Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/RN9Py46lHhjSkIBcj1Dw30NA29U.cer
File: RN9Py46lHhjSkIBcj1Dw30NA29U.cer (raw, json)
Hash identifier: D4y8xFMEa05Wrve7pvCuFFqLBE59b1gV2AXlUR0zBNU=
Subject key identifier: 44:DF:4F:CB:8E:A5:1E:18:D2:90:80:5C:8F:50:F0:DF:43:40:DB:D5
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0190170F2230A8AE992388FBA6B52AB5F0C1
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/01/7cc183-eba5-4747-8b10-f38c749b6e39/1/RN9Py46lHhjSkIBcj1Dw30NA29U.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/01/7cc183-eba5-4747-8b10-f38c749b6e39/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Fri 14 Jun 2024 14:03:06 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 49747
IP: 146.19.1.0/24
IP: 146.19.238.0/24
IP: 188.64.141.0/24
IP: 193.200.206.0/24
IP: 2001:67c:c6c::/48
IP: 2a14:5f40::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:17:0f:22:30:a8:ae:99:23:88:fb:a6:b5:2a:b5:f0:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jun 14 14:03:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=44df4fcb8ea51e18d290805c8f50f0df4340dbd5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:c9:30:48:31:b1:6d:e7:9d:56:9b:a3:15:2e:
da:42:2d:d2:45:48:f8:85:73:1c:a5:41:96:05:68:
53:47:7e:ec:57:43:32:61:13:cd:2d:94:3c:84:1e:
10:f1:55:c9:0b:3e:90:92:f6:82:81:27:bc:c1:74:
53:bc:66:e4:f7:84:f7:eb:78:ff:ed:4e:36:92:23:
f6:04:e4:aa:5d:47:0a:12:a2:c1:fc:b1:59:40:ae:
29:6f:6b:ba:58:6c:46:27:26:34:2f:8a:1f:90:dc:
9a:ac:2d:22:7d:a1:f8:0e:1e:e2:e0:1a:ec:41:e6:
69:7e:ec:c1:52:77:cd:ac:1c:34:92:87:03:4a:cd:
97:3f:e4:3d:0f:ff:75:2a:0c:8b:d1:fa:fb:a9:9a:
1b:03:79:cc:dc:06:fa:80:d9:30:de:d8:e0:36:04:
64:8b:29:76:09:e8:43:52:ff:f9:3f:8e:4c:2d:d3:
06:0b:cd:67:d3:52:30:b4:46:a4:15:2a:b6:63:f1:
ba:bd:25:2a:27:61:9e:6e:0d:25:17:80:03:94:69:
55:61:94:fa:17:39:5a:5f:80:9a:e6:97:48:1e:cc:
53:ca:9e:b3:41:2a:7d:7e:4a:e4:41:fa:73:3a:43:
bc:ad:af:77:c3:ba:7e:99:34:88:13:bc:c7:bc:83:
59:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:DF:4F:CB:8E:A5:1E:18:D2:90:80:5C:8F:50:F0:DF:43:40:DB:D5
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/7cc183-eba5-4747-8b10-f38c749b6e39/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/7cc183-eba5-4747-8b10-f38c749b6e39/1/RN9Py46lHhjSkIBcj1Dw30NA29U.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.1.0/24
146.19.238.0/24
188.64.141.0/24
193.200.206.0/24
IPv6:
2001:67c:c6c::/48
2a14:5f40::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
49747
Signature Algorithm: sha256WithRSAEncryption
98:8b:38:cb:f3:eb:84:ad:e5:14:1a:5b:26:da:d5:b5:8f:67:
00:e9:67:e3:e8:ba:81:63:07:f6:89:6e:9d:50:c5:95:d9:96:
6f:77:92:45:43:30:81:47:56:7d:de:82:dc:35:93:2f:78:62:
e8:ca:6b:98:b6:89:97:5c:5c:89:3b:8b:05:de:93:0f:89:d6:
0f:7c:bf:00:73:c2:be:9d:91:fc:68:53:b3:36:39:ea:99:17:
90:1c:6c:19:dc:d4:32:c9:8e:f1:a8:77:5f:ad:c8:2b:81:44:
64:9f:21:6f:45:ee:4b:8e:52:6f:aa:21:54:51:f7:a4:99:52:
79:8e:69:13:4d:88:1e:26:3b:0b:3b:60:8a:84:e9:b1:b3:65:
15:1f:cd:6f:36:c7:6d:fb:aa:57:9b:97:f6:b1:a1:63:ce:8c:
3d:6b:80:bd:1a:f8:6d:67:89:72:b9:3b:62:7b:e5:d1:b6:d3:
2a:01:f6:78:27:c3:d8:da:04:ba:c2:6d:0d:49:f5:64:f4:26:
cb:9a:a9:a9:e5:98:9f:b7:5d:bc:43:83:c7:23:2b:2b:4f:99:
c6:4d:cc:bc:56:76:a8:b4:a3:21:fb:d7:ba:08:69:c3:c6:18:
15:4e:b2:e4:bf:0d:42:23:06:4c:da:6e:94:14:0c:01:2b:2a:
6a:95:7f:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:50:10 2024 by rpki-client on console-ams.rpki-client.org