Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/YJDN0x06cdoc5KS9hfGYfjyk6vo.cer
File: YJDN0x06cdoc5KS9hfGYfjyk6vo.cer (raw, json)
Hash identifier: q8Fd3JIYSSY+cdv0Rr9yhFPdMz7qP1G4G7cbuSznXEA=
Subject key identifier: 60:90:CD:D3:1D:3A:71:DA:1C:E4:A4:BD:85:F1:98:7E:3C:A4:EA:FA
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC94E4DE2AB003B7C5F157F6A8192CCC9
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/14/08900f-b361-47ad-893f-7351f869b42b/1/YJDN0x06cdoc5KS9hfGYfjyk6vo.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/14/08900f-b361-47ad-893f-7351f869b42b/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 08:33:21 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 21453
IP: 80.84.112.0/20
IP: 80.252.128.0/19
IP: 88.84.192.0/19
IP: 94.253.0.0/17
IP: 95.183.64.0/18
IP: 178.57.224.0/19
IP: 178.167.0.0/17
IP: 185.5.148.0/22
IP: 212.7.224.0/19
IP: 2a01:4200::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4e:4d:e2:ab:00:3b:7c:5f:15:7f:6a:81:92:cc:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 08:33:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6090cdd31d3a71da1ce4a4bd85f1987e3ca4eafa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:ad:07:46:e1:6e:61:db:ad:0a:77:dd:ae:db:
84:fd:3c:73:db:87:17:8f:85:73:68:b1:1b:3e:bd:
14:10:bf:da:50:58:30:ed:98:75:14:c5:ab:51:61:
f1:85:67:6b:d0:e9:0c:40:d9:1e:92:d9:b3:90:62:
4d:a3:7f:b6:22:4e:f4:5f:f0:47:14:a6:f0:89:e3:
9c:f5:8c:7c:de:20:e2:b5:76:88:d9:ec:f7:b9:53:
4a:31:36:82:a9:ce:1d:fe:05:e5:38:8f:c3:fb:b4:
1a:83:93:d4:9b:3c:28:8e:65:43:b3:59:2b:06:66:
c0:df:65:5c:8d:55:87:43:d5:7a:24:ae:a9:70:27:
f0:da:d4:7c:b1:75:78:02:bf:2d:1a:79:7e:a3:93:
5b:bb:36:14:70:ab:53:36:3d:76:3c:b6:db:06:fc:
bc:e6:f1:1e:51:09:e5:29:b2:76:df:d9:d3:41:53:
c6:d0:82:2f:88:e6:95:c5:4f:4d:89:12:9f:12:cc:
fc:d3:ed:b2:45:9f:3b:e0:9c:02:59:47:f5:16:f5:
8a:9f:2b:2e:2c:72:96:da:bc:ac:80:25:d9:3a:22:
52:0f:16:c2:44:cb:34:43:12:4b:68:60:70:1f:bd:
cf:7e:89:91:c9:43:dd:96:57:8a:c6:c3:96:2a:c5:
a1:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:90:CD:D3:1D:3A:71:DA:1C:E4:A4:BD:85:F1:98:7E:3C:A4:EA:FA
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/08900f-b361-47ad-893f-7351f869b42b/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/08900f-b361-47ad-893f-7351f869b42b/1/YJDN0x06cdoc5KS9hfGYfjyk6vo.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.84.112.0/20
80.252.128.0/19
88.84.192.0/19
94.253.0.0/17
95.183.64.0/18
178.57.224.0/19
178.167.0.0/17
185.5.148.0/22
212.7.224.0/19
IPv6:
2a01:4200::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
21453
Signature Algorithm: sha256WithRSAEncryption
13:3f:d8:bc:62:77:ac:50:7a:66:9e:96:e1:de:29:68:49:5a:
59:8f:8c:39:97:b8:54:39:2e:98:d4:a2:e9:b0:3c:6f:98:8d:
71:17:1a:12:9e:1a:a7:82:66:76:c3:eb:75:78:96:9f:e6:2b:
08:b0:8b:ab:bd:e3:9c:e9:70:f6:04:92:0b:21:70:0c:a3:aa:
da:32:82:ed:62:a0:cb:15:18:b1:69:ff:59:fe:c6:c5:f4:18:
f7:38:38:5c:ca:ee:44:7a:74:7a:24:41:6a:37:cc:d4:66:2f:
06:1c:e2:e2:07:f3:bc:73:84:03:57:70:bd:5f:c5:b2:d2:65:
66:b8:11:63:86:40:68:f0:cc:44:b3:ed:fd:0c:16:3d:ce:78:
3d:a8:e1:f6:8e:71:5e:79:4c:42:4e:72:26:c9:3f:35:84:9c:
ef:2e:d3:bd:36:bc:77:62:67:da:a3:30:7b:8e:01:f6:96:be:
a3:26:f4:c7:b4:57:e2:e8:87:f8:40:f6:28:c0:30:4d:65:0a:
d9:84:2b:da:09:3b:19:a6:39:72:e1:f1:7e:21:22:28:9d:5a:
5f:2f:b7:18:55:74:7d:38:58:90:86:a2:ca:62:80:01:dc:61:
6f:d3:12:64:df:13:04:ec:5e:67:e8:48:f1:4a:75:78:b0:fa:
24:d3:68:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:51:54 2024 by rpki-client on console-ams.rpki-client.org