Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/Sc2eyOU_j8KjXpG3cBT2pz2LWz0.cer
File: Sc2eyOU_j8KjXpG3cBT2pz2LWz0.cer (raw, json)
Hash identifier: rQhKIZJQ0pCLssUa8CwbPke5j8BCNR8iTqzagQSGLws=
Subject key identifier: 49:CD:9E:C8:E5:3F:8F:C2:A3:5E:91:B7:70:14:F6:A7:3D:8B:5B:3D
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC64B7BF55E0C15D806EE41244B53DAA2
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/14/1b5961-84ab-40be-b0dc-2f6f9f888375/1/Sc2eyOU_j8KjXpG3cBT2pz2LWz0.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/14/1b5961-84ab-40be-b0dc-2f6f9f888375/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 18:31:24 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 56676
IP: 31.130.120.0/21
IP: 91.237.209.0/24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4b:7b:f5:5e:0c:15:d8:06:ee:41:24:4b:53:da:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 18:31:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=49cd9ec8e53f8fc2a35e91b77014f6a73d8b5b3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:37:fd:83:f2:83:3c:a1:2a:78:04:19:68:5d:
07:6e:84:dc:bb:f2:1c:7e:3d:b8:35:34:5f:ee:2a:
46:e1:ab:46:08:45:1d:97:7b:e2:dc:c9:19:c6:1b:
ea:12:14:b7:33:3a:86:96:de:80:38:bd:c7:93:a1:
a3:10:66:a0:c0:61:07:75:e1:cb:1a:a3:33:36:20:
3e:45:b8:32:9a:fd:a2:38:45:55:fa:18:6d:7c:4e:
cd:a4:ab:bf:3b:f7:55:4e:6c:f7:19:6d:82:f1:dd:
37:3b:46:b5:d4:ee:48:6d:19:f8:14:f6:f2:c6:4d:
18:0b:8f:36:03:18:c0:48:da:dc:6a:6a:79:3e:14:
48:4d:f8:f5:c1:2b:09:ec:d7:6a:81:2b:1e:27:df:
81:fb:93:fc:a8:dc:cb:7a:96:a8:28:e3:9c:b6:4c:
2a:2a:b9:94:29:9b:d9:c4:78:10:f6:f1:22:ad:a0:
0b:a3:8d:7f:b9:8b:ca:68:af:a4:11:71:eb:08:9f:
61:ed:61:bf:67:cd:55:03:bc:fd:35:2b:aa:81:98:
59:b1:4e:4e:3a:18:db:44:fd:fa:67:e8:dd:d5:00:
c9:7b:aa:da:48:a7:a3:bd:99:1f:29:22:ae:56:33:
af:e2:18:d4:19:c5:7e:7b:46:0f:48:7e:3a:b6:30:
dd:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:CD:9E:C8:E5:3F:8F:C2:A3:5E:91:B7:70:14:F6:A7:3D:8B:5B:3D
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/1b5961-84ab-40be-b0dc-2f6f9f888375/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/1b5961-84ab-40be-b0dc-2f6f9f888375/1/Sc2eyOU_j8KjXpG3cBT2pz2LWz0.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.130.120.0/21
91.237.209.0/24
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
56676
Signature Algorithm: sha256WithRSAEncryption
54:5a:11:f8:e7:c0:7e:19:cb:ee:98:ad:28:1e:27:e6:d3:01:
c0:59:b9:68:ec:36:76:52:2d:69:f6:24:d2:1b:94:d7:1d:ac:
e1:bb:7b:d1:09:35:9f:27:51:70:f0:91:9f:2d:c7:7f:33:3e:
a2:42:ec:13:d3:01:69:15:57:a8:da:7a:20:7e:e8:9e:37:38:
e5:0e:bb:43:d6:7a:90:ee:82:c9:8d:f5:c7:af:af:d1:2c:c2:
6c:04:4b:c2:3d:8b:78:23:c8:6c:1f:59:f5:f3:e9:33:8d:34:
07:45:b0:4d:0c:2f:52:94:f7:45:d3:36:82:5e:30:50:f8:08:
65:d1:40:09:20:1e:00:b7:27:21:bc:fc:37:2b:3b:4f:0c:e6:
df:5d:5d:98:63:d7:9e:00:66:6c:a8:be:32:4c:07:e0:ea:79:
0e:5b:f9:72:2d:71:6b:39:75:81:7a:8e:0c:9b:63:2a:51:ab:
11:10:23:2e:92:b5:58:62:6d:cd:2a:4c:ba:80:c8:cc:0b:b4:
b7:64:37:db:d2:d8:f6:fb:78:93:d9:7c:e0:5c:33:25:ae:82:
fc:0b:ac:84:bb:74:06:33:ad:ab:d5:b2:5f:62:3f:f5:e3:bc:
9b:ad:a4:d4:91:10:91:60:3e:49:b6:72:c9:83:c5:a7:69:ff:
80:04:a9:9c
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sat Nov 23 03:32:02 2024 by rpki-client on console-fra.rpki-client.org