Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/N86qYmy9iQUvNUUzXf2zGhM4MAQ.cer
File: N86qYmy9iQUvNUUzXf2zGhM4MAQ.cer (raw, json)
Hash identifier: mI0RZTDzDqnwJ9q3o/BNN+jOa3BQbDU2oqtA3UKVILg=
Subject key identifier: 37:CE:AA:62:6C:BD:89:05:2F:35:45:33:5D:FD:B3:1A:13:38:30:04
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC50053B5277BC70BF11E740B536E6886
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/2f/ad8994-51f1-4b65-aca0-e15a8b70e8d2/1/N86qYmy9iQUvNUUzXf2zGhM4MAQ.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/2f/ad8994-51f1-4b65-aca0-e15a8b70e8d2/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 12:29:42 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: IP: 194.76.41.0/24
IP: 194.76.44.0/24
IP: 194.76.53.0/24
IP: 194.76.143.0/24
IP: 2a0f:adc0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:00:53:b5:27:7b:c7:0b:f1:1e:74:0b:53:6e:68:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 12:29:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=37ceaa626cbd89052f3545335dfdb31a13383004
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:45:7f:76:eb:21:20:17:c2:77:31:34:e0:52:
85:fe:98:44:33:a0:16:d3:36:1c:be:03:c0:21:2d:
01:61:8c:15:51:dd:41:0c:f1:eb:0a:5f:71:e8:3a:
8a:80:40:66:a0:bd:4a:8b:b8:cc:ef:27:81:2f:6d:
6d:75:a8:73:2e:d4:33:21:d8:7b:8c:e7:ea:d2:74:
2c:97:01:e8:dc:51:50:51:3a:eb:c3:9b:ab:d1:7a:
a3:39:5c:c2:c1:7d:96:c8:3b:f6:7e:8e:0e:1a:a6:
89:bc:6c:42:f4:3c:13:22:97:49:15:b7:56:9c:c3:
e1:d1:7a:c1:3c:23:8a:d2:08:af:89:fc:c4:3f:db:
58:ca:5e:aa:60:f2:3b:e8:7d:bf:14:34:f8:90:72:
45:cc:52:03:fc:4b:ac:c7:12:7c:35:89:7a:05:ec:
1e:43:39:0e:4b:01:b6:d3:c6:e0:2a:04:b5:a0:a6:
85:bc:a1:6e:a9:68:d2:b8:ec:80:63:e1:75:0b:4c:
11:97:34:76:9b:4c:06:b3:9e:85:56:db:0a:90:43:
e9:a5:03:0c:f3:45:77:0d:a7:9c:b1:a9:2c:cf:46:
fc:82:34:a9:9d:a9:0a:0f:75:90:fe:71:1f:1b:fc:
99:e6:0c:45:88:19:df:ad:50:dd:da:3b:be:5c:fb:
c3:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:CE:AA:62:6C:BD:89:05:2F:35:45:33:5D:FD:B3:1A:13:38:30:04
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/ad8994-51f1-4b65-aca0-e15a8b70e8d2/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/ad8994-51f1-4b65-aca0-e15a8b70e8d2/1/N86qYmy9iQUvNUUzXf2zGhM4MAQ.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.76.41.0/24
194.76.44.0/24
194.76.53.0/24
194.76.143.0/24
IPv6:
2a0f:adc0::/29
Signature Algorithm: sha256WithRSAEncryption
97:4b:37:bf:ee:a2:4f:93:1a:96:d5:7f:8f:1c:4e:9c:5e:1a:
51:b5:c1:d0:bc:04:68:5d:c9:62:63:4e:8d:cc:2c:38:b7:46:
13:6d:c7:30:3a:3d:02:72:16:92:dc:30:fe:72:82:47:66:f0:
f5:ad:7d:ec:f4:a7:d8:f3:94:fb:84:3a:ba:48:ff:35:bf:04:
c4:28:a5:61:13:14:08:e5:56:67:20:55:28:6e:d3:ea:71:3e:
5a:ee:64:60:fd:4d:c9:3a:89:21:cc:38:3b:72:63:8d:ca:a8:
24:68:f7:4d:56:3c:a4:ff:12:c5:a6:35:6d:62:7c:4a:be:72:
97:85:d2:75:98:1d:3e:ec:c1:ae:3b:f5:65:d1:23:6e:82:12:
57:b5:ee:76:12:fe:01:30:15:9c:9d:a9:1b:53:50:3a:fd:35:
8c:16:b7:07:4f:26:73:67:bf:5f:c8:d8:f0:04:ed:c5:02:a2:
41:3d:6c:8f:8c:df:24:67:c3:48:29:c7:88:40:46:c4:e4:82:
ae:e3:44:b2:bc:45:9c:e2:e0:0a:f3:54:93:d4:ff:a5:37:55:
d1:ae:4c:df:f7:0c:96:5f:96:c7:04:e5:ec:80:5e:82:93:c3:
54:62:49:c4:7c:0f:2e:c4:e6:87:5a:d2:a5:3a:1c:fa:26:3f:
19:f1:35:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:07:51 2024 by rpki-client on console-fra.rpki-client.org