Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/MJKxFwYvYGX6oc39OJFeS7nJJLs.cer
File: MJKxFwYvYGX6oc39OJFeS7nJJLs.cer (raw, json)
Hash identifier: 3024R6I1quhbouoXFby139n1UUBQ3ZKPKu+lZMNk6eE=
Subject key identifier: 30:92:B1:17:06:2F:60:65:FA:A1:CD:FD:38:91:5E:4B:B9:C9:24:BB
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC7936F67F6CDE5D48AA08B0CEF76B520
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/b8/e74b81-5ff7-4823-9267-0d3e662b0ee0/1/MJKxFwYvYGX6oc39OJFeS7nJJLs.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/b8/e74b81-5ff7-4823-9267-0d3e662b0ee0/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 00:29:37 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 203745
IP: 185.121.140.0/22
IP: 2a03:8d80::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:93:6f:67:f6:cd:e5:d4:8a:a0:8b:0c:ef:76:b5:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 00:29:37 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3092b117062f6065faa1cdfd38915e4bb9c924bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:64:81:4c:21:86:ed:92:13:76:87:8a:ed:24:
60:dd:3e:4f:b6:37:1d:e4:c6:47:f5:e7:e7:48:91:
9f:73:f2:c4:b3:ef:42:4a:15:f8:0d:50:96:d0:ad:
71:ac:87:f7:e4:3e:b5:fc:85:a2:6d:65:97:a5:ee:
86:0c:03:b6:e8:84:8d:68:ac:ef:be:a3:77:cc:87:
59:01:1d:e3:86:45:67:b2:3f:4f:59:98:e5:9f:cb:
30:be:86:9e:82:f1:9b:6d:bd:d8:fe:4d:19:d3:10:
92:61:ed:4e:22:e3:e4:fb:e3:73:35:0a:fb:05:6d:
0d:2d:e8:00:a2:6f:4e:e9:d6:c9:b7:75:0a:49:aa:
55:ec:5a:44:d7:44:19:11:cb:a9:39:43:5c:b3:fb:
9d:ca:bb:44:8d:0d:31:5b:83:41:fa:87:d3:51:5f:
3d:a4:be:26:e9:ef:1e:ed:5e:11:8e:c8:04:98:36:
14:67:a4:85:ad:d1:00:6c:0a:78:ec:5e:eb:d7:2e:
ac:6c:9c:55:59:91:88:80:ad:7e:f6:5b:aa:94:6e:
f1:c0:7a:03:5f:60:9c:db:12:f7:a0:da:b8:b5:08:
0d:54:40:e2:ca:6f:6c:1b:97:bc:92:cf:a2:ad:f0:
dd:50:e2:ab:63:01:49:34:64:4b:ad:09:d6:c8:09:
47:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:92:B1:17:06:2F:60:65:FA:A1:CD:FD:38:91:5E:4B:B9:C9:24:BB
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/e74b81-5ff7-4823-9267-0d3e662b0ee0/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/e74b81-5ff7-4823-9267-0d3e662b0ee0/1/MJKxFwYvYGX6oc39OJFeS7nJJLs.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.121.140.0/22
IPv6:
2a03:8d80::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
203745
Signature Algorithm: sha256WithRSAEncryption
0e:cd:5b:d7:18:52:55:26:89:e1:e1:02:93:5e:9f:68:61:a0:
da:ac:cd:b5:ef:9c:fc:7b:40:bc:e1:0a:eb:4e:e5:66:b4:29:
10:1d:e0:a0:41:68:42:33:f8:71:11:ef:ae:24:34:2e:e1:0f:
6c:27:38:c4:57:3c:f4:36:74:ef:6d:58:35:04:df:5e:90:2e:
2b:85:05:71:09:9c:5d:ff:57:06:5e:09:1d:e5:59:f1:e7:c2:
95:29:67:b2:8b:7d:f4:bf:e3:0e:b8:ae:fe:ee:30:1a:ac:71:
31:5d:7c:79:b2:53:c2:f9:30:bd:f6:f5:13:13:e8:8d:fe:28:
9e:b1:e8:fd:03:5a:3b:4d:28:39:a1:30:b9:89:9b:79:af:f6:
08:55:aa:7f:f0:d5:93:c3:f5:79:2c:42:6f:bc:bc:33:55:d5:
42:ab:6b:5f:6a:57:af:80:f8:32:5c:fd:c9:6b:fd:75:7e:f5:
cf:d0:2a:89:d1:31:39:02:f5:de:a5:be:63:91:17:8d:cf:48:
02:98:38:cd:02:43:64:68:0a:e0:83:2e:7a:75:e9:8b:02:3a:
d5:da:cf:ce:ec:d2:03:74:a5:c2:16:ba:88:55:04:44:35:93:
df:3c:c6:aa:34:0b:39:87:bc:ca:2b:09:d2:29:e4:bf:45:d9:
72:56:76:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 10:10:21 2024 by rpki-client on console-fra.rpki-client.org