Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/TFPfR7Ncvx9bdwvw2tiLDlTeUeQ.cer
File: TFPfR7Ncvx9bdwvw2tiLDlTeUeQ.cer (raw, json)
Hash identifier: oYQExKlwUXxUhhFEE39KW4hZUt2Q0Sgw3tGjq8yc7Gg=
Subject key identifier: 4C:53:DF:47:B3:5C:BF:1F:5B:77:0B:F0:DA:D8:8B:0E:54:DE:51:E4
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC9BBC0948033279BE798F5A9C7B93C12
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/50/cb53e4-4483-4a54-8e9e-2dce206bd7d7/1/TFPfR7Ncvx9bdwvw2tiLDlTeUeQ.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/50/cb53e4-4483-4a54-8e9e-2dce206bd7d7/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 10:32:54 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 198653
IP: 164.138.200.0/21
IP: 2a07:bf80::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bb:c0:94:80:33:27:9b:e7:98:f5:a9:c7:b9:3c:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 10:32:54 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4c53df47b35cbf1f5b770bf0dad88b0e54de51e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:d9:36:be:d2:43:a4:e7:8b:85:c2:e3:cb:7a:
3e:8d:42:8d:89:5e:0f:67:e0:b0:dd:12:0d:ad:62:
17:bc:ef:f2:22:c5:ac:61:2c:13:93:24:f4:d1:e0:
9c:36:59:a3:8d:f2:82:59:64:a6:3d:d0:e7:ba:b8:
2a:0d:f3:b2:6b:28:ef:8a:a7:0f:f4:5e:97:f1:ba:
1a:77:fa:02:3a:96:1e:ae:44:6b:42:55:bf:84:40:
29:9a:01:c6:85:ac:ca:3b:e8:ab:2d:1f:51:a1:b8:
44:44:ab:69:2f:cf:e6:ea:28:3c:0c:51:50:d1:46:
32:64:6e:f5:13:d0:c7:07:aa:66:db:65:ef:52:db:
ef:22:2c:4f:cb:63:e0:76:cf:88:88:ad:69:ea:3a:
6a:84:10:94:d9:c2:40:64:2e:9a:b4:da:c9:d7:6d:
5d:f2:db:a4:af:2b:3e:08:59:a0:57:31:17:39:b8:
a2:f6:e8:74:b7:dc:f7:56:1f:64:86:4d:02:de:a2:
8f:ff:0a:4f:ad:b5:a2:83:7a:e0:73:a2:be:53:7b:
c9:d0:46:97:bd:9b:45:34:8e:fd:ec:c0:7c:6b:f0:
9b:97:9c:cd:8a:84:5b:22:98:6f:d1:78:46:fd:3e:
46:13:c1:06:3f:5d:59:51:26:6c:14:f2:67:77:60:
1a:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:53:DF:47:B3:5C:BF:1F:5B:77:0B:F0:DA:D8:8B:0E:54:DE:51:E4
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/cb53e4-4483-4a54-8e9e-2dce206bd7d7/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/cb53e4-4483-4a54-8e9e-2dce206bd7d7/1/TFPfR7Ncvx9bdwvw2tiLDlTeUeQ.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
164.138.200.0/21
IPv6:
2a07:bf80::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
198653
Signature Algorithm: sha256WithRSAEncryption
05:f1:41:91:72:57:b7:1a:d2:ee:e9:58:11:90:a8:d3:cd:53:
7e:2b:e1:c6:50:81:24:fe:fe:98:79:b3:50:88:39:00:7d:15:
0a:3b:64:92:5d:66:bd:ea:ff:43:46:88:38:63:a4:e1:59:65:
f0:46:53:4e:02:e6:8e:a8:c7:5a:cb:0c:3e:56:94:2d:70:8d:
68:69:af:28:d4:41:1f:0f:26:6b:16:1f:29:b9:fd:29:14:51:
0d:a7:5c:4e:10:ee:8a:85:3f:64:36:6c:12:7a:b5:70:f5:f9:
4a:e9:5f:aa:2b:ec:12:8e:8e:83:f5:2f:3e:d4:28:87:3a:ad:
8e:c0:6f:40:33:56:91:f2:a8:08:e4:e3:99:d1:f6:72:b4:0d:
87:72:20:e2:97:fa:40:b7:ea:b9:bb:ef:aa:8a:52:20:84:59:
5b:33:36:3f:e6:8e:db:7c:e3:16:62:93:a3:f8:35:9f:f1:af:
3e:0d:b5:fb:9b:d6:2c:23:e6:c4:ca:af:71:87:b1:b7:34:70:
b5:95:56:05:ab:9a:00:bd:07:bb:69:1c:e8:4e:6b:ee:2a:8f:
8b:de:40:e1:90:cd:76:0f:02:08:57:bc:77:8e:f1:71:81:66:
93:50:22:3f:f8:54:06:25:e7:58:f1:65:a1:09:8b:9a:2e:02:
df:16:ab:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:29:16 2024 by rpki-client on console-ams.rpki-client.org