Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/Q-CjZBMYQQVtSLLXiOoAykuR21Y.cer
File: Q-CjZBMYQQVtSLLXiOoAykuR21Y.cer (raw, json)
Hash identifier: Bp15UTqh5Wa6XCat+2vgnsVhw876wd4Kch8JpQ1OLEE=
Subject key identifier: 43:E0:A3:64:13:18:41:05:6D:48:B2:D7:88:EA:00:CA:4B:91:DB:56
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC56ED9CF778F3F4E0D19F9BAD8D92952
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/7f/9cbb06-b4da-4c94-b418-4b081cc2b39a/1/Q-CjZBMYQQVtSLLXiOoAykuR21Y.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/7f/9cbb06-b4da-4c94-b418-4b081cc2b39a/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 14:30:25 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 48254
IP: 45.8.224.0/22
IP: 185.146.164.0/22
IP: 185.151.28.0/22
IP: 193.176.16.0/22
IP: 194.38.52.0/22
IP: 2a07:7800::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:d9:cf:77:8f:3f:4e:0d:19:f9:ba:d8:d9:29:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 14:30:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=43e0a364131841056d48b2d788ea00ca4b91db56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:da:a7:7e:d3:0c:d4:7a:80:63:d8:13:af:d1:
17:59:d7:dd:a6:9c:2b:4c:e7:c0:5f:a8:74:6b:ef:
e0:69:08:7b:e9:06:31:d5:e7:9e:90:c3:99:d6:0a:
36:96:aa:ac:ba:e0:04:61:1f:96:e3:e4:8b:97:5e:
8c:e7:be:0e:9f:53:57:26:15:ee:4d:be:cf:69:2d:
37:44:bd:2a:1b:ec:05:76:b5:91:fe:46:04:3f:67:
87:56:89:a3:d6:f4:24:98:80:c9:f5:84:4e:0c:10:
2a:69:57:87:67:c7:86:63:7d:e1:1b:7f:a1:e4:b8:
26:48:9d:2d:a7:6d:c7:7e:e4:4d:56:b7:32:e4:6a:
c7:22:fe:80:35:84:d7:04:f7:0c:cd:55:3a:e2:20:
0f:f1:7f:4a:19:47:66:a4:7a:b0:af:46:92:f9:32:
36:b9:56:bf:13:1c:2b:37:49:aa:ce:d7:a6:3f:e6:
96:d2:36:79:73:47:98:25:ec:5d:51:c9:dc:21:24:
23:90:34:4e:b2:0c:e2:13:5c:d6:97:87:a9:af:f8:
14:52:43:d2:90:aa:34:25:13:e9:fa:51:1a:f9:cd:
f1:0a:b5:61:ca:e0:8f:7a:3d:fd:fb:8e:0e:d0:b8:
09:91:19:67:aa:b9:b0:f6:17:99:47:63:c9:cb:4b:
96:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:E0:A3:64:13:18:41:05:6D:48:B2:D7:88:EA:00:CA:4B:91:DB:56
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/9cbb06-b4da-4c94-b418-4b081cc2b39a/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/9cbb06-b4da-4c94-b418-4b081cc2b39a/1/Q-CjZBMYQQVtSLLXiOoAykuR21Y.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.224.0/22
185.146.164.0/22
185.151.28.0/22
193.176.16.0/22
194.38.52.0/22
IPv6:
2a07:7800::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
48254
Signature Algorithm: sha256WithRSAEncryption
93:5c:d4:68:3c:94:0d:3e:e9:79:9a:b8:8c:ae:67:c4:a3:85:
d8:7a:fa:35:05:7d:16:aa:95:46:dd:e8:db:df:3a:32:63:79:
0a:e1:b2:36:81:0e:5d:e2:70:b5:56:f2:90:4d:96:25:b0:69:
9d:f8:32:40:a9:82:75:94:b3:70:8b:9d:21:ed:50:7c:00:97:
67:bd:b9:d3:10:24:75:37:f9:8d:0e:47:da:24:10:84:ef:98:
47:68:9b:75:85:9a:68:41:b8:bd:dc:31:ff:b4:5c:1f:3b:38:
2a:0f:1d:dd:d0:4a:63:41:b7:5f:08:21:73:fa:92:53:b1:9b:
d1:53:48:8c:fe:a2:a7:45:a3:31:9f:04:65:56:3d:0a:df:1d:
57:c7:e0:d8:65:bb:b0:2c:b9:ba:25:3b:ba:67:a9:46:07:77:
3f:de:c7:6d:4f:1e:cb:9d:e5:24:fe:3f:97:b8:3f:09:3c:1e:
bb:fa:30:a9:93:72:a3:be:49:3f:d6:57:e7:74:26:86:23:f3:
0b:81:e0:94:31:85:b0:07:2a:bc:40:ec:89:3b:b7:18:dd:84:
e8:32:b1:c2:2d:dc:ac:80:ba:33:a6:12:f9:3a:34:1c:75:6e:
f8:b3:0c:96:e7:92:1b:ce:33:33:f2:30:1f:ef:28:b7:b8:0d:
1c:4f:fb:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 18:18:53 2024 by rpki-client on console-fra.rpki-client.org