Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/PuWh3Qzuh0wG4eofcoJ9l8vGcYc.cer
File: PuWh3Qzuh0wG4eofcoJ9l8vGcYc.cer (raw, json)
Hash identifier: rd7KI7aszj55o0xNGZ1FFOe9A5JTx/cFsEuNincZV2E=
Subject key identifier: 3E:E5:A1:DD:0C:EE:87:4C:06:E1:EA:1F:72:82:7D:97:CB:C6:71:87
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC424F14782C1E0D1C94A5E3B9F5F825D
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/57/95ffd9-19d3-4517-8c47-c61661d1b71b/1/PuWh3Qzuh0wG4eofcoJ9l8vGcYc.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/57/95ffd9-19d3-4517-8c47-c61661d1b71b/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 08:30:04 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 198611
IP: 91.231.205.0/24
IP: 91.237.68.0/22
IP: 2001:67c:16f8::/48
IP: 2001:67c:2ad8::/48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:24:f1:47:82:c1:e0:d1:c9:4a:5e:3b:9f:5f:82:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 08:30:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3ee5a1dd0cee874c06e1ea1f72827d97cbc67187
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:b4:e0:de:a1:fb:10:dd:3c:56:18:1b:a0:eb:
1d:ae:cf:0b:8e:13:4f:c2:1a:e7:9c:73:92:80:21:
19:c5:55:97:99:a7:89:de:f4:25:a8:fc:2b:37:5d:
82:22:0f:ee:f4:78:c6:07:de:ee:d0:df:97:6a:0a:
86:de:3a:4f:b2:82:a9:84:ef:cf:b3:4c:d9:a2:74:
86:9f:7d:7b:e6:82:e2:fc:08:db:73:d9:9d:14:4d:
59:af:1c:e2:ac:52:c3:7b:5e:62:68:0c:91:49:b4:
6a:0f:92:f4:8a:bb:8d:b2:44:ed:ba:96:a2:0f:84:
dd:84:b5:d3:32:17:25:5a:5b:ae:14:47:b9:fb:06:
e4:31:b5:b2:19:05:c6:01:cf:1a:97:b2:64:2e:29:
d6:97:07:1b:56:d1:bf:60:26:8f:cc:5b:90:df:9b:
3f:b9:0a:45:83:da:d4:0b:23:a0:6c:45:51:0a:8d:
91:f1:69:dc:3f:73:02:b1:32:de:d6:3d:3d:ef:6b:
48:80:29:49:96:6b:64:db:b1:42:84:79:6b:24:3f:
6d:e2:63:5a:e7:62:d9:4c:ca:5b:70:ce:e9:e1:60:
2c:28:b8:96:d3:ab:3e:ec:78:d7:b3:66:b6:04:7e:
0d:32:1c:1d:dd:0c:de:ae:f1:5a:ed:6e:1c:bd:67:
0b:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:E5:A1:DD:0C:EE:87:4C:06:E1:EA:1F:72:82:7D:97:CB:C6:71:87
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/95ffd9-19d3-4517-8c47-c61661d1b71b/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/95ffd9-19d3-4517-8c47-c61661d1b71b/1/PuWh3Qzuh0wG4eofcoJ9l8vGcYc.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.231.205.0/24
91.237.68.0/22
IPv6:
2001:67c:16f8::/48
2001:67c:2ad8::/48
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
198611
Signature Algorithm: sha256WithRSAEncryption
61:af:90:76:16:30:92:98:5d:ba:3b:d7:54:60:2a:39:78:ed:
22:f6:d4:00:19:3c:f2:2a:ff:97:53:dd:42:b5:bf:22:b2:3b:
49:2c:51:f6:17:60:95:eb:da:77:d4:7f:d6:08:92:94:96:6c:
be:3f:ee:c2:28:a8:56:37:04:84:7c:65:d5:43:75:b7:21:27:
d5:d6:8d:12:42:ee:13:64:be:ea:d3:55:37:9a:b3:32:20:08:
6b:33:ec:bb:5b:1d:4f:f7:60:c8:6f:74:9c:96:bc:24:08:24:
e7:62:1a:cf:1a:60:82:83:77:61:d6:aa:a3:43:63:21:59:2d:
0c:ff:f4:57:85:8f:6e:b7:de:28:42:f2:da:4a:e6:2f:f6:9d:
3b:e9:55:74:66:c9:a3:cb:ad:d1:5d:54:cc:35:3f:33:61:d9:
2c:fe:3f:72:80:83:a6:29:05:55:5f:8e:c8:2f:f6:c1:55:e4:
0f:99:07:f2:a8:29:30:bc:2a:da:7c:f4:62:54:d4:4c:4b:6e:
de:1c:8a:3d:4a:58:1f:90:44:58:77:a9:81:81:45:2d:1a:a9:
af:0e:b4:d6:c9:de:ea:78:cf:09:0c:79:0e:db:97:d4:fb:46:
3d:24:62:51:38:30:1f:8c:d9:a4:d3:30:ea:8c:18:7d:68:44:
4f:fb:1b:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:52:55 2024 by rpki-client on console-fra.rpki-client.org