Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/UoUm3npC8eCAkWhA7r85A4uJPRY.cer
File: UoUm3npC8eCAkWhA7r85A4uJPRY.cer (raw, json)
Hash identifier: MDQJamK08DNplnkxPCEdFGS0Fa57V8MLIGcuMGEXmKw=
Subject key identifier: 52:85:26:DE:7A:42:F1:E0:80:91:68:40:EE:BF:39:03:8B:89:3D:16
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC80122B355389148C8A51F0F5B23AA42
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/07/96a928-819c-476c-bae1-50c9f5b3c3e4/1/UoUm3npC8eCAkWhA7r85A4uJPRY.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/07/96a928-819c-476c-bae1-50c9f5b3c3e4/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 02:29:26 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 212710
IP: 193.58.100.0/22
IP: 2a09:2900::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:22:b3:55:38:91:48:c8:a5:1f:0f:5b:23:aa:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 02:29:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=528526de7a42f1e080916840eebf39038b893d16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:48:d7:53:ce:39:94:c4:d0:f2:75:b1:c7:8a:
41:3d:22:65:e4:b6:62:a5:2b:c2:b0:66:30:9d:16:
2e:dd:79:6b:0a:5b:38:c4:13:66:31:b6:9f:5c:77:
da:78:6a:67:89:54:87:41:f2:cb:a7:85:8e:42:ff:
e0:8a:27:9d:85:06:b9:db:fd:ee:96:be:01:81:7d:
27:81:4f:96:6c:61:73:dd:84:96:e3:17:80:8c:38:
a4:15:d6:e7:41:77:05:25:fd:b7:bf:0b:7a:49:26:
8b:91:89:bb:48:f4:e2:03:32:18:23:09:bc:d8:e2:
ae:2a:cf:63:ae:fa:a7:f6:e4:ec:dc:2d:5b:ba:7b:
80:47:2b:36:31:e6:1d:5f:6d:8b:47:df:1c:a8:e8:
af:60:1f:8c:e0:68:34:66:cd:a7:e3:a0:96:b1:52:
a8:44:10:4c:95:0e:25:e0:c2:cf:54:57:66:a2:00:
4b:65:65:a0:51:0e:44:75:1e:dd:31:1c:8e:82:ab:
4e:81:9a:fa:57:be:a1:06:af:c7:c3:3d:a4:b1:bd:
2a:14:c1:ee:c2:37:51:87:21:26:3e:09:fb:df:f8:
3f:e0:25:75:1c:a7:95:7d:a5:a7:5b:f4:d2:c5:e3:
bf:86:88:ad:e3:39:8e:8b:94:b2:d7:f0:0f:55:76:
81:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:85:26:DE:7A:42:F1:E0:80:91:68:40:EE:BF:39:03:8B:89:3D:16
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/96a928-819c-476c-bae1-50c9f5b3c3e4/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/96a928-819c-476c-bae1-50c9f5b3c3e4/1/UoUm3npC8eCAkWhA7r85A4uJPRY.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.58.100.0/22
IPv6:
2a09:2900::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
212710
Signature Algorithm: sha256WithRSAEncryption
93:e4:8c:86:12:07:1b:db:95:3e:a0:c1:80:56:b6:2d:e5:83:
a8:8a:b0:5d:d4:eb:c4:69:83:d7:c1:71:a4:59:a4:c9:10:7f:
f7:19:84:a3:6a:b6:37:e2:e5:52:79:3e:07:04:5a:5b:6c:4a:
6f:c5:d4:df:39:bd:20:7d:77:e5:79:26:8b:f4:06:cd:e9:52:
6e:a2:b2:2c:f5:15:51:67:6f:ea:39:20:16:fd:31:8c:76:43:
2e:f4:38:2f:0f:30:b6:fa:95:f6:20:cc:f3:33:6c:e6:41:41:
19:29:00:27:e6:73:e4:2b:b1:c8:f8:6a:7d:ba:13:8d:20:cd:
f5:6f:b7:5c:94:b0:f3:b7:b8:f1:00:00:f2:eb:6a:70:4e:79:
aa:74:4d:3c:ee:de:f4:a4:6d:23:14:4e:74:14:52:2e:2a:f2:
1d:21:03:32:ef:75:58:aa:50:93:62:94:40:2c:1f:ed:03:95:
af:dc:9d:87:a7:cd:ef:2e:b0:fa:ab:f4:01:f3:66:f7:ce:c3:
1d:7b:2b:41:57:27:ff:2b:6a:0f:d9:ab:2a:ea:6f:95:07:b6:
24:e3:e4:0f:b0:c8:4f:88:62:80:c4:8c:07:48:54:05:78:87:
8e:e2:29:32:8f:55:f4:23:f8:61:7b:1e:68:a6:8e:07:58:68:
85:5e:68:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:51:02 2024 by rpki-client on console-ams.rpki-client.org