Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/UdoAZhIua6KU0rdHk41Gx06Z-IA.cer
File: UdoAZhIua6KU0rdHk41Gx06Z-IA.cer (raw, json)
Hash identifier: mh2Ef7YMgCJGgULkLTROGwkyaDu3GBRtgutrE86Uod4=
Subject key identifier: 51:DA:00:66:12:2E:6B:A2:94:D2:B7:47:93:8D:46:C7:4E:99:F8:80
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC9BCE77200F34946E92FD53A59D4B04B
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/bb/f64eb4-26cc-4056-853b-be48b7925478/1/UdoAZhIua6KU0rdHk41Gx06Z-IA.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/bb/f64eb4-26cc-4056-853b-be48b7925478/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 10:34:09 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 211644
IP: 91.147.80.0/22
IP: 185.252.192.0/24
IP: 2a10:b0c0::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:e7:72:00:f3:49:46:e9:2f:d5:3a:59:d4:b0:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 10:34:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=51da0066122e6ba294d2b747938d46c74e99f880
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:14:80:8a:4e:5b:c0:3e:26:01:d7:38:22:07:
b6:cf:6a:49:14:d2:f1:b9:a3:bb:f2:b6:a7:54:e9:
d7:91:75:8c:ba:fe:8a:d5:f1:2a:80:3c:a7:1c:fc:
72:ce:6b:67:da:c3:ef:c8:ec:49:72:2a:05:2c:86:
ea:a7:e5:e4:f4:df:b0:2f:84:66:e3:65:f0:40:f3:
83:89:01:19:20:3b:d1:c1:a7:4e:1c:94:59:3c:11:
dc:b0:d2:4d:ab:a7:3d:b8:e4:53:7a:33:1c:e0:c1:
b7:06:67:14:89:a0:30:64:88:eb:fe:d9:47:5a:d6:
4b:dc:df:fb:1b:dc:83:ba:7a:d4:75:8e:84:f7:ce:
75:3c:22:b2:78:02:3a:dc:d3:a7:2a:0a:5b:f9:27:
3a:29:17:f1:0e:d4:d2:d1:9a:8a:fd:7e:b2:24:35:
c3:a9:6a:d0:e3:c2:49:1e:42:f1:4e:66:33:6d:e6:
44:06:57:91:a8:36:4b:0b:06:fb:48:75:92:e7:a4:
40:3f:67:d3:90:23:c5:14:85:c6:b2:aa:e1:83:c0:
d9:0e:98:69:95:54:6a:11:0d:73:c6:9f:be:e7:99:
54:b6:fb:5b:66:d9:0d:70:c1:ed:60:d3:81:41:d8:
04:b6:34:0e:41:63:f8:4d:36:66:7a:7c:22:67:03:
53:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:DA:00:66:12:2E:6B:A2:94:D2:B7:47:93:8D:46:C7:4E:99:F8:80
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/f64eb4-26cc-4056-853b-be48b7925478/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/f64eb4-26cc-4056-853b-be48b7925478/1/UdoAZhIua6KU0rdHk41Gx06Z-IA.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.147.80.0/22
185.252.192.0/24
IPv6:
2a10:b0c0::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
211644
Signature Algorithm: sha256WithRSAEncryption
4f:40:da:7d:61:78:c0:6e:e1:28:73:c1:f5:91:b4:05:a8:61:
e3:1d:52:c5:31:88:11:6f:68:4b:a6:1c:b2:44:a0:ef:3b:2e:
00:a9:3d:12:4d:e7:53:27:10:1c:bd:a4:24:57:75:ad:5a:2c:
2d:c1:96:30:95:0d:83:40:c1:fb:89:8b:f1:cd:d3:6f:f6:44:
3b:4b:4d:71:35:55:a6:22:25:6d:ef:c5:ff:81:7f:81:5d:a9:
b0:92:34:67:a0:1b:67:42:f0:f1:23:9b:0c:e5:2a:bc:ab:54:
6f:f0:80:0d:d5:e8:43:78:84:f8:8e:e1:ad:ed:93:de:3d:d7:
97:69:23:2a:5f:26:7c:93:34:3d:89:3c:a2:a5:74:cb:37:c6:
4d:c2:30:73:81:49:11:ee:06:fd:9e:74:c7:35:41:2e:33:bd:
c4:03:c3:18:a0:0a:0d:96:25:10:a6:f9:43:67:8c:2b:a7:4c:
fd:55:4d:32:c1:08:9d:fe:eb:75:43:20:6a:19:12:39:83:6b:
80:e9:b3:cc:d8:7b:e4:b2:ad:21:59:d8:5a:e2:6a:2c:fa:26:
12:a3:68:82:f2:f9:78:a1:2f:64:3f:2d:9f:13:54:78:6a:6d:
2e:7b:e8:e2:4e:18:60:40:a4:22:79:71:65:29:f0:d2:d1:c8:
8f:23:c9:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:09:42 2024 by rpki-client on console-fra.rpki-client.org