Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/Vhx8zFI3Z4c3QJLq-sJiPgVxqB4.cer
File: Vhx8zFI3Z4c3QJLq-sJiPgVxqB4.cer (raw, json)
Hash identifier: ByyGVAJku5Z8Jfgs3CtCR7w03jG/9P/AzVI54NjqqC8=
Subject key identifier: 56:1C:7C:CC:52:37:67:87:37:40:92:EA:FA:C2:62:3E:05:71:A8:1E
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC94E2A0E47A412376981FAFB209DE7E6
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/92/dca257-d163-4ed9-94ad-c170091283eb/1/Vhx8zFI3Z4c3QJLq-sJiPgVxqB4.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/92/dca257-d163-4ed9-94ad-c170091283eb/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 08:33:12 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 25385
AS: 211332
IP: 91.233.183.0/24
IP: 2a09:f140::/29
IP: 2a0d:c140::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4e:2a:0e:47:a4:12:37:69:81:fa:fb:20:9d:e7:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 08:33:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=561c7ccc52376787374092eafac2623e0571a81e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:29:05:d3:05:4d:b9:b4:87:5f:38:e3:b0:40:
06:82:dd:e6:c8:16:d4:ee:d3:04:25:97:e7:40:e4:
43:fd:6f:c3:f7:bc:5a:1e:17:a6:75:aa:fc:7b:f3:
05:b9:ea:ed:f7:73:ab:50:f5:f1:0b:37:54:42:21:
9e:f3:bc:a7:66:ce:b3:64:7c:c3:ed:e5:85:c6:36:
a3:fd:80:c8:d7:07:f0:c7:55:c8:fa:2d:cf:17:b4:
89:56:5a:07:26:87:e0:ba:3d:43:f3:11:91:73:f4:
87:48:ad:61:e7:b9:19:65:f6:3b:e4:50:3d:43:cd:
29:2b:b9:11:69:0b:f4:d6:f1:44:35:4e:fc:0c:12:
a2:03:f8:7c:f0:d7:ed:23:3a:1a:d9:16:59:a0:e5:
4a:13:35:0f:65:e4:cf:5c:9f:e7:d5:10:18:c3:b6:
a7:3c:d0:d8:b2:51:05:04:ea:76:46:72:b9:a2:44:
05:2a:e4:fc:64:ad:34:89:63:73:ab:9b:33:1f:04:
cb:bd:f9:a5:0c:01:91:0d:14:5b:77:fa:48:4c:91:
ca:85:6c:51:f4:4c:cc:35:94:77:04:4d:d3:44:99:
51:be:3b:bf:d6:99:c9:24:46:7f:0e:20:04:26:50:
94:03:e5:19:d6:23:80:87:4b:22:d6:6d:2a:c4:a4:
64:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:1C:7C:CC:52:37:67:87:37:40:92:EA:FA:C2:62:3E:05:71:A8:1E
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/dca257-d163-4ed9-94ad-c170091283eb/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/dca257-d163-4ed9-94ad-c170091283eb/1/Vhx8zFI3Z4c3QJLq-sJiPgVxqB4.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.233.183.0/24
IPv6:
2a09:f140::/29
2a0d:c140::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
25385
211332
Signature Algorithm: sha256WithRSAEncryption
69:14:f8:8b:a8:fe:9e:45:a0:57:71:7e:c3:55:f3:df:7f:26:
ae:9a:78:8c:30:b6:a3:b8:12:29:de:0b:e8:c0:0f:1a:7d:59:
51:af:d3:9b:63:db:b5:0c:6f:b5:a4:2a:3b:8d:53:11:60:56:
7f:bf:fa:c6:17:b2:70:4e:f5:26:73:e3:7c:ed:9d:8f:07:50:
e1:22:fc:ac:07:5f:23:c8:ac:0d:e9:46:ae:60:71:fe:a9:30:
34:4b:bb:b3:53:d4:6f:64:60:bc:af:d9:5f:1a:24:e3:89:94:
31:ae:13:9b:7e:88:d9:0f:f3:f2:d2:52:ac:01:d9:11:42:57:
59:db:ae:fe:c7:bc:34:d6:85:81:0f:0c:bc:01:5a:a9:da:c5:
fd:4d:2a:89:50:53:fa:d8:6b:44:23:7d:9f:9b:8f:0d:06:e3:
e4:35:2f:16:cd:0e:73:b6:6b:fb:32:ce:94:f4:d9:44:d3:93:
a2:3e:2e:be:c4:b6:d9:40:14:8f:c6:fa:76:38:c7:39:40:d7:
67:39:8c:de:6e:39:90:e7:9d:f4:34:ec:d1:58:f9:d5:a3:4e:
b4:b7:7d:8c:5e:d5:c5:6c:38:af:85:5a:83:9e:aa:40:74:79:
0a:9f:73:d5:f3:d8:2b:98:9d:0c:46:aa:dc:7d:83:5d:d3:49:
5a:c9:89:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:09:58 2024 by rpki-client on console-fra.rpki-client.org