Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/V5mzJ91s2hrTe8HCJKRUsC3qKvw.cer
File: V5mzJ91s2hrTe8HCJKRUsC3qKvw.cer (raw, json)
Hash identifier: Z0vh9aAHyKXXPdGkr4It7EyNWsFNp9643/6UH0tuCy0=
Subject key identifier: 57:99:B3:27:DD:6C:DA:1A:D3:7B:C1:C2:24:A4:54:B0:2D:EA:2A:FC
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01924271FDB97637EBF942AAD8040F2DE633
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/ed/8c2ae9-0a77-49eb-ad3a-ea150e7638ce/1/V5mzJ91s2hrTe8HCJKRUsC3qKvw.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/ed/8c2ae9-0a77-49eb-ad3a-ea150e7638ce/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 30 Sep 2024 10:20:19 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: IP: 87.251.24.0/21
IP: 91.102.180.0/22
IP: 145.224.64.0/18
IP: 162.43.192.0/22
IP: 169.155.224.0/19
IP: 176.116.124.0/23
IP: 188.92.248.0/21
IP: 188.95.144.0/23
IP: 209.198.128.0/19
IP: 212.105.128.0/19
IP: 216.128.0.0/19
IP: 217.65.136.0/21
IP: 217.142.16.0/20
IP: 2a0d:3340::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:42:71:fd:b9:76:37:eb:f9:42:aa:d8:04:0f:2d:e6:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Sep 30 10:20:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5799b327dd6cda1ad37bc1c224a454b02dea2afc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:fa:27:b4:a5:ef:e5:a8:73:05:6f:dc:93:a8:
d2:a8:d5:52:0c:ae:38:86:4a:52:41:17:63:7e:e5:
14:76:84:84:5d:ad:ac:34:0b:c2:ee:73:81:80:bb:
df:1e:34:87:32:d2:2e:ce:ec:a6:36:e4:eb:2d:0e:
91:f3:d8:8e:04:23:de:84:1e:94:ce:78:22:32:5f:
8d:dc:a8:a5:9c:8d:55:85:34:79:9f:3b:32:1a:0d:
7d:8c:93:11:d1:72:e2:c3:54:64:f2:31:17:28:fc:
39:9a:cc:e6:bf:0a:05:42:eb:06:dd:c3:14:2e:0f:
5b:ff:6a:ba:80:33:8a:87:9d:19:b8:fc:c7:e3:64:
d8:1c:74:c0:a0:61:7a:b7:7d:10:80:52:f9:73:ab:
08:d4:f3:64:7d:09:13:04:7d:bc:1c:90:a4:49:6b:
13:ab:96:ae:48:c3:13:38:9e:fa:c4:ac:85:af:75:
7c:88:96:84:b0:6e:20:31:84:b6:8b:6b:0c:14:af:
26:cd:68:d7:8e:57:f1:aa:6c:e4:80:06:26:50:43:
49:8d:bc:b0:6d:a9:34:49:33:13:aa:43:c1:2a:ea:
e9:c7:3b:9b:74:fc:14:e2:da:dc:83:73:73:7a:c9:
0c:e7:12:c5:9b:9d:36:d7:f7:88:68:bc:e4:93:97:
28:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:99:B3:27:DD:6C:DA:1A:D3:7B:C1:C2:24:A4:54:B0:2D:EA:2A:FC
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/8c2ae9-0a77-49eb-ad3a-ea150e7638ce/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/8c2ae9-0a77-49eb-ad3a-ea150e7638ce/1/V5mzJ91s2hrTe8HCJKRUsC3qKvw.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.251.24.0/21
91.102.180.0/22
145.224.64.0/18
162.43.192.0/22
169.155.224.0/19
176.116.124.0/23
188.92.248.0/21
188.95.144.0/23
209.198.128.0/19
212.105.128.0/19
216.128.0.0/19
217.65.136.0/21
217.142.16.0/20
IPv6:
2a0d:3340::/29
Signature Algorithm: sha256WithRSAEncryption
0d:1d:ec:f1:f6:e9:bf:f8:7f:fe:4a:6a:01:b7:d3:08:3b:1f:
d7:6e:b9:07:4b:2b:1f:d3:a5:fa:89:1f:b4:ca:9d:af:15:58:
1b:c9:b8:a5:11:22:23:08:37:e1:d7:50:77:5e:eb:80:3e:b4:
69:9f:91:04:3f:42:71:e9:ba:4f:7a:da:b1:d0:02:a9:66:b8:
1a:f1:51:42:97:54:4b:5c:22:6b:87:c0:e5:0a:ad:ea:e5:de:
ed:26:bb:ae:9a:d1:68:f4:1d:f3:37:1d:41:6d:13:e9:6c:4e:
97:67:79:16:89:8b:d0:ee:97:11:db:a4:1e:d0:12:7f:c6:75:
31:98:e6:38:0a:40:0b:70:18:74:45:65:36:b8:e1:e9:32:e3:
25:58:9f:ac:2d:fb:6a:c0:d6:8f:23:c0:e3:d1:af:68:e3:a3:
94:0b:a9:25:61:8b:50:b0:96:5f:59:17:08:1c:08:ca:44:2c:
91:f3:5f:34:de:c9:02:9f:e4:60:21:63:45:a8:1a:83:31:cc:
9b:36:d8:cb:96:d7:ce:6a:69:63:41:81:42:83:6d:7d:0e:13:
17:3e:ae:48:31:0f:bd:cb:55:a0:96:80:f6:86:e8:7d:63:0a:
6f:98:14:1e:21:e6:4d:7d:3b:b4:44:dd:7a:1a:eb:38:a7:c4:
ae:f6:32:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 00:44:36 2024 by rpki-client on console-fra.rpki-client.org