Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/T9ZkbJPCl0eJ7O97REZW7mQWFyk.cer
File: T9ZkbJPCl0eJ7O97REZW7mQWFyk.cer (raw, json)
Hash identifier: X5e2QMmQgakjG62mJRA4M7YWwHuphV8KdUe3j0mFvQM=
Subject key identifier: 4F:D6:64:6C:93:C2:97:47:89:EC:EF:7B:44:46:56:EE:64:16:17:29
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CE819F1501703AB78C7FDBEC8B0951A7F
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/c6/33816b-145b-47f8-85fa-76a5385c515a/1/T9ZkbJPCl0eJ7O97REZW7mQWFyk.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/c6/33816b-145b-47f8-85fa-76a5385c515a/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 08 Jan 2024 08:04:23 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 25575
IP: 193.19.92.0/23
IP: 213.145.224.0/19
IP: 2a03:1000::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:e8:19:f1:50:17:03:ab:78:c7:fd:be:c8:b0:95:1a:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 8 08:04:23 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4fd6646c93c2974789ecef7b444656ee64161729
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:6d:79:a7:0f:c1:10:89:e1:3e:f1:a6:13:b1:
b2:a5:df:cf:65:10:33:8e:0a:65:98:1a:0b:8f:a7:
14:a1:1b:8f:48:dc:ea:13:f0:6e:44:a8:7f:98:93:
9b:a1:94:04:cc:36:9a:07:56:2f:f2:fe:d2:d9:a4:
52:26:3e:b8:61:de:2c:c0:6e:29:07:b5:de:3e:bb:
97:97:ff:26:de:b3:2a:cc:10:50:ba:d3:e5:f2:c4:
78:6d:c9:92:57:28:7e:63:83:b2:ae:65:cd:fb:68:
13:76:de:ca:56:da:04:63:a0:ea:42:35:02:30:9b:
6d:5c:d3:6e:1d:2c:14:bb:cd:e6:dd:ed:ad:95:c1:
53:f9:f7:a1:d6:ec:06:d4:93:b3:c9:bf:f5:6c:8a:
a8:d0:f6:12:6f:d7:73:39:0c:cd:10:54:9f:57:10:
c0:bd:95:90:b1:51:06:d5:e9:59:93:3a:1b:b7:bf:
3d:3e:38:99:0f:2d:d2:8d:93:b2:d4:ee:05:55:02:
1b:63:78:e0:7b:25:64:af:77:90:28:68:a9:28:21:
a5:bd:bb:c5:ee:c5:8a:fc:5b:6f:fc:9f:6e:9f:ff:
c6:0d:cc:24:f0:e9:23:e3:b6:16:aa:23:c5:10:66:
a9:05:7e:1a:b4:f4:f7:52:2c:53:33:cf:cf:f3:d0:
ef:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:D6:64:6C:93:C2:97:47:89:EC:EF:7B:44:46:56:EE:64:16:17:29
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/33816b-145b-47f8-85fa-76a5385c515a/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/33816b-145b-47f8-85fa-76a5385c515a/1/T9ZkbJPCl0eJ7O97REZW7mQWFyk.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.19.92.0/23
213.145.224.0/19
IPv6:
2a03:1000::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
25575
Signature Algorithm: sha256WithRSAEncryption
40:a5:b0:0c:ae:c0:49:e1:f9:c2:54:d4:8a:4b:96:8a:9f:b0:
58:2d:4b:02:66:b3:7b:23:1b:d5:e0:b1:34:b7:5e:5d:2e:d8:
61:15:dd:30:3f:85:c4:13:f3:67:de:ef:f4:e6:d5:bb:8e:21:
04:ef:f9:44:d2:70:46:c9:5f:fd:c9:44:ae:0b:00:1e:a2:60:
87:ad:9f:8b:cf:a0:97:31:0a:a9:18:4b:c8:61:9c:48:64:ec:
bf:9c:74:ff:12:3e:7b:fe:b7:df:e6:97:0a:ee:af:36:8b:fa:
b7:71:4a:41:47:59:f6:1c:fe:93:b7:f4:1c:ce:5c:a5:0a:f2:
eb:e8:68:34:fe:2e:4a:f0:dd:4b:d3:cf:f1:cb:4f:0b:6b:d1:
4e:84:bb:58:84:3a:0c:7a:e3:42:99:36:d9:99:21:a9:91:38:
ca:48:36:5a:1e:04:15:1d:5d:a4:38:7b:1f:05:a2:7f:dd:f6:
b0:9b:ff:9c:c1:df:d6:83:f3:3a:88:b3:18:69:0e:7a:aa:c6:
ba:c7:88:f6:63:a4:3a:e7:7c:25:4d:dc:4a:85:68:4f:96:d3:
bf:f3:53:f8:fa:7e:8c:4e:0e:b4:d8:68:3f:31:19:09:a1:1f:
84:3c:f4:e7:9f:2e:1b:e4:ab:53:bc:d4:ab:5b:8d:89:be:18:
6d:87:d2:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:09:18 2024 by rpki-client on console-fra.rpki-client.org