Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/MHLNXfcyOVerh8B_XN0VyR7_yNU.cer
File: MHLNXfcyOVerh8B_XN0VyR7_yNU.cer (raw, json)
Hash identifier: Igzzsm94ev45X1y323867E+bILMJHVllHdaFPjSONsA=
Subject key identifier: 30:72:CD:5D:F7:32:39:57:AB:87:C0:7F:5C:DD:15:C9:1E:FF:C8:D5
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01929ED15673085375205EA607EC77E2AB53
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/e4/33b186-ef42-4517-b32f-5e974377600c/1/MHLNXfcyOVerh8B_XN0VyR7_yNU.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/e4/33b186-ef42-4517-b32f-5e974377600c/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Fri 18 Oct 2024 08:49:32 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 43955
AS: 58262
IP: 5.61.24.0/21
IP: 92.119.56.0/22
IP: 185.73.112.0/22
IP: 2a05:2d80::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:9e:d1:56:73:08:53:75:20:5e:a6:07:ec:77:e2:ab:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Oct 18 08:49:32 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3072cd5df7323957ab87c07f5cdd15c91effc8d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:0f:78:70:54:3d:32:0f:13:89:19:c1:e5:dc:
c5:67:c6:5a:64:a3:c6:10:e9:c4:6b:e2:34:c7:00:
af:9b:f7:72:c9:15:d9:f0:ac:cc:94:fd:a2:d9:97:
ac:86:ed:7b:53:3b:a4:29:96:4c:17:f6:6a:ed:ca:
6c:65:bf:46:f6:69:a9:a1:24:79:e3:18:9b:4d:59:
70:76:37:c0:0a:9b:89:76:d2:40:5f:d5:4d:11:f7:
17:cf:76:bd:e4:45:5e:5a:43:d1:6c:53:7e:6c:87:
15:f4:0b:74:5b:44:63:99:29:f3:22:e6:40:e1:9e:
b5:ec:53:86:fb:f4:cb:8f:8e:5e:c6:0a:ec:14:98:
ac:f0:d6:0c:c2:cb:49:d9:53:82:79:bc:37:72:96:
63:ab:d8:9f:3c:74:22:b6:5c:42:0c:25:7e:e9:fc:
b7:62:27:31:aa:1b:ed:a1:12:be:68:f2:48:96:84:
2c:a2:69:bb:b4:2c:b2:c6:dc:2b:f8:93:21:40:6c:
8e:51:e7:31:6e:9f:d2:aa:59:d2:04:13:7e:2a:6f:
63:6f:7f:44:ff:54:28:4d:6b:ba:d4:a6:c5:c6:c9:
d4:2e:07:bb:d6:9b:7a:af:4c:be:75:92:8d:e1:e0:
2d:4c:8f:de:62:9b:db:3f:31:a0:c1:c2:56:87:95:
fd:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:72:CD:5D:F7:32:39:57:AB:87:C0:7F:5C:DD:15:C9:1E:FF:C8:D5
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/33b186-ef42-4517-b32f-5e974377600c/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/33b186-ef42-4517-b32f-5e974377600c/1/MHLNXfcyOVerh8B_XN0VyR7_yNU.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.61.24.0/21
92.119.56.0/22
185.73.112.0/22
IPv6:
2a05:2d80::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
43955
58262
Signature Algorithm: sha256WithRSAEncryption
6c:54:61:6b:91:0d:c7:17:a5:ac:e5:c3:81:06:76:37:fe:fc:
f8:ee:c7:67:fa:2d:58:d7:8b:4d:33:52:1c:8f:d6:dc:bd:6b:
f0:b1:e5:8a:90:3d:6b:e6:77:5d:d6:d2:c6:6b:9e:9c:1f:c3:
43:30:57:d3:1d:d0:14:0e:7e:ba:5c:fc:ce:89:23:7d:23:dc:
a9:e4:30:77:0b:a4:c3:97:5a:4f:fb:b3:3c:48:e1:40:cf:73:
bd:ed:b7:9d:29:52:1b:29:e0:3d:97:ab:0d:5b:ab:16:5c:74:
c4:6d:e8:c2:c7:8e:d5:c8:34:4d:e9:52:1f:20:bc:79:4a:39:
55:c5:7b:21:c3:31:cc:fd:dc:8b:6b:6c:99:61:7a:9e:f7:34:
e2:0b:9f:00:cf:19:ab:82:42:2f:2f:24:cf:82:dd:43:6a:cc:
11:65:78:17:c5:13:3b:02:dd:af:94:7a:34:2e:82:6c:aa:96:
54:a3:fb:37:55:5b:81:e0:74:c8:a8:22:5b:a6:f4:30:2e:47:
84:d8:2b:eb:d6:5b:bb:8d:6a:cb:77:77:fd:f6:30:ee:d6:84:
7f:38:82:19:12:9e:12:86:31:27:4c:42:a2:0b:da:b9:3c:2a:
2d:22:07:98:c7:6d:c6:9d:71:a9:28:9b:d1:04:29:9d:ef:e7:
43:ef:8b:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 18:18:09 2024 by rpki-client on console-fra.rpki-client.org