Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/VdCGNM-l6BZpPCt54ui4ruuvWXY.cer
File: VdCGNM-l6BZpPCt54ui4ruuvWXY.cer (raw, json)
Hash identifier: yg0dz0kkbyYP47Bu6p31JpMWm++U2YQeTT1LRh+3+NQ=
Subject key identifier: 55:D0:86:34:CF:A5:E8:16:69:3C:2B:79:E2:E8:B8:AE:EB:AF:59:76
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018DEB563A7CCE6B2FE5401B1A1C64D9AA9D
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/35/1da73f-082e-4f17-b6a1-0575d0a46baa/1/VdCGNM-l6BZpPCt54ui4ruuvWXY.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/35/1da73f-082e-4f17-b6a1-0575d0a46baa/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 27 Feb 2024 16:11:53 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 201111
IP: 185.82.240.0/22
IP: 2a05:9600::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:eb:56:3a:7c:ce:6b:2f:e5:40:1b:1a:1c:64:d9:aa:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Feb 27 16:11:53 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=55d08634cfa5e816693c2b79e2e8b8aeebaf5976
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:25:26:8c:9c:28:96:f0:27:ad:8d:e6:9f:79:
63:e5:47:24:11:ff:35:e9:74:bd:69:0f:0d:e0:57:
69:58:36:34:0c:a5:59:23:6c:08:67:5e:e9:6e:1f:
5f:9b:c9:b5:c7:58:73:98:6e:70:cd:55:33:75:3a:
c6:62:ad:16:6a:6f:aa:e4:07:1f:ba:ee:e0:64:d7:
05:e4:a5:e6:26:4c:7f:19:e5:f7:fb:26:48:ce:3f:
ca:5a:7a:a7:62:67:8b:4d:87:c9:c9:59:8b:0f:99:
19:91:f2:46:86:e2:67:05:af:db:61:db:4f:46:27:
5b:a4:ea:54:cf:c0:d9:b2:5a:55:fd:9d:04:46:e4:
5b:c0:f7:2f:56:03:d6:05:c6:b2:08:ae:70:46:26:
85:5a:c1:44:1e:54:be:fb:48:b3:90:63:80:7a:fe:
58:fa:b4:77:4c:84:e9:54:7c:b3:f3:fc:b6:b6:29:
20:10:a6:f0:30:a4:dd:06:47:1f:2c:cb:ac:b4:f5:
33:83:6c:45:a4:3b:28:72:87:42:fb:77:0a:d4:8d:
40:5a:62:29:85:3b:b2:d7:1d:8b:52:6f:78:ac:34:
e8:76:e5:3e:1d:4d:90:97:d0:31:fb:c7:49:8c:c6:
8e:27:8d:df:74:50:52:08:f5:b7:fa:01:df:6d:25:
f6:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:D0:86:34:CF:A5:E8:16:69:3C:2B:79:E2:E8:B8:AE:EB:AF:59:76
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/1da73f-082e-4f17-b6a1-0575d0a46baa/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/1da73f-082e-4f17-b6a1-0575d0a46baa/1/VdCGNM-l6BZpPCt54ui4ruuvWXY.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.82.240.0/22
IPv6:
2a05:9600::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
201111
Signature Algorithm: sha256WithRSAEncryption
6b:89:e6:30:96:2c:46:30:e8:de:64:ea:1b:5c:01:11:33:c0:
48:24:d6:d2:b5:07:58:1f:ce:72:21:57:e8:cf:16:f9:48:31:
70:4a:91:b3:be:2c:0f:ae:32:b3:11:3e:c0:28:c2:3d:95:f2:
c9:bd:08:70:bf:6f:32:0f:7e:24:cf:03:2b:c2:4f:29:4d:e9:
77:da:99:7b:c4:cd:af:a0:08:ae:51:cd:f5:10:c2:b5:a6:3e:
da:bc:3d:5e:da:a6:a3:31:3c:75:c8:45:23:e2:c3:cf:f4:7f:
9d:23:d5:c4:01:25:04:ad:db:4d:07:49:30:d3:95:8d:0e:b3:
45:b2:f2:be:6e:ab:ab:e9:e0:8f:98:f6:aa:37:5e:ad:23:16:
d3:da:29:f4:d5:69:40:51:b4:09:ec:4e:c1:5d:75:e8:99:87:
1f:8d:21:11:c9:c8:92:46:e2:0f:fb:07:9e:0b:dc:b4:e5:b1:
68:b3:8c:f3:06:3b:df:9f:16:27:33:42:bb:75:90:eb:bf:fb:
30:3c:de:63:7a:d1:99:6d:6a:fb:2a:7d:4e:a5:ed:70:1b:4a:
d8:e1:f0:21:49:08:69:ea:70:37:14:74:19:1d:fa:33:f5:9d:
73:64:d7:f3:56:09:f9:46:5f:21:06:53:45:3e:29:bf:c1:42:
d1:57:ba:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:51:14 2024 by rpki-client on console-ams.rpki-client.org