Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/U7u7qj7iTHrZssYEMuFO2jhJteI.cer
File: U7u7qj7iTHrZssYEMuFO2jhJteI.cer (raw, json)
Hash identifier: rt/xWIyVUBC2lp0goiw/ZzA/jUD/pn5LQr8WDhPLlUE=
Subject key identifier: 53:BB:BB:AA:3E:E2:4C:7A:D9:B2:C6:04:32:E1:4E:DA:38:49:B5:E2
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01929A73AF5BF2675CF187BAE6FA7C5F4A3A
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/53/3394c0-4587-444e-9a25-00ecf0c4d0ef/1/U7u7qj7iTHrZssYEMuFO2jhJteI.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/53/3394c0-4587-444e-9a25-00ecf0c4d0ef/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 17 Oct 2024 12:28:45 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: IP: 185.92.160.0/22
IP: 185.211.220.0/22
IP: 212.29.18.0/24
IP: 212.29.28.0/24
IP: 212.79.200.0 -- 212.79.223.255
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:9a:73:af:5b:f2:67:5c:f1:87:ba:e6:fa:7c:5f:4a:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Oct 17 12:28:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=53bbbbaa3ee24c7ad9b2c60432e14eda3849b5e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:b4:37:11:0d:7a:4c:f8:34:8c:7b:30:e6:3c:
bc:d2:2a:e5:62:9e:07:1b:35:2d:28:e6:b3:6e:f3:
ca:a2:cf:ff:18:6c:bc:43:99:6e:f6:5b:e7:61:17:
bb:b4:e3:4f:1f:eb:2c:2b:35:64:8c:64:23:c2:f6:
7a:c2:e6:77:f0:7a:31:09:19:66:db:75:4f:88:16:
ef:91:84:b2:66:9d:86:ae:45:cf:be:91:6e:b9:56:
c9:f4:17:32:e3:5f:d1:16:fd:dd:7f:14:38:ed:21:
c1:eb:9b:bc:22:e6:f5:48:5b:c6:49:d7:8d:12:38:
1c:8d:1d:04:13:c3:e1:10:48:06:10:0d:ac:5c:90:
d6:b3:bc:1e:45:29:0c:ee:04:ad:04:65:a4:4d:a4:
36:e2:d5:11:de:3d:79:f5:64:b6:56:a0:95:17:9e:
1d:c7:f2:95:92:c2:b5:e6:dd:1d:1e:da:16:b9:c2:
cb:af:b3:81:4f:47:66:31:48:e5:a2:38:5e:11:85:
34:a2:13:58:60:7c:40:55:fa:e3:b4:21:9c:04:56:
13:d3:88:11:7a:b3:bd:82:57:fb:3f:2b:7c:b3:bc:
87:01:e0:a6:ea:13:e3:99:3b:33:ea:70:cb:b0:aa:
22:03:21:7d:45:8b:f7:e2:5d:29:63:28:ad:68:c8:
45:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:BB:BB:AA:3E:E2:4C:7A:D9:B2:C6:04:32:E1:4E:DA:38:49:B5:E2
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/3394c0-4587-444e-9a25-00ecf0c4d0ef/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/3394c0-4587-444e-9a25-00ecf0c4d0ef/1/U7u7qj7iTHrZssYEMuFO2jhJteI.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.92.160.0/22
185.211.220.0/22
212.29.18.0/24
212.29.28.0/24
212.79.200.0-212.79.223.255
Signature Algorithm: sha256WithRSAEncryption
2a:0f:f8:7a:d1:a1:5b:fd:9e:07:9b:d3:c8:0e:cc:89:72:2e:
ca:50:26:e4:a8:6f:37:d8:be:dd:04:c9:fe:d1:70:55:b2:29:
d9:8c:42:03:c9:08:9b:43:6e:6a:d1:41:50:65:f8:73:6a:21:
e8:38:a0:f9:e6:35:fd:86:ac:38:91:14:aa:3f:08:01:6b:26:
76:94:b3:91:52:aa:24:3e:32:57:c3:ac:15:3b:7a:61:1e:ad:
57:81:e0:10:a3:36:84:0c:b9:39:cb:a4:32:96:8d:ca:ca:6e:
ce:41:f2:e2:aa:3e:e7:3d:e6:15:a4:dd:e3:43:03:6c:7a:35:
d3:07:47:97:5b:69:82:c2:b0:ef:71:6d:9b:1a:74:33:81:60:
63:a3:4b:49:30:ed:44:f0:9e:d4:5f:db:fb:64:f1:f0:1b:6b:
c9:db:c1:ef:83:e5:8e:e2:09:a0:5d:91:29:1e:2d:1b:f5:ab:
fe:c4:ff:bd:ad:bd:a0:f0:18:1d:0b:35:f0:28:29:02:b0:42:
97:79:67:ce:f1:b3:e9:6d:15:1f:3d:f8:cb:53:2c:77:12:3e:
76:d5:25:f7:d3:04:b8:06:a2:bc:41:56:d6:93:9d:60:68:b4:
39:94:15:1d:0d:18:86:97:32:7a:67:2f:cb:53:09:2f:2a:8f:
20:e5:cc:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 02:16:44 2024 by rpki-client on console-ams.rpki-client.org