Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/SbJERkTEM0jXxQ9OUOdDVumJbb8.cer
File: SbJERkTEM0jXxQ9OUOdDVumJbb8.cer (raw, json)
Hash identifier: v+ah9AuFDoljP+TgYFniJYZN0DYgfTzxPsfEtVo1NYc=
Subject key identifier: 49:B2:44:46:44:C4:33:48:D7:C5:0F:4E:50:E7:43:56:E9:89:6D:BF
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC6B8DD36C3465E2FBA87FAF1F0D5AD70
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/c2/64cdbd-c851-4b35-bb79-753d969a0702/1/SbJERkTEM0jXxQ9OUOdDVumJbb8.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/c2/64cdbd-c851-4b35-bb79-753d969a0702/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 20:30:53 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 41459
IP: 185.85.232.0/22
IP: 2a05:afc0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b8:dd:36:c3:46:5e:2f:ba:87:fa:f1:f0:d5:ad:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 20:30:53 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=49b2444644c43348d7c50f4e50e74356e9896dbf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:c0:0d:a2:c8:39:b4:1e:7a:c7:f2:08:63:57:
d0:13:f9:17:b4:19:3d:c0:93:e0:d2:22:64:66:7e:
1c:d4:f1:b9:b4:ca:05:69:88:85:8e:ee:f4:2a:11:
f2:1a:6a:17:27:42:c9:19:c4:f7:c4:65:de:00:e7:
39:f0:a6:aa:70:37:2e:0f:15:40:f3:be:02:67:57:
20:f0:b9:d7:3a:fd:e8:f2:63:eb:ff:64:9c:de:3d:
c2:01:48:7f:d4:a6:b1:dd:0c:ff:d1:ce:a5:6b:89:
80:0a:d1:9b:d5:32:25:88:78:63:e7:77:51:5a:02:
99:86:27:b6:bc:41:40:10:89:25:f4:fb:ba:e8:14:
45:fd:5e:9a:d5:6d:46:ea:6f:38:da:9b:f7:ef:f5:
48:9b:69:0d:47:2c:52:b3:0c:f0:ac:ac:35:8d:58:
b9:d4:ee:65:46:e4:76:74:ec:1d:55:5f:37:9a:06:
03:57:04:61:bd:4d:96:f8:63:cb:12:bf:9e:80:f5:
17:5c:66:99:14:a5:0d:d7:50:3d:63:9c:33:ef:51:
b1:fc:a4:0d:f0:6a:67:2e:72:0c:d4:7b:08:12:05:
0d:e6:84:70:78:b6:0f:c4:1b:22:c3:9f:10:44:64:
88:67:d0:85:13:67:46:43:db:cf:41:e5:ee:13:5b:
6c:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:B2:44:46:44:C4:33:48:D7:C5:0F:4E:50:E7:43:56:E9:89:6D:BF
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/64cdbd-c851-4b35-bb79-753d969a0702/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/64cdbd-c851-4b35-bb79-753d969a0702/1/SbJERkTEM0jXxQ9OUOdDVumJbb8.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.85.232.0/22
IPv6:
2a05:afc0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
41459
Signature Algorithm: sha256WithRSAEncryption
05:d2:50:c4:d8:04:1c:a3:31:a5:ac:3c:91:3e:71:dc:89:bf:
06:86:ac:08:5e:13:ef:c7:f7:73:56:f9:67:d3:65:95:e7:87:
7d:a5:14:d9:4f:e5:28:4a:fc:f1:03:a8:9b:d4:41:62:89:21:
bb:01:df:be:0b:f9:f0:8c:b7:75:b0:d1:db:a1:00:65:33:2e:
1c:06:7b:e1:08:21:d9:17:37:6d:f6:e7:f1:6f:92:d7:b9:c7:
09:e4:08:7a:fb:a8:a3:dd:2c:1d:ac:05:a7:81:6a:a1:bb:d3:
ca:17:f9:55:7c:be:e2:4c:1d:14:36:bc:98:89:da:17:69:d3:
7e:8a:4d:36:b2:9b:66:20:f2:3b:47:57:f6:0e:96:75:8c:67:
17:bd:d2:17:f8:0b:75:18:26:03:65:6c:e4:9e:99:b5:d8:c5:
96:af:df:aa:4f:6a:69:43:22:52:e1:7a:f3:38:fc:04:e5:9f:
1f:52:9f:23:6b:fa:24:7f:62:61:e0:7b:3b:39:21:b9:a9:b6:
b9:ea:84:37:df:e5:5e:36:0a:96:f0:e4:dd:d6:70:8d:0f:93:
18:bc:98:48:50:e6:b8:6d:04:57:b8:07:fc:44:8e:a0:b5:40:
e3:9d:e1:2f:ee:26:8c:9f:68:87:fb:bf:91:e7:ef:47:e3:59:
8f:8c:87:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:09:10 2024 by rpki-client on console-fra.rpki-client.org