Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/YF9nsPb7wbCO-pSujP_6f3etgHE.cer
File: YF9nsPb7wbCO-pSujP_6f3etgHE.cer (raw, json)
Hash identifier: wNqgggC+eny2oFHJWgwDdVLRPqkyPTlpm6Q8E03BEGY=
Subject key identifier: 60:5F:67:B0:F6:FB:C1:B0:8E:FA:94:AE:8C:FF:FA:7F:77:AD:80:71
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0190C14397D47A19F8694A105B8F3357B37C
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/67/2204c0-457e-4fc0-a893-70aedde952d6/1/YF9nsPb7wbCO-pSujP_6f3etgHE.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/67/2204c0-457e-4fc0-a893-70aedde952d6/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 17 Jul 2024 15:15:50 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 60734
IP: 185.21.12.0/22
IP: 2a00:52a0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Sep 2024 14:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:c1:43:97:d4:7a:19:f8:69:4a:10:5b:8f:33:57:b3:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jul 17 15:15:50 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=605f67b0f6fbc1b08efa94ae8cfffa7f77ad8071
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:15:f0:41:a3:d6:f0:b2:2f:69:71:09:7b:92:
84:bd:02:d3:6c:76:d1:96:97:bc:39:49:52:0f:0f:
90:05:44:76:25:0d:81:1f:f7:91:18:db:7b:47:92:
35:2f:0d:61:94:88:fa:59:dc:f2:e9:e1:2a:a5:62:
8f:02:19:e9:a7:56:9b:3c:b3:47:5d:5e:e8:ff:fd:
75:f6:43:bf:3d:77:51:fe:d1:f1:01:0d:d2:97:6f:
6d:60:d8:00:3e:86:35:16:0b:60:4b:da:28:a9:f5:
be:9f:2f:f6:ab:ad:18:27:cc:13:99:c6:6c:b8:ce:
9f:ea:ad:1e:69:0b:ac:e9:a0:81:8a:72:5a:38:01:
ef:46:87:f0:86:ae:f9:46:6c:d9:7e:19:75:68:b7:
8f:b3:02:20:0a:bb:ee:c3:be:05:2b:39:14:c6:f4:
53:81:9e:b9:ac:c8:5d:d6:58:a8:d0:f9:47:52:59:
ab:8a:f2:7c:97:ee:47:44:45:74:52:4c:05:09:b0:
1e:65:96:c6:c1:f7:e9:37:f0:a6:dd:81:0c:b6:6f:
0e:55:22:5d:44:44:26:64:c4:07:c8:b4:86:54:b4:
d7:2a:7a:fc:81:0b:90:dd:81:9d:fb:6b:0a:cf:9c:
a8:a4:a9:b6:cf:8e:2d:e7:0e:44:80:e6:d7:fa:29:
a4:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:5F:67:B0:F6:FB:C1:B0:8E:FA:94:AE:8C:FF:FA:7F:77:AD:80:71
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/2204c0-457e-4fc0-a893-70aedde952d6/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/2204c0-457e-4fc0-a893-70aedde952d6/1/YF9nsPb7wbCO-pSujP_6f3etgHE.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.21.12.0/22
IPv6:
2a00:52a0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
60734
Signature Algorithm: sha256WithRSAEncryption
2b:03:e2:a7:89:22:cc:f2:1e:c8:13:7b:b0:64:5c:cf:60:78:
7c:a5:7b:ff:0c:bd:27:82:87:ce:01:09:62:1e:2a:38:8e:2c:
93:99:6a:72:a8:f2:6d:41:e3:17:28:ee:bc:75:93:2f:33:15:
b1:eb:8d:19:d4:92:bd:a4:58:35:82:c0:78:1c:2f:98:fb:bb:
3c:72:dc:f7:17:28:9a:f5:37:e3:94:fb:e9:8a:be:8e:c0:00:
47:a9:2b:2c:c3:53:5f:93:6e:98:aa:97:91:83:5b:f4:a3:3b:
f3:9a:aa:cc:03:dc:08:5f:c6:c4:00:98:c2:02:cf:34:38:59:
af:7e:e8:53:3c:72:de:67:2a:e2:f5:69:09:75:e6:dd:67:b2:
06:c6:f1:2d:7c:43:64:66:62:3b:55:0d:07:e5:29:0d:15:6c:
41:cb:53:7a:99:f4:bd:f5:76:77:32:28:49:07:51:83:4f:97:
c6:09:d2:58:2f:86:e2:12:23:2c:b8:db:f4:1d:ad:ac:2d:b5:
3a:3b:5f:c4:7b:37:0c:3a:b2:5e:51:46:52:c8:83:73:6f:78:
2f:fc:c2:35:4c:16:e9:d7:b8:56:b6:9d:0e:23:16:8a:80:84:
fc:57:26:d1:85:b2:d0:03:4c:e7:3c:53:39:e8:3f:3d:5b:94:
06:cf:d5:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 7 21:03:37 2024 by rpki-client on console-fra.rpki-client.org