Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/VQlsYRU9KrVQd_GjDCRZhgAbodk.cer
File: VQlsYRU9KrVQd_GjDCRZhgAbodk.cer (raw, json)
Hash identifier: 8uHdYndAIeUa4+PdqaP/H3vkXn85Hgfy9s9Uwx7n80c=
Subject key identifier: 55:09:6C:61:15:3D:2A:B5:50:77:F1:A3:0C:24:59:86:00:1B:A1:D9
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC3B6781BFC4FA12E2A4FC3564B15AFD3
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/52/49bfec-757f-4319-b45d-9b5d63b5cbf5/1/VQlsYRU9KrVQd_GjDCRZhgAbodk.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/52/49bfec-757f-4319-b45d-9b5d63b5cbf5/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 06:29:24 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 205934
IP: 195.245.235.0/24
IP: 2a0b:a340::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:b6:78:1b:fc:4f:a1:2e:2a:4f:c3:56:4b:15:af:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 06:29:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=55096c61153d2ab55077f1a30c245986001ba1d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:ae:2e:7a:e4:64:53:a5:93:b2:7c:98:8a:d9:
13:42:eb:fe:17:7c:64:3a:9c:35:aa:e4:f6:2a:46:
45:3f:28:91:18:23:73:1c:6e:ec:91:98:51:34:c1:
18:d7:a2:11:15:4d:f9:39:b0:16:75:e4:f6:0f:4f:
dd:75:f0:99:9f:4c:5c:67:98:ed:0d:a4:6b:3d:5a:
6b:aa:c3:19:c0:1a:89:e7:37:b2:7e:39:59:11:e6:
76:ba:24:35:b0:4f:fb:a7:6d:5e:1f:24:66:69:39:
4c:d7:6f:8f:2c:54:ef:ff:85:7c:f5:d5:25:70:bd:
87:ea:46:2c:70:8f:51:5b:4b:af:ea:ed:ff:06:aa:
88:71:cc:3c:33:61:3a:cf:af:7b:35:43:2e:05:ee:
5b:7e:81:e6:11:45:ff:a6:fd:a3:8a:4f:b9:38:14:
1a:39:64:de:87:1f:68:31:f3:5f:5b:e7:f4:e3:3d:
65:df:48:2c:be:74:b8:2f:ad:aa:cd:22:41:67:6c:
e0:94:02:a8:86:a8:1a:41:af:4a:36:17:35:f0:b1:
79:f1:9b:a4:fc:54:3d:4d:8a:18:12:9f:29:36:b3:
e3:08:5d:49:fc:73:48:ef:d0:b9:de:65:f9:45:83:
65:dd:1e:48:fa:56:58:08:69:9e:92:2a:a1:db:34:
6f:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:09:6C:61:15:3D:2A:B5:50:77:F1:A3:0C:24:59:86:00:1B:A1:D9
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/49bfec-757f-4319-b45d-9b5d63b5cbf5/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/49bfec-757f-4319-b45d-9b5d63b5cbf5/1/VQlsYRU9KrVQd_GjDCRZhgAbodk.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.245.235.0/24
IPv6:
2a0b:a340::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
205934
Signature Algorithm: sha256WithRSAEncryption
98:a3:af:74:99:8d:90:f0:c5:f8:27:b1:0a:1f:a3:f6:61:d0:
01:df:06:1e:45:da:79:14:c8:db:54:42:5b:06:b1:2c:2c:32:
5d:8c:4b:41:e4:e0:93:1b:9d:b4:7f:7b:17:13:71:f7:be:9e:
37:c1:76:d0:bc:0c:e0:9c:ea:f6:57:cb:4c:9d:5f:4d:e8:7c:
70:54:d3:57:06:e4:50:b0:c7:51:30:95:58:f0:d2:5e:36:44:
34:63:43:32:7a:00:1e:4b:c6:b8:af:84:6a:9e:18:a4:1d:64:
80:0c:be:8c:4a:23:4d:c5:c3:52:bd:b4:48:00:72:3f:d9:7b:
6b:4f:6a:ff:d7:72:2b:c4:bf:8d:0a:e1:d9:cd:ca:50:68:b0:
7c:21:ee:ba:11:50:2a:32:f7:fc:0b:7c:b9:7c:79:82:57:0b:
58:a5:4b:49:41:0a:9b:1b:34:e6:b2:bd:aa:54:50:ae:23:dc:
49:4c:9f:54:9c:b6:3f:28:5c:83:2f:0c:52:38:5a:49:83:6e:
dc:d5:8a:cd:a7:76:d5:41:98:85:a2:b9:9f:79:a0:97:05:20:
00:07:c6:d6:e9:5c:bf:8c:df:41:96:6e:8a:99:f4:cf:e6:23:
1e:48:ea:a7:d0:33:89:a3:55:67:9e:f2:a7:8e:32:f6:64:f1:
e0:42:fa:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:09:54 2024 by rpki-client on console-fra.rpki-client.org