Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/M_weW2x4j6-P6TMZgdZbX4ZLgPc.cer
File: M_weW2x4j6-P6TMZgdZbX4ZLgPc.cer (raw, json)
Hash identifier: 35ecvZzwvDZRxzLTkASgn7SlErM9KygvR2Lh7e9mdAU=
Subject key identifier: 33:FC:1E:5B:6C:78:8F:AF:8F:E9:33:19:81:D6:5B:5F:86:4B:80:F7
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC72708ABBA82324A96F28AE62CD94261
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/9d/5dca9d-73dd-47dc-8549-b1c4de84e70e/1/M_weW2x4j6-P6TMZgdZbX4ZLgPc.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/9d/5dca9d-73dd-47dc-8549-b1c4de84e70e/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 22:31:13 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 61267
AS: 196673
AS: 201211
IP: 185.73.16.0/22
IP: 185.82.24.0/22
IP: 193.178.118.0/24
IP: 2a05:3e80::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:27:08:ab:ba:82:32:4a:96:f2:8a:e6:2c:d9:42:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 22:31:13 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=33fc1e5b6c788faf8fe9331981d65b5f864b80f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:b3:a8:43:56:21:db:5b:17:86:ee:f7:80:6d:
b9:48:49:3d:03:0c:0f:14:ba:f7:b4:36:d8:7e:1a:
78:f3:fe:35:6e:0a:67:7e:0a:63:29:4e:c1:85:f9:
55:52:b0:09:67:1f:4c:fb:61:c7:d5:32:89:e6:c5:
21:38:a1:88:55:61:fa:0a:4a:47:62:ba:c2:f8:9e:
b2:3a:01:78:ba:10:d4:68:44:a7:ed:32:69:4c:7c:
0c:1a:78:f4:2e:d5:04:d3:49:c1:03:b3:91:c6:66:
29:f7:45:b8:46:9c:c3:b0:b9:64:db:19:c2:3f:df:
33:bb:54:b1:66:37:d6:0a:11:66:e1:a4:0d:0b:64:
28:70:ed:d6:a2:ba:06:17:cd:f2:7d:e9:af:10:ac:
70:70:9a:67:85:fa:33:1f:c9:d2:b6:0d:d8:18:96:
51:93:1d:c7:e1:19:e1:87:2b:76:f8:00:e4:42:5b:
60:53:5b:ba:8c:77:e9:76:ae:ec:a5:9a:7b:93:dc:
00:12:81:c7:d5:df:e4:59:36:90:0d:6d:f5:de:e6:
94:df:e7:fb:9a:fe:6f:07:89:df:d5:3c:58:f3:18:
b9:3d:b4:61:90:6a:c5:10:11:73:bb:ef:1b:6f:8b:
eb:81:00:25:aa:0f:d2:26:5f:6f:25:87:00:84:8e:
fb:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:FC:1E:5B:6C:78:8F:AF:8F:E9:33:19:81:D6:5B:5F:86:4B:80:F7
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/5dca9d-73dd-47dc-8549-b1c4de84e70e/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/5dca9d-73dd-47dc-8549-b1c4de84e70e/1/M_weW2x4j6-P6TMZgdZbX4ZLgPc.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.73.16.0/22
185.82.24.0/22
193.178.118.0/24
IPv6:
2a05:3e80::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
61267
196673
201211
Signature Algorithm: sha256WithRSAEncryption
a9:e1:6d:22:2d:95:73:5b:07:d9:52:be:91:a3:a8:6d:e3:73:
75:20:ee:25:2d:1d:c5:64:32:c5:55:00:a3:7e:8b:9d:7c:c1:
b5:8b:e5:d8:d1:16:89:d1:1c:34:4c:2f:10:cc:de:7d:e4:0f:
d6:27:de:32:aa:f4:69:f5:ed:0a:29:bd:91:61:0a:2f:4a:6c:
fd:9f:2f:0e:69:bd:e5:1c:73:0e:90:02:6e:09:19:21:c3:1b:
09:52:0c:a7:38:4c:0a:2b:5d:89:5f:dd:51:ac:5c:d0:3a:b6:
b3:4d:05:06:8d:37:6d:ac:24:a4:85:34:2d:aa:6d:5a:c5:4c:
01:27:d7:20:b5:8f:4e:c4:68:a4:2c:24:7c:c9:86:8c:f0:ea:
28:71:6a:02:45:f9:48:46:a3:d8:cf:f8:f1:fc:74:34:20:f5:
31:e4:f2:c0:98:c3:ab:ee:d2:44:fe:a6:26:fb:88:0b:3a:71:
86:49:d1:c0:f4:1d:24:9c:3b:89:e4:19:e1:a0:34:23:64:cf:
ad:ae:73:f9:02:e8:f6:0b:9a:d3:c8:5d:8c:c7:6b:77:2a:fe:
20:57:96:aa:ec:c7:28:c1:85:39:84:d0:97:a8:99:05:09:d5:
68:53:62:a5:bd:45:4a:fb:7a:8c:80:a7:be:65:7f:84:fc:56:
56:4a:10:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 03:30:14 2024 by rpki-client on console-fra.rpki-client.org