Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/YLeUkCpc09J4P8wqpLB5H3mld6I.cer
File: YLeUkCpc09J4P8wqpLB5H3mld6I.cer (raw, json)
Hash identifier: 5rtq8rqA3v12UP95BoBh/SV5XUMOD4snyBZD/WgpyeE=
Subject key identifier: 60:B7:94:90:2A:5C:D3:D2:78:3F:CC:2A:A4:B0:79:1F:79:A5:77:A2
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CCA2A3BB1B5B142DDF478C7B50EA996DA
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/74/d71b2c-2140-4e6e-abc4-401477489302/1/YLeUkCpc09J4P8wqpLB5H3mld6I.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/74/d71b2c-2140-4e6e-abc4-401477489302/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 12:33:34 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 34614
IP: 193.26.215.0/24
IP: 193.26.219.0/24
IP: 193.26.223.0/24
IP: 193.27.8.0/24
IP: 2a0f:77c0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:2a:3b:b1:b5:b1:42:dd:f4:78:c7:b5:0e:a9:96:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 12:33:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=60b794902a5cd3d2783fcc2aa4b0791f79a577a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:1f:4b:6f:0c:03:c4:98:84:c0:3d:1c:98:a5:
47:51:26:7f:b9:e9:64:d4:24:a9:a2:2f:55:c2:70:
0e:e1:0a:ad:e6:95:99:9d:f6:8d:82:f1:71:5c:48:
7a:0b:d5:10:48:53:38:eb:0c:e0:07:93:14:45:d9:
5c:6d:8c:27:7f:02:5e:7a:b8:d0:6f:20:ea:ef:a9:
42:49:a9:ff:eb:13:9a:e8:4f:ad:be:c8:bd:64:a1:
35:96:01:ca:08:9d:39:0f:b6:86:31:51:48:d6:9e:
83:1a:95:c5:8f:08:54:7f:60:af:6c:ed:d6:88:c6:
8b:a9:2a:ce:70:72:ae:bc:d0:68:c9:0f:8b:8f:20:
72:65:b9:b8:4d:40:0c:0f:4c:00:a9:2e:c1:48:9c:
07:b8:b3:52:9c:b1:85:da:37:c7:fb:49:c6:e0:65:
6e:6f:48:87:e6:16:0f:f6:46:42:cd:98:cc:cc:68:
44:e8:06:2d:36:9d:4e:6b:62:28:eb:07:9b:89:01:
99:ee:16:be:af:1a:2a:c2:c6:98:e4:90:20:25:e9:
3b:29:5c:01:0a:2a:37:be:be:89:21:6d:3b:b4:e9:
f0:7c:38:ac:44:c4:97:33:52:ff:33:10:9b:8e:59:
af:4f:62:94:32:6d:ae:11:1a:4a:6a:4f:0e:cb:bd:
73:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:B7:94:90:2A:5C:D3:D2:78:3F:CC:2A:A4:B0:79:1F:79:A5:77:A2
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/d71b2c-2140-4e6e-abc4-401477489302/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/d71b2c-2140-4e6e-abc4-401477489302/1/YLeUkCpc09J4P8wqpLB5H3mld6I.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.26.215.0/24
193.26.219.0/24
193.26.223.0/24
193.27.8.0/24
IPv6:
2a0f:77c0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
34614
Signature Algorithm: sha256WithRSAEncryption
42:c1:e3:12:3b:a7:06:de:9d:54:e4:9c:60:b8:f5:42:85:e9:
bd:d9:88:7d:4c:72:6a:b1:af:e8:a6:ad:49:56:22:68:f6:d4:
1e:db:3d:12:2d:41:50:5a:a3:ac:7a:3d:e9:2e:f8:4d:f4:02:
21:06:83:7b:76:c9:6e:5b:d9:45:e8:13:ab:06:5f:a7:20:af:
ff:ce:95:76:ec:de:fd:db:17:80:c8:1a:d4:a0:9c:e0:9b:d5:
3c:8b:30:97:e1:db:82:a9:0a:e1:bc:e5:5e:26:a0:63:99:b9:
19:d9:89:b2:eb:4b:90:61:55:98:85:1d:5f:0b:1d:cc:ad:c0:
24:3d:c8:a9:c7:59:6f:a8:46:12:3b:38:22:67:97:99:e5:11:
2b:f2:aa:5d:5b:a9:89:11:08:0f:be:2c:63:4f:8d:6b:20:59:
02:f5:30:fe:6b:d2:af:17:7c:c0:58:43:93:36:d0:03:bd:8c:
d4:cd:bd:51:a0:83:fb:a6:da:b7:96:80:67:27:5f:f6:cc:2d:
29:3a:91:a9:90:68:42:db:f5:35:51:0b:c1:31:b8:81:43:c3:
4a:50:01:a3:93:1e:0c:aa:00:4a:d2:3e:7c:43:25:7d:e9:7f:
1c:cd:a7:80:38:4d:58:bb:8b:6e:3c:b5:25:4d:fa:0c:22:e9:
dd:d8:91:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:10:36 2024 by rpki-client on console-fra.rpki-client.org