Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/PmxFIHWfOk74uamifiUzznMsVBE.cer
File: PmxFIHWfOk74uamifiUzznMsVBE.cer (raw, json)
Hash identifier: TB/E3JYmERujlZXrqIPNUxU2W0fFU9g/oZ8fnc7tTyw=
Subject key identifier: 3E:6C:45:20:75:9F:3A:4E:F8:B9:A9:A2:7E:25:33:CE:73:2C:54:11
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC500FEEF94F4F3E6578A12A4F689B500
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/86/483e33-c767-46b7-8f3a-9c0a0e2767aa/1/PmxFIHWfOk74uamifiUzznMsVBE.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/86/483e33-c767-46b7-8f3a-9c0a0e2767aa/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 12:30:26 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 49688
IP: 195.35.98.0/24
IP: 195.35.102.0/24
IP: 195.35.108.0/24
IP: 195.38.21.0/24
IP: 2a0f:b7c0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:00:fe:ef:94:f4:f3:e6:57:8a:12:a4:f6:89:b5:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 12:30:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3e6c4520759f3a4ef8b9a9a27e2533ce732c5411
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:3b:7a:33:ca:83:bc:ba:33:c8:a8:ad:dd:f7:
71:fe:54:9d:cb:a4:02:be:93:1e:8b:be:4c:a4:27:
9c:ca:3b:5d:b5:72:08:9e:25:ea:29:98:d5:4c:6a:
d9:f8:83:9c:75:03:55:c8:5c:87:91:a1:a7:56:5b:
96:12:02:7c:cb:3d:1c:0e:a5:53:40:78:d1:a3:a5:
fb:cd:08:b9:5b:76:e5:4b:c9:ca:4a:d0:10:83:b0:
da:b9:32:75:a5:a7:20:a7:46:ff:c7:45:a1:20:68:
1d:49:6f:c9:9e:7d:e5:8b:bd:1d:ae:0b:e3:5a:c5:
22:ea:9f:dc:79:90:c2:41:27:eb:a3:6b:ad:51:b2:
5f:ac:09:9a:f5:4a:6e:72:3f:c7:97:6c:88:45:2b:
ca:cb:8b:9d:83:62:f9:6a:ea:b6:5b:55:3b:ef:53:
80:bb:07:e3:0c:bd:9a:37:07:78:41:0f:de:ed:c0:
2d:0a:43:12:40:2f:6f:1e:53:7e:4e:9f:ca:88:c1:
e0:48:67:1c:98:34:59:5c:63:4e:c3:a5:34:31:37:
77:00:8e:a2:48:ae:62:a9:22:74:79:47:2e:ad:2f:
f4:a8:69:2b:a3:db:90:1e:e3:33:a5:8a:12:40:85:
f4:91:c6:12:d6:85:57:ba:c1:08:1f:d3:8d:fe:97:
52:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:6C:45:20:75:9F:3A:4E:F8:B9:A9:A2:7E:25:33:CE:73:2C:54:11
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/483e33-c767-46b7-8f3a-9c0a0e2767aa/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/483e33-c767-46b7-8f3a-9c0a0e2767aa/1/PmxFIHWfOk74uamifiUzznMsVBE.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.35.98.0/24
195.35.102.0/24
195.35.108.0/24
195.38.21.0/24
IPv6:
2a0f:b7c0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
49688
Signature Algorithm: sha256WithRSAEncryption
50:05:fe:02:a4:40:d7:f2:da:1d:03:4d:f4:6f:c8:b7:be:44:
e6:30:e2:2e:61:32:60:56:cb:12:6e:80:85:fc:ea:3f:6d:64:
6f:16:f1:b7:65:66:28:d5:f2:e2:ff:aa:f7:fc:cc:4c:75:f2:
02:77:99:32:e0:6e:4d:77:6a:2b:1e:bb:1a:e6:62:9c:f8:96:
81:ae:60:1e:ea:c7:4d:e9:d6:a4:d6:ca:65:bd:4f:42:34:f5:
62:15:80:64:44:9e:89:57:f5:bc:aa:1c:c1:4a:0d:4a:77:86:
a3:d7:6e:59:65:ef:a2:a6:4e:32:d4:aa:86:93:84:2b:6e:2b:
33:e3:e0:d8:d3:1d:52:2a:bc:e7:b7:dd:cc:b6:9b:50:d0:e2:
f2:f6:0b:85:0f:1f:c8:57:2d:96:c4:37:e4:ee:29:c4:75:42:
88:20:0e:52:1b:97:55:92:98:61:09:d4:a6:62:a9:67:0e:07:
39:3e:87:12:2c:58:dd:68:48:92:7d:82:0e:1f:2e:d9:ed:23:
b9:19:e9:45:78:de:49:fa:20:9f:0c:8c:ee:c6:a7:98:0f:30:
67:e6:3f:c1:7a:49:dc:01:3f:ff:a3:d8:91:91:57:a9:af:94:
d3:92:fa:bf:41:70:55:30:6b:cb:a6:e7:1e:f6:76:f1:90:aa:
29:72:8f:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:52:52 2024 by rpki-client on console-fra.rpki-client.org