Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/UA2xcVBSJTv1I_FAufVjehHV6a8.cer
File: UA2xcVBSJTv1I_FAufVjehHV6a8.cer (raw, json)
Hash identifier: sIGstxmOtmujFdKkGc8xdLWPBEdvKJrqe9B/C9ZpYNA=
Subject key identifier: 50:0D:B1:71:50:52:25:3B:F5:23:F1:40:B9:F5:63:7A:11:D5:E9:AF
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC64B17339E8238D42281E83BBFE22895
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/ba/1f7bad-e5dd-4e52-b0d4-8f5c9867e998/1/UA2xcVBSJTv1I_FAufVjehHV6a8.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/ba/1f7bad-e5dd-4e52-b0d4-8f5c9867e998/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 18:30:59 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 29326
AS: 197981
IP: 176.67.88.0/21
IP: 185.103.64.0/22
IP: 2a00:89c0::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4b:17:33:9e:82:38:d4:22:81:e8:3b:bf:e2:28:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 18:30:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=500db1715052253bf523f140b9f5637a11d5e9af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:fe:55:ea:31:64:af:05:5a:eb:15:01:ee:17:
b9:15:df:ab:84:a1:b4:eb:76:33:e9:a0:6b:7f:a1:
e5:1f:ed:ad:19:39:06:e5:38:70:6b:a6:45:75:44:
0a:6b:e3:76:5a:88:fc:da:2e:56:16:42:1d:96:b0:
02:b4:31:ff:2b:97:3c:06:40:88:14:75:22:19:19:
72:d5:8e:81:39:97:7a:15:dc:79:e9:c5:2e:5a:d9:
92:c4:92:16:58:a2:6d:ea:08:ef:e7:bf:34:b2:0d:
96:27:ce:2c:4e:a4:20:5d:8e:67:44:b7:bf:d4:be:
ba:01:09:96:4b:3a:99:80:83:3f:f4:8c:e2:53:23:
d7:93:dd:dc:fe:f3:d2:fd:35:e5:d3:82:af:ae:93:
a9:00:ff:72:c0:3f:89:e5:31:19:62:cf:08:39:9d:
ec:ec:de:dd:4f:f6:f7:40:e1:e5:9b:91:37:3e:cd:
07:62:5f:e4:ef:d6:9b:0f:88:68:fe:60:66:a5:e4:
be:de:b7:a4:79:ee:9b:a3:a4:b6:94:6c:16:ce:df:
86:b3:8e:46:4e:ca:7a:64:11:c7:63:53:70:29:b6:
c9:2a:44:84:a3:f4:ef:1a:79:17:78:11:ec:8d:30:
91:4e:ac:57:33:53:4b:57:d4:9d:52:f0:ea:aa:8f:
7e:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:0D:B1:71:50:52:25:3B:F5:23:F1:40:B9:F5:63:7A:11:D5:E9:AF
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/1f7bad-e5dd-4e52-b0d4-8f5c9867e998/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/1f7bad-e5dd-4e52-b0d4-8f5c9867e998/1/UA2xcVBSJTv1I_FAufVjehHV6a8.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.67.88.0/21
185.103.64.0/22
IPv6:
2a00:89c0::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
29326
197981
Signature Algorithm: sha256WithRSAEncryption
4a:6c:cd:e9:57:83:0a:d9:f6:11:7a:6c:d8:ae:40:1d:a0:6c:
6f:55:1a:64:b6:70:97:02:47:fa:ef:f9:5c:b4:ce:59:38:fc:
a8:98:b3:51:e5:38:21:27:f1:6d:ce:ea:67:5b:40:7d:3e:59:
a2:2c:c9:15:1b:2e:57:79:76:1c:7e:20:c1:0f:20:28:b5:90:
28:eb:5e:5e:ed:60:43:eb:4f:3b:da:65:63:fc:bf:7c:92:92:
6b:f7:f2:2b:0c:53:fa:93:85:45:87:40:05:bf:ba:d0:e6:50:
15:74:1a:ff:c8:20:ba:3b:d2:54:6f:4f:55:1d:4f:96:67:d8:
29:74:b7:cb:31:6f:dc:6a:80:ba:f3:cc:4c:53:da:af:31:4f:
4c:15:f4:bc:0c:16:f4:8e:cd:07:52:a2:e9:bc:79:fe:6b:b2:
5b:3c:3f:ad:12:71:6e:eb:5a:ee:1c:e6:6c:eb:84:cd:a2:6b:
bc:2a:86:df:52:6d:9a:06:54:67:99:2d:b5:15:0e:3e:03:13:
34:ac:d3:e4:af:86:6a:a1:c6:ee:68:25:ac:18:2a:46:4e:80:
01:70:e6:d2:c7:94:ee:9e:9e:22:16:13:bf:2b:3e:bf:e0:4a:
2b:76:ec:e4:f4:df:d2:26:17:fc:95:0c:09:33:21:ce:bc:1e:
22:57:79:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:09:35 2024 by rpki-client on console-fra.rpki-client.org