Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/VW7RG7bV4tam6roZ2vY3tT92ftU.cer
File: VW7RG7bV4tam6roZ2vY3tT92ftU.cer (raw, json)
Hash identifier: B4r0IOGoziz2AyLb8T2uRZjZg9+TbFsv8vHz/JgxQFI=
Subject key identifier: 55:6E:D1:1B:B6:D5:E2:D6:A6:EA:BA:19:DA:F6:37:B5:3F:76:7E:D5
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0190975F4DF6BF32BBC37064B2503603D37A
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/5a/22bf9f-c0c8-4750-b1bf-1998665bd793/1/VW7RG7bV4tam6roZ2vY3tT92ftU.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/5a/22bf9f-c0c8-4750-b1bf-1998665bd793/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 09 Jul 2024 12:02:03 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 47346
IP: 94.139.33.0/24
IP: 194.140.235.0/24
IP: 2a14:1380::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Sep 2024 14:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:97:5f:4d:f6:bf:32:bb:c3:70:64:b2:50:36:03:d3:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jul 9 12:02:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=556ed11bb6d5e2d6a6eaba19daf637b53f767ed5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:86:ef:ac:00:a0:a6:6c:af:9b:82:fa:1f:22:
b8:d8:c6:c4:25:5a:90:a7:40:80:4e:1f:54:1b:74:
55:44:3d:ec:f1:88:5d:7c:29:ac:07:00:07:91:f9:
2e:c8:5c:08:47:b7:5d:41:89:99:2a:58:da:d6:42:
b6:f2:b3:f1:fb:eb:cf:73:7b:84:9d:59:e1:bd:93:
1a:a2:df:8c:8e:d1:5a:83:4a:95:f6:00:5a:a3:dc:
5c:ae:98:6e:94:0c:61:ed:c5:51:6a:ac:8c:c7:40:
09:5e:14:d2:92:f2:13:f1:c4:e8:96:1c:94:9a:d3:
d5:e8:3d:15:d6:61:b1:25:90:95:c8:18:f1:1b:e0:
bd:93:d2:ab:f9:08:85:53:b1:65:f5:04:b4:f9:a3:
00:1c:43:08:7d:c5:c0:04:57:91:7e:97:c6:71:51:
61:d2:c6:df:86:5c:22:c7:85:05:0b:fb:7f:ec:57:
7f:a5:bf:72:2f:ac:a6:c3:12:2e:88:8a:c8:79:33:
66:8a:5e:e7:80:a2:ec:1a:53:94:42:a3:51:0d:7f:
a0:76:96:43:3e:e7:39:81:69:1a:fc:00:71:62:fb:
38:d9:47:45:14:35:e5:22:3b:ed:1e:38:f1:f4:33:
1e:17:04:d2:7f:3e:82:26:40:56:ba:2e:2f:9c:05:
a5:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:6E:D1:1B:B6:D5:E2:D6:A6:EA:BA:19:DA:F6:37:B5:3F:76:7E:D5
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/22bf9f-c0c8-4750-b1bf-1998665bd793/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/22bf9f-c0c8-4750-b1bf-1998665bd793/1/VW7RG7bV4tam6roZ2vY3tT92ftU.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.139.33.0/24
194.140.235.0/24
IPv6:
2a14:1380::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
47346
Signature Algorithm: sha256WithRSAEncryption
0a:4d:95:f0:49:48:1b:90:76:d2:7e:e8:ba:e2:c8:2e:4e:8c:
26:2f:68:1b:43:31:18:bf:ad:06:73:30:d7:5f:9c:20:aa:35:
b1:fd:c0:b9:5f:91:d3:97:15:a3:b1:55:96:6e:e5:be:65:75:
06:c5:7a:3d:90:dd:be:c4:e8:87:5e:54:34:34:92:de:ae:d5:
6c:11:85:04:99:8e:cb:ad:02:31:73:75:87:a4:10:ba:7a:1d:
cf:82:89:da:30:64:b0:0d:00:b0:60:46:4d:f5:a0:fb:4a:b8:
27:de:14:72:68:02:1d:ef:f1:20:55:06:21:eb:df:36:c2:ce:
67:de:d9:66:ab:83:2e:32:e6:e6:86:1e:6d:19:7a:50:e7:16:
26:b0:cf:71:1c:8f:d1:1a:c8:d5:50:0a:cf:c7:60:33:7f:81:
a3:ef:22:88:16:f0:3c:67:94:e8:b9:9e:2e:eb:79:c0:13:14:
79:80:19:68:15:fa:b8:14:54:22:de:2b:90:e6:39:93:9a:89:
27:e2:07:33:0c:ba:2f:55:b0:5b:42:ff:6c:04:9a:40:6f:37:
84:8d:cf:5d:27:28:4d:18:a1:e0:25:1c:2c:d5:d0:66:7b:28:
0e:af:21:1a:1c:2a:f6:4c:1e:59:89:66:cb:ac:9e:b5:5b:ac:
34:c4:d4:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 7 21:13:00 2024 by rpki-client on console-ams.rpki-client.org