Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/VChf_ulzEsUcOoBf-TQOvsM1JyA.cer
File: VChf_ulzEsUcOoBf-TQOvsM1JyA.cer (raw, json)
Hash identifier: bsh7l9+PvvT5BnrFkNzFZqhxWc0IJxh7cVj/9IEGkLU=
Subject key identifier: 54:28:5F:FE:E9:73:12:C5:1C:3A:80:5F:F9:34:0E:BE:C3:35:27:20
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC8DF081E7BD3AF8B3B3CFB01BD3CA744
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/22/31bcbd-ee65-4f97-9a22-8a7e63e8cd75/1/VChf_ulzEsUcOoBf-TQOvsM1JyA.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/22/31bcbd-ee65-4f97-9a22-8a7e63e8cd75/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 06:31:49 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 20886
IP: 80.90.144.0/20
IP: 89.21.32.0/19
IP: 185.209.236.0/22
IP: 217.76.96.0/20
IP: 2a02:b30::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:df:08:1e:7b:d3:af:8b:3b:3c:fb:01:bd:3c:a7:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 06:31:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=54285ffee97312c51c3a805ff9340ebec3352720
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:1c:25:28:8c:1c:fa:0e:22:7d:10:1d:08:b8:
cb:f5:85:a5:77:7b:52:24:d6:2a:f2:71:b8:4c:92:
f3:2f:4d:f0:a1:fc:38:5d:d2:9e:62:04:65:85:8c:
13:21:54:87:e2:d3:c9:f9:28:4c:b1:a2:5e:f4:42:
a3:23:34:22:43:4b:c6:ee:72:71:83:0c:f2:1e:4c:
62:97:9d:93:f1:e4:81:fa:84:5e:b7:14:da:a4:c6:
8e:8c:d2:15:4d:11:64:8b:b2:6b:db:3a:ff:e8:68:
44:ed:c7:c4:be:71:83:f9:b1:cc:33:58:bf:e1:c8:
88:77:c7:b7:9c:0f:6c:2c:e9:04:8d:4a:0f:d6:80:
c4:a7:16:6c:76:d9:af:d1:e7:ba:f5:7d:fd:81:d4:
fb:88:16:fe:2e:48:01:d3:ca:18:64:bd:a7:a6:92:
30:5a:46:02:0f:fc:a8:a7:33:f1:90:55:c9:95:55:
77:04:26:4f:97:5a:4f:70:3e:2c:49:f6:96:e5:6c:
0d:58:79:4c:4e:2f:73:e1:a5:70:1b:d7:3b:6a:5e:
ef:4d:18:e6:70:14:8a:c3:db:f9:e5:c7:df:71:3d:
27:17:83:01:22:be:07:ad:08:a8:39:1e:64:c6:c2:
6a:34:79:b6:a4:fa:87:74:16:0e:37:0d:76:1d:ea:
29:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:28:5F:FE:E9:73:12:C5:1C:3A:80:5F:F9:34:0E:BE:C3:35:27:20
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/31bcbd-ee65-4f97-9a22-8a7e63e8cd75/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/31bcbd-ee65-4f97-9a22-8a7e63e8cd75/1/VChf_ulzEsUcOoBf-TQOvsM1JyA.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.90.144.0/20
89.21.32.0/19
185.209.236.0/22
217.76.96.0/20
IPv6:
2a02:b30::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
20886
Signature Algorithm: sha256WithRSAEncryption
01:5b:ad:2c:e2:3a:9e:7c:3c:15:8d:dd:1f:4c:2c:fb:04:99:
df:56:15:84:c3:f3:00:b7:f1:93:2f:93:bf:be:89:ce:0c:60:
b2:8e:5f:52:ca:ba:e1:23:be:62:d0:f4:8d:85:0a:4d:44:ab:
26:25:62:64:6d:ca:8e:ad:ee:f0:5d:eb:6d:c9:30:9e:58:4c:
64:ed:b8:66:90:5d:31:37:84:0f:35:de:11:21:56:f5:21:35:
15:9d:64:52:66:5b:db:0a:47:38:81:3a:de:1b:01:87:b2:59:
62:3d:b0:28:4f:c6:e9:fb:66:0d:42:6f:05:3c:7b:3b:38:5d:
8f:8a:4f:eb:4f:00:01:c5:e3:9f:d1:58:54:19:0e:e8:de:50:
b7:25:75:d7:06:df:78:b4:52:dd:91:13:95:ae:53:99:65:08:
ef:3c:64:f2:39:55:af:bf:05:0a:32:f7:31:3f:ff:28:b5:93:
d6:d8:8d:9b:3c:52:bd:53:e0:4d:85:c3:a3:2e:df:c8:d3:41:
a6:a8:73:8f:05:60:01:28:e7:2a:f0:0f:5e:b5:a8:b0:b0:28:
a5:78:95:c8:fb:9c:c8:0c:6f:7a:b2:9a:43:90:93:c6:8b:14:
43:f2:f2:e6:3d:df:2f:b6:87:0a:b8:af:c9:99:35:f7:eb:ab:
cd:b5:ba:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:54:18 2024 by rpki-client on console-fra.rpki-client.org