSGCTfNHgrsAU=
Subject key identifier: 30:30:99:41:A6:D8:4F:A4:DB:DD:AF:0F:4E:CD:99:F9:F0:43:CF:DC
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC9BCE2EDC697228453EA4EEE930F3BB8
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/bf/f1af90-355c-484b-b923-d31d4cb1b129/1/MDCZQabYT6Tb3a8PTs2Z-fBDz9w.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/bf/f1af90-355c-484b-b923-d31d4cb1b129/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 10:34:08 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 206994
AS: 209011
IP: 94.177.128.0/24
IP: 193.5.147.0/24
IP: 194.28.44.0/24
IP: 2a0c:8180::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:e2:ed:c6:97:22:84:53:ea:4e:ee:93:0f:3b:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 10:34:08 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=30309941a6d84fa4dbddaf0f4ecd99f9f043cfdc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:2e:88:4a:eb:3e:35:68:10:31:2c:81:b4:ef:
40:58:35:bb:25:ee:40:18:e0:95:31:3e:cc:fc:f9:
a7:50:fa:01:04:45:53:ed:74:af:0f:f2:b8:d0:19:
8c:4f:00:0e:78:f8:26:11:74:1f:a7:de:9b:1b:3a:
3e:52:36:d0:ad:47:e8:4a:5f:f0:5f:42:a8:65:db:
9e:a9:91:c7:07:59:e5:b5:c9:f1:2d:65:fe:e7:33:
be:3e:39:23:82:54:07:b5:0b:34:76:84:8a:62:d8:
0b:54:82:0e:58:ac:15:d0:8c:db:15:bb:7a:19:d0:
45:d9:86:c5:5a:1e:69:8d:09:72:ad:bb:4c:12:0c:
0f:68:bf:27:9b:d4:da:5c:25:33:51:b3:8d:d5:8d:
5d:07:ce:49:79:b4:96:4b:a1:8b:5e:f5:50:d9:47:
1c:05:52:8a:4f:ff:43:a7:0e:97:64:9c:0b:11:eb:
46:3c:f2:79:09:65:4d:19:d7:7b:99:40:f3:7d:59:
f7:d7:8c:78:24:12:68:2f:5e:61:cb:d4:a4:71:39:
08:ac:f6:95:03:cb:89:81:8d:37:9e:f7:fa:19:9b:
21:8a:5d:f9:a2:c7:b3:c8:38:6e:0b:75:d3:b1:39:
45:4b:12:40:fc:6f:7a:a6:e3:ef:58:11:63:15:c6:
0a:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:30:99:41:A6:D8:4F:A4:DB:DD:AF:0F:4E:CD:99:F9:F0:43:CF:DC
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/f1af90-355c-484b-b923-d31d4cb1b129/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/f1af90-355c-484b-b923-d31d4cb1b129/1/MDCZQabYT6Tb3a8PTs2Z-fBDz9w.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.177.128.0/24
193.5.147.0/24
194.28.44.0/24
IPv6:
2a0c:8180::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
206994
209011
Signature Algorithm: sha256WithRSAEncryption
1d:c0:b3:70:9e:25:65:d8:e2:82:0e:12:ea:fa:22:d9:d8:92:
17:d1:24:6d:b4:5f:3b:f3:5e:af:3d:68:a9:61:54:dd:bd:32:
24:83:e9:c0:ae:73:ef:2b:b1:46:4a:cd:e4:a2:27:3c:36:d5:
bc:85:2e:ec:6e:2b:28:1c:67:53:a2:b4:b4:e7:a4:5e:ec:63:
e8:40:29:b3:b0:7c:26:75:cd:76:89:de:43:76:b1:7f:15:08:
71:ca:a3:7c:e1:b2:cc:c3:d4:0d:db:0b:fa:69:27:6d:3f:af:
42:6a:c3:0f:a8:0a:3e:aa:b6:87:a6:f8:a7:6b:62:78:3e:99:
a8:7b:bf:67:c7:8e:c5:ad:2c:58:24:dd:77:2d:06:18:5a:a4:
a4:c5:51:20:9c:68:6e:c1:f5:d9:50:42:d8:3e:dd:78:bd:dc:
ba:e4:09:41:71:34:84:ea:10:88:d6:29:3b:8e:40:4e:50:32:
20:d0:cd:b1:2f:89:e8:c1:23:2b:f6:ed:e3:06:64:b1:71:7a:
4a:4d:b7:cb:58:3e:af:8b:43:06:28:32:cf:3f:8e:eb:6f:f2:
d5:51:9f:d2:5b:5a:7f:a7:08:95:24:8e:77:ab:13:fa:b4:3f:
1d:fe:f5:8f:76:8f:19:c3:5f:32:d7:d9:fd:f1:18:73:1c:1e:
9d:b1:7f:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:07:37 2024 by rpki-client on console-fra.rpki-client.org