Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/QGYnM7yHPRPh-fZujf91yCDV0vc.cer
File: QGYnM7yHPRPh-fZujf91yCDV0vc.cer (raw, json)
Hash identifier: zfdj8RZIEkQjfltHtXKYvZtOUlCsQ4RLQbFSPnmhtgs=
Subject key identifier: 40:66:27:33:BC:87:3D:13:E1:F9:F6:6E:8D:FF:75:C8:20:D5:D2:F7
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC86F71405CC5E56B0D316B10AA022C4A
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/59/d910d1-94c6-4412-8506-9cb51e51ff77/1/QGYnM7yHPRPh-fZujf91yCDV0vc.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/59/d910d1-94c6-4412-8506-9cb51e51ff77/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 04:29:55 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 56488
IP: 217.28.136.0/24
IP: 2a12:2540::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:71:40:5c:c5:e5:6b:0d:31:6b:10:aa:02:2c:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 04:29:55 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=40662733bc873d13e1f9f66e8dff75c820d5d2f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:df:07:07:69:e1:cc:a2:d0:d8:dd:db:f3:95:
af:b8:06:fe:ca:0b:7f:5d:44:ab:5a:3a:c4:12:81:
bf:a0:02:5f:eb:00:1d:c1:2f:24:32:3a:16:ea:2f:
28:2c:af:cd:f5:5c:42:f1:0c:5e:7d:3a:53:84:af:
16:5c:c0:23:2f:d5:8a:8d:31:58:9f:2f:7d:92:02:
8b:d9:a9:f3:8d:c0:af:e1:03:5f:be:5a:05:d5:c6:
70:d4:06:3b:30:59:e4:fe:1d:c2:b1:8c:6e:a4:6d:
eb:37:53:3e:46:c7:07:48:f0:5a:0f:bf:23:a6:9a:
ef:4a:85:ad:f5:8a:74:09:60:75:ad:1c:7e:ec:9f:
6f:57:b3:06:81:cf:b6:6f:f1:f5:21:0e:ea:e9:6b:
8b:f9:27:df:06:c4:b3:ec:3a:44:e0:59:a0:51:3c:
6c:f6:64:62:1e:24:57:fe:9e:ce:aa:70:91:11:6a:
7e:3a:a6:bf:2f:25:31:b9:8d:8d:b8:b0:c6:bf:6c:
ad:98:4a:59:76:65:3f:62:b4:e1:a4:92:0f:4a:b7:
19:27:fb:7a:a3:3a:3a:c5:22:85:b7:f9:db:8e:07:
03:1e:fa:7f:42:33:7e:8d:f4:94:5f:13:82:9c:50:
dd:68:f4:92:d2:83:5d:5d:93:ba:e7:ac:a1:02:46:
40:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:66:27:33:BC:87:3D:13:E1:F9:F6:6E:8D:FF:75:C8:20:D5:D2:F7
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/d910d1-94c6-4412-8506-9cb51e51ff77/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/d910d1-94c6-4412-8506-9cb51e51ff77/1/QGYnM7yHPRPh-fZujf91yCDV0vc.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.28.136.0/24
IPv6:
2a12:2540::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
56488
Signature Algorithm: sha256WithRSAEncryption
15:ff:58:c3:ae:9a:b9:c4:ab:ff:c8:af:a2:4f:18:43:6a:15:
15:84:c1:c7:5d:77:54:c2:b5:6c:da:e7:b4:7a:b2:b9:9e:b0:
d5:5c:bd:f0:18:cc:01:c1:28:5e:3f:ea:eb:5d:72:b4:01:26:
90:b7:a0:f8:62:fa:5f:36:db:93:eb:31:a4:3d:0c:29:f5:29:
ff:ec:b2:e8:40:a0:c4:dc:13:9f:ee:4f:d5:f1:16:0e:41:da:
96:6c:47:62:f4:fd:28:d4:39:58:b9:12:22:52:a6:6f:3b:ef:
b8:c5:e7:58:d0:8a:ee:48:04:8c:17:ff:28:af:ee:a6:94:90:
65:12:04:d3:f4:26:8a:d0:a1:19:1c:84:cd:8d:cb:2a:7b:0b:
23:b9:c1:59:50:cc:29:d9:d0:42:da:94:bd:a9:79:81:41:c2:
81:d1:86:cf:09:b9:4d:df:0d:76:80:50:21:c3:c2:58:fb:d3:
f3:ee:5e:4c:83:49:64:df:80:91:95:90:4a:6e:cd:17:d6:18:
da:30:00:b9:e0:7d:50:53:89:20:05:8f:e0:78:82:e0:48:c5:
8c:08:ce:7b:c1:b2:1e:23:5a:9c:c0:79:20:b1:89:0b:07:36:
b2:e7:52:cb:0e:9b:c3:54:bb:6e:8c:9d:e3:ef:97:d5:38:bf:
6b:ae:9c:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 03:31:20 2024 by rpki-client on console-fra.rpki-client.org