Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/VEBNpgLasGJb5yI9CTILHNeq_O0.cer
File: VEBNpgLasGJb5yI9CTILHNeq_O0.cer (raw, json)
Hash identifier: iV2fszA5T/l9NvwLSSJP3OpkZhvw9mQ4OMTkjAmMETg=
Subject key identifier: 54:40:4D:A6:02:DA:B0:62:5B:E7:22:3D:09:32:0B:1C:D7:AA:FC:ED
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC26D6D5A38415DDB84EF9104F32B74AC
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/97/7d2cb5-bddf-4201-baf8-1b24484e55ec/1/VEBNpgLasGJb5yI9CTILHNeq_O0.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/97/7d2cb5-bddf-4201-baf8-1b24484e55ec/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 00:30:00 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 205247
IP: 45.152.76.0/22
IP: 185.224.108.0/22
IP: 2a0d:1400::/30
IP: 2a0f:4b00::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:6d:6d:5a:38:41:5d:db:84:ef:91:04:f3:2b:74:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 00:30:00 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=54404da602dab0625be7223d09320b1cd7aafced
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:98:6f:ed:89:f6:52:55:dc:ee:26:b4:fb:8d:
ce:20:f3:c3:e1:fd:a2:6f:41:38:23:59:ba:69:37:
59:b1:3a:47:46:96:82:7f:54:58:cd:08:30:33:5f:
e5:ec:91:dd:fc:df:e5:e1:c3:0a:87:59:08:b8:4a:
b0:b1:f7:68:1e:4f:1b:85:64:a5:15:d8:e6:33:80:
fc:e7:b1:39:f2:f8:ec:db:a4:c9:67:fd:77:7a:bb:
42:be:5b:8b:3c:fd:53:1b:d1:c1:8c:27:24:1b:92:
61:df:42:bd:1c:08:7f:d7:c6:97:0f:e2:25:ef:d1:
21:c3:b6:77:8a:2a:59:20:c4:b8:6c:2e:fe:44:4d:
cc:09:99:12:ff:5c:f6:42:79:5e:e4:75:2a:af:bd:
96:78:45:b7:e7:a3:2c:65:6f:fb:ed:ca:10:7f:0d:
6a:b8:29:f5:04:9b:34:27:ff:e8:61:94:5b:af:a8:
a6:5c:c2:89:ea:90:ce:e5:78:f2:56:1f:34:e0:ac:
8e:10:79:bb:77:dc:97:db:c5:ca:85:2c:90:9f:34:
5a:0b:cf:23:8b:29:be:92:a4:19:5d:18:6f:2e:14:
dd:79:04:11:89:3a:21:25:20:94:5c:a1:cc:78:91:
db:16:f5:3a:2b:de:52:0f:cb:da:de:be:fa:de:1a:
36:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:40:4D:A6:02:DA:B0:62:5B:E7:22:3D:09:32:0B:1C:D7:AA:FC:ED
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/7d2cb5-bddf-4201-baf8-1b24484e55ec/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/7d2cb5-bddf-4201-baf8-1b24484e55ec/1/VEBNpgLasGJb5yI9CTILHNeq_O0.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.152.76.0/22
185.224.108.0/22
IPv6:
2a0d:1400::/30
2a0f:4b00::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
205247
Signature Algorithm: sha256WithRSAEncryption
95:54:fc:43:8e:ef:77:8c:bb:31:1d:cc:02:7d:c6:48:a9:6a:
78:1b:41:0d:bc:cd:c9:cb:12:b0:9d:0f:38:90:6c:6e:83:b3:
90:e8:b0:93:78:df:9b:2f:03:d2:0a:4e:de:03:7b:4f:ac:df:
f0:9c:bf:9a:fd:45:bf:70:ec:17:e0:fe:9a:f7:07:70:89:86:
3b:83:e0:7a:2a:11:de:4b:5d:6e:fc:e4:6d:ba:eb:2e:c1:79:
2d:37:20:79:67:a0:12:c7:86:8d:89:b1:b8:c7:c0:1d:49:b9:
1a:47:96:14:a9:b9:57:b4:3b:99:85:c2:4c:17:71:8f:72:51:
1d:f9:97:06:dc:40:04:30:71:4a:ee:e7:e0:b3:3a:08:ed:98:
da:a8:57:c9:af:15:40:b7:6d:bd:89:f0:b5:a4:f2:cb:fa:4f:
26:37:92:c9:4e:e6:d5:86:c7:77:d9:ff:40:1f:30:48:22:c4:
c3:79:53:99:63:30:c0:34:70:01:c3:aa:8b:52:08:a3:42:a0:
fb:d4:d0:1c:3e:8d:89:c5:4e:39:fc:e8:23:16:d0:ae:b6:05:
d2:4d:7e:b1:af:b3:09:62:7a:ca:b8:c7:f2:01:2e:8a:ba:ee:
d0:ba:21:11:61:db:d9:03:82:75:b3:d9:13:c7:3c:16:ec:23:
e4:51:b0:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:09:52 2024 by rpki-client on console-fra.rpki-client.org