Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/PySkMi6IMSyB9Gmsn_pzDfFLM4Q.cer
File: PySkMi6IMSyB9Gmsn_pzDfFLM4Q.cer (raw, json)
Hash identifier: XIge8/QW5laz6fBjJ33cEY2iDoiiFCeTQ1I2ABDOE0I=
Subject key identifier: 3F:24:A4:32:2E:88:31:2C:81:F4:69:AC:9F:FA:73:0D:F1:4B:33:84
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC5003CE885FECA63156C95243F583705
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/af/d0fa99-c110-4609-8b09-892b5b82d664/1/PySkMi6IMSyB9Gmsn_pzDfFLM4Q.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/af/d0fa99-c110-4609-8b09-892b5b82d664/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 12:29:36 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: IP: 5.10.64.0/18
IP: 5.153.0.0/18
IP: 37.58.64.0/18
IP: 46.16.184.0/21
IP: 81.95.144.0/20
IP: 159.253.128.0/19
IP: 185.10.228.0/22
IP: 2a00:1668::/32
IP: 2a03:8180::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 05 Dec 2024 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:00:3c:e8:85:fe:ca:63:15:6c:95:24:3f:58:37:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 12:29:36 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3f24a4322e88312c81f469ac9ffa730df14b3384
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:16:18:32:67:81:93:51:86:07:4d:1a:49:85:
8b:22:00:c1:7c:4a:07:e1:ca:9f:59:9d:41:fc:66:
9a:b5:c3:09:cd:f6:b7:f0:fb:d7:53:7b:00:c3:23:
fd:a4:23:a2:73:bb:20:32:77:02:5d:4a:a9:d6:59:
29:d0:2c:94:ce:98:90:2e:2e:68:60:a0:86:d2:36:
8d:9d:a5:17:02:d7:da:e8:8f:1b:fe:5c:7d:52:68:
7f:95:a5:bb:40:d4:ed:34:48:49:b5:4a:40:6f:e9:
61:51:9d:85:61:0a:da:a6:0d:46:01:c4:54:e3:e5:
17:dc:d5:e2:78:ee:69:1a:e3:05:2e:9e:d7:cc:f0:
c7:09:41:b1:d4:d4:33:09:a0:1a:63:b9:c2:18:cb:
69:dd:28:0c:af:2b:76:b1:d8:63:81:24:eb:9f:b4:
71:00:99:6d:fb:2c:4f:c6:aa:98:9f:15:c8:0c:10:
fb:8b:b7:34:a6:38:2c:e0:5d:ab:81:61:e9:ec:c0:
d3:eb:56:84:59:53:2d:43:85:41:06:89:2c:34:83:
5a:fd:36:ca:e4:1f:0e:d5:7c:e2:d0:6d:81:50:7f:
41:ff:85:02:04:52:47:6d:fc:e4:33:c9:67:90:8c:
69:07:8d:a2:c7:98:a0:f5:2d:6e:ae:52:d5:d5:72:
a4:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:24:A4:32:2E:88:31:2C:81:F4:69:AC:9F:FA:73:0D:F1:4B:33:84
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/d0fa99-c110-4609-8b09-892b5b82d664/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/d0fa99-c110-4609-8b09-892b5b82d664/1/PySkMi6IMSyB9Gmsn_pzDfFLM4Q.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.10.64.0/18
5.153.0.0/18
37.58.64.0/18
46.16.184.0/21
81.95.144.0/20
159.253.128.0/19
185.10.228.0/22
IPv6:
2a00:1668::/32
2a03:8180::/32
Signature Algorithm: sha256WithRSAEncryption
41:c8:d6:08:e2:f8:a1:d1:25:ff:4a:cf:47:c4:52:ed:b5:e1:
d6:f1:82:b6:65:18:41:1c:bd:4f:08:82:3f:2f:e9:d9:9f:a8:
c2:68:4b:8f:72:ee:29:70:c8:49:be:ee:66:64:be:3c:aa:29:
65:47:87:ab:25:c2:4d:04:c5:59:d5:6e:9f:99:4d:88:31:e8:
6d:fe:6b:f8:95:66:24:e6:47:97:52:b1:c6:d1:ac:00:76:ec:
3d:bd:77:42:24:59:22:23:0b:f2:9a:e5:0c:84:8f:aa:e7:95:
e2:6e:e1:56:62:01:d9:dd:a7:99:a1:38:d7:ce:18:43:c3:28:
2b:80:4a:37:e3:ea:9f:77:ff:81:29:42:91:5d:4f:4e:9e:ba:
21:53:f5:0f:d6:5e:87:fb:a2:4a:1f:16:34:12:ba:eb:71:57:
18:04:cc:d4:8a:8c:e6:5f:30:77:83:18:28:00:59:7d:04:a1:
16:68:ae:21:c3:fc:9d:2b:fb:8f:52:8d:63:8d:53:42:2c:f0:
ff:6c:4b:9f:b3:e6:65:d1:78:cd:2b:fc:ab:cf:2f:fb:c2:df:
07:3c:6d:48:64:02:df:84:b9:16:87:04:61:a5:23:88:c4:ad:
36:39:c1:7c:05:4b:89:78:38:96:5e:ba:d8:74:53:52:c8:53:
19:26:50:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 4 09:02:08 2024 by rpki-client on console-ams.rpki-client.org