Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/MlNiVLPnSQBnW8br1QroJYKLmnY.cer
File: MlNiVLPnSQBnW8br1QroJYKLmnY.cer (raw, json)
Hash identifier: aoQhLWS/AtB4kQHPw7gjufeoFw40h2tGSPexu4ToY0s=
Subject key identifier: 32:53:62:54:B3:E7:49:00:67:5B:C6:EB:D5:0A:E8:25:82:8B:9A:76
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CCA2BC3C48C6260301B64103297BBC4F6
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/c3/96d730-38ef-4b21-b1fe-a57d488744c2/1/MlNiVLPnSQBnW8br1QroJYKLmnY.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/c3/96d730-38ef-4b21-b1fe-a57d488744c2/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 12:35:15 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 35086
IP: 185.95.140.0/22
IP: 2a04:fe40::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 16:12:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:2b:c3:c4:8c:62:60:30:1b:64:10:32:97:bb:c4:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 12:35:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=32536254b3e74900675bc6ebd50ae825828b9a76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:40:d9:33:2a:39:da:ce:9c:97:a6:b8:34:33:
4c:19:8f:7f:3d:bb:62:f9:b6:e0:1f:ef:50:75:38:
f6:da:89:6d:07:99:66:27:8a:62:30:16:99:7b:f1:
de:3e:b5:95:a7:e2:3e:09:5e:c3:94:0d:78:35:e7:
54:ad:cf:a6:d1:b6:e4:82:c5:a1:b8:24:d5:07:6a:
e8:7f:1e:0e:77:94:ec:6e:6e:86:ca:f1:7a:5e:b9:
ee:27:65:61:ea:f0:9f:9c:9c:24:6b:0d:5d:3b:b6:
d7:cb:30:f9:4a:89:d9:10:e6:05:2e:af:5b:aa:fa:
e0:70:f0:a2:91:94:07:d8:4b:bc:b6:67:cd:c6:5f:
51:cb:bd:29:9e:98:05:0b:15:95:e2:3d:27:63:e8:
1c:04:22:7c:75:bc:82:86:2d:58:4e:0b:9c:8b:9f:
29:5e:b9:c9:a5:7a:02:33:27:9f:9e:79:0e:9a:0a:
2c:98:8e:09:75:61:ff:44:5e:70:77:81:db:52:6c:
e9:8e:91:b9:d3:e2:e9:6f:88:bf:1c:6e:65:96:02:
4b:71:a5:0c:51:a2:15:84:12:f5:1e:f1:b1:2c:43:
d9:c2:8c:37:61:9f:e1:48:64:ce:17:17:ff:38:28:
30:40:c4:c3:0c:2d:49:06:10:28:90:3d:ff:fb:14:
71:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:53:62:54:B3:E7:49:00:67:5B:C6:EB:D5:0A:E8:25:82:8B:9A:76
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/96d730-38ef-4b21-b1fe-a57d488744c2/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/96d730-38ef-4b21-b1fe-a57d488744c2/1/MlNiVLPnSQBnW8br1QroJYKLmnY.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.95.140.0/22
IPv6:
2a04:fe40::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
35086
Signature Algorithm: sha256WithRSAEncryption
00:03:8b:77:e0:e0:fd:f3:10:0b:b6:7f:48:6c:37:5e:23:3a:
dc:2c:82:75:d2:b4:9f:69:98:5e:41:e7:35:ee:12:50:ec:3c:
44:93:d3:6e:0a:7d:a6:4f:43:f1:d3:86:09:85:4d:a3:c9:b9:
d3:db:29:4a:46:08:e9:80:6b:9b:4a:1d:72:11:98:1b:00:30:
f3:b2:6a:53:9d:15:5c:f8:2e:05:ed:c7:e6:bf:16:7d:1e:49:
a6:d1:79:23:ad:0d:4d:ed:47:d6:cb:db:ab:a7:ea:33:ba:4f:
25:65:a8:4b:15:b4:d2:da:04:fe:05:19:55:75:3f:82:51:ff:
cd:fe:5e:ae:51:1c:7b:c1:e0:43:dc:60:a3:09:72:77:03:e7:
b4:fd:d7:21:02:7a:00:67:99:df:34:67:69:d4:4e:65:7d:70:
9f:71:9e:4f:0b:25:e9:d6:73:b4:25:aa:01:a8:5d:a5:2e:95:
c5:0d:19:38:66:84:57:1c:5f:30:4e:8c:46:53:ed:6a:3b:89:
aa:65:3a:36:28:98:88:a9:4f:e3:ef:59:99:96:80:67:96:ab:
a0:bd:3f:4f:e2:a3:71:ca:6f:eb:70:61:d0:90:91:9f:00:9c:
5d:8d:1e:69:a6:44:62:78:4f:63:97:f9:6d:a8:ee:03:a0:6c:
3c:b3:8f:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 22:08:57 2024 by rpki-client on console-ams.rpki-client.org