Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/SF4-4cMlgXX0_22bVZ2lTIPsC08.cer
File: SF4-4cMlgXX0_22bVZ2lTIPsC08.cer (raw, json)
Hash identifier: 1ha5m4sI0FR5CmEWImX4lfZi4Z/A4TW3/XhEt1A/KXU=
Subject key identifier: 48:5E:3E:E1:C3:25:81:75:F4:FF:6D:9B:55:9D:A5:4C:83:EC:0B:4F
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC9BCAD2BFA3CE4D3442F0DD812D4915B
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/18/96d022-ee02-447c-a349-9c933ccd16c7/1/SF4-4cMlgXX0_22bVZ2lTIPsC08.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/18/96d022-ee02-447c-a349-9c933ccd16c7/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 10:33:54 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 30935
IP: 91.223.186.0/24
IP: 185.253.204.0/22
IP: 193.16.220.0/24
IP: 2a0c:40c0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:ad:2b:fa:3c:e4:d3:44:2f:0d:d8:12:d4:91:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 10:33:54 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=485e3ee1c3258175f4ff6d9b559da54c83ec0b4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:91:68:5f:f6:db:7d:da:41:e9:c4:32:b1:40:
ff:a6:2f:e0:8e:dc:d5:39:aa:ae:08:2d:03:be:1d:
0c:3a:45:37:04:5a:c9:e9:8e:7d:ba:32:4d:e2:de:
36:25:83:c8:e3:67:1a:e8:54:9e:65:37:ee:2d:a7:
87:29:6b:5f:57:8d:59:bf:21:f3:39:9e:6a:56:ec:
78:75:ab:65:7d:ed:ae:e8:36:60:e8:40:bf:84:02:
c5:17:cf:c0:da:db:89:d0:78:a7:33:47:1f:7d:48:
28:95:03:3e:57:da:78:d7:2e:a9:14:db:30:08:36:
75:ee:05:86:49:ea:eb:07:ec:9d:d4:62:fd:a5:51:
11:66:51:53:64:18:92:7d:4e:55:73:61:a3:7f:52:
05:48:34:5a:ff:4c:a9:09:36:f9:a7:39:45:fe:19:
68:67:68:3e:98:bb:83:da:32:5e:55:3c:8d:d4:ec:
a9:dd:b2:87:70:6b:86:97:0c:37:97:9f:19:6d:8f:
59:13:85:52:8d:82:be:99:27:09:0d:32:5d:94:8a:
c1:97:77:cd:64:5a:2e:fe:ec:78:f9:f6:93:66:c4:
d9:48:ea:c1:f1:36:9c:32:93:94:53:f4:7e:d2:4f:
5c:47:c0:16:46:27:85:f2:d5:6e:e7:cd:31:54:b8:
d9:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:5E:3E:E1:C3:25:81:75:F4:FF:6D:9B:55:9D:A5:4C:83:EC:0B:4F
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/96d022-ee02-447c-a349-9c933ccd16c7/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/96d022-ee02-447c-a349-9c933ccd16c7/1/SF4-4cMlgXX0_22bVZ2lTIPsC08.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.223.186.0/24
185.253.204.0/22
193.16.220.0/24
IPv6:
2a0c:40c0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
30935
Signature Algorithm: sha256WithRSAEncryption
60:fd:07:9c:4a:c7:53:97:4b:35:67:06:fc:88:03:f0:78:ca:
0b:bc:24:47:7f:c7:84:a1:77:d5:a6:6a:ab:a4:d4:d0:ba:d4:
af:6c:70:50:a9:b4:42:5c:4e:81:d9:7c:9d:c4:64:8c:85:ec:
a0:91:30:07:1c:43:8b:71:26:54:42:28:2e:9e:7c:d3:33:7e:
22:04:aa:34:34:81:01:41:da:95:17:16:26:9c:53:49:7e:fd:
5b:65:48:93:7a:d0:29:3b:8f:f2:6d:56:e8:7b:f8:51:8b:cf:
0e:b7:2d:8c:8c:5c:c8:41:c8:a3:e7:ae:1e:1b:e0:6e:30:56:
fe:1f:bb:3a:fa:e9:37:b4:f5:58:0c:1b:24:ad:7a:8c:90:29:
a2:91:67:b6:26:68:e4:ee:4f:5d:7b:92:44:3f:f1:57:ef:fe:
a9:86:98:15:db:41:e2:06:b7:29:6a:86:9a:ea:5e:af:53:2b:
9f:13:5f:44:54:12:a8:71:b9:39:55:47:27:a0:38:f9:29:77:
50:c7:f4:dd:87:c0:30:a1:a1:73:ea:25:b4:9d:b5:92:21:e9:
5b:ea:5c:79:3d:a6:9b:b1:15:49:c0:07:95:e3:c8:4e:d9:89:
bd:57:2c:86:7f:04:73:80:54:e4:04:f1:71:e8:1f:9a:76:f4:
d6:03:d1:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:09:05 2024 by rpki-client on console-fra.rpki-client.org