Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/PDULqC8_61ruKJOPvxsJweL9GbQ.cer
File: PDULqC8_61ruKJOPvxsJweL9GbQ.cer (raw, json)
Hash identifier: olui6msWXqwjqLc3YNTjKEc4GAw65kFhPsEjyJwpVDY=
Subject key identifier: 3C:35:0B:A8:2F:3F:EB:5A:EE:28:93:8F:BF:1B:09:C1:E2:FD:19:B4
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC8011C7ADB6B70EA7C095FC2AECD0ECA
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/a9/64d7a9-cac3-4549-a7aa-61b7902ee204/1/PDULqC8_61ruKJOPvxsJweL9GbQ.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/a9/64d7a9-cac3-4549-a7aa-61b7902ee204/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 02:29:25 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 24990
AS: 44729
AS: 59997
IP: 185.3.24.0/22
IP: 195.42.144.0/23
IP: 217.69.16.0/20
IP: 2001:7f8:43::/48
IP: 2a03:6c80::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:1c:7a:db:6b:70:ea:7c:09:5f:c2:ae:cd:0e:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 02:29:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3c350ba82f3feb5aee28938fbf1b09c1e2fd19b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:55:e3:ed:d0:4d:cb:d2:3b:42:ce:55:08:97:
39:74:64:dc:f7:29:4b:08:c0:79:ec:17:6d:06:04:
cf:cd:f9:ed:f3:b8:42:b0:c3:00:50:a7:55:63:55:
86:df:b8:2b:57:b3:51:4c:95:40:5f:27:93:2a:d2:
1c:a7:7c:bf:05:c3:47:b8:cd:33:27:2a:13:48:29:
ee:86:6a:c0:8b:19:e2:a3:7b:09:49:a2:bd:8b:96:
5e:37:8e:29:ac:5b:2a:90:44:89:a6:fb:5c:ad:4e:
1d:95:c8:a6:9d:42:5b:39:45:11:8c:2f:37:f5:62:
1b:f6:7d:d9:a4:2d:72:70:fe:f1:e5:31:54:5e:2a:
ab:22:36:fa:d7:89:f5:c1:ee:0e:0d:b1:ce:02:d7:
7a:e5:9f:7d:e0:8f:c0:ee:d2:dd:c2:24:85:2b:63:
dc:21:42:6e:d9:28:4c:71:7d:ff:f4:65:e6:55:92:
6e:1e:77:05:2d:f3:72:51:1a:b9:0f:ee:3a:11:9e:
d5:5c:9a:a7:8a:9f:12:db:72:6c:62:d6:97:d3:66:
eb:b3:a7:5a:44:fe:38:1d:7a:c9:ab:dd:6b:55:55:
2b:3b:b1:4d:e5:29:46:b1:7a:f3:3e:85:aa:0b:02:
34:07:8e:b4:6e:68:a8:4e:6a:17:04:94:5f:95:82:
e1:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:35:0B:A8:2F:3F:EB:5A:EE:28:93:8F:BF:1B:09:C1:E2:FD:19:B4
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/64d7a9-cac3-4549-a7aa-61b7902ee204/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/64d7a9-cac3-4549-a7aa-61b7902ee204/1/PDULqC8_61ruKJOPvxsJweL9GbQ.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.3.24.0/22
195.42.144.0/23
217.69.16.0/20
IPv6:
2001:7f8:43::/48
2a03:6c80::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
24990
44729
59997
Signature Algorithm: sha256WithRSAEncryption
a2:b4:86:bb:f5:c3:2d:d8:ef:7c:32:2c:71:3b:41:72:93:b1:
05:82:dc:8f:3b:96:c2:c6:a5:b6:93:a3:39:16:02:5f:1a:36:
49:93:2a:c2:8a:85:36:ec:14:6e:2d:1e:e2:dd:7f:f2:c9:e7:
7f:99:35:d7:eb:a0:35:8f:ce:22:65:59:0d:f3:38:a8:3b:9b:
cb:77:25:ce:f8:e9:96:3c:98:ee:97:ba:cd:c2:33:c9:df:6e:
e3:c5:1c:85:54:20:61:32:8c:b7:30:89:8f:cf:32:b2:7f:ba:
c9:0c:9d:a5:1d:7c:d1:10:69:59:e7:56:91:0a:31:01:09:ba:
c8:72:cf:42:44:6d:34:0f:e3:e1:ad:7d:eb:38:e5:b7:2f:03:
23:4c:bc:c5:97:99:bd:c8:19:ba:9a:17:73:c5:f3:aa:8c:6d:
c4:d6:06:11:f6:56:ab:7a:79:7b:01:dc:0b:3f:46:36:09:44:
73:1b:78:8c:44:9b:cf:6f:be:df:e0:e7:b3:67:a6:8e:d6:e2:
f8:f1:79:11:50:7e:f2:c0:03:e1:f5:5e:ad:7e:0c:0b:2e:e2:
6b:34:25:9b:0e:1a:ad:d6:ad:f1:b2:46:50:ac:bf:f9:a9:1e:
74:92:62:43:8c:3b:e8:e2:0b:d8:3c:95:b0:32:53:ab:2f:5c:
35:08:a9:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:23:32 2024 by rpki-client on console-ams.rpki-client.org