Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/YU9WZQWavHvjR17553qXl7cW_Ic.cer
File: YU9WZQWavHvjR17553qXl7cW_Ic.cer (raw, json)
Hash identifier: Fpgz0PsR7nSk4XgktQ9qdMQ+4/BLt1wsiA7IDeJRtrg=
Subject key identifier: 61:4F:56:65:05:9A:BC:7B:E3:47:5E:F9:E7:7A:97:97:B7:16:FC:87
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC424DB7CA24B1EBE8E625C01F4BEBAFF
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/1e/888a04-77f4-4159-986c-3cef593d16b4/1/YU9WZQWavHvjR17553qXl7cW_Ic.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/1e/888a04-77f4-4159-986c-3cef593d16b4/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 08:29:59 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 42493
IP: 5.35.216.0/21
IP: 77.73.40.0/21
IP: 185.40.148.0/22
IP: 2a01:5780::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:24:db:7c:a2:4b:1e:be:8e:62:5c:01:f4:be:ba:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 08:29:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=614f5665059abc7be3475ef9e77a9797b716fc87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:0f:44:11:45:dc:83:b3:48:a1:87:d0:ee:e6:
7d:7b:32:e0:89:80:f0:bf:0e:17:1b:e0:5b:26:58:
ad:60:6b:73:51:89:53:71:c1:0e:b0:98:93:a8:bb:
c9:61:73:58:fe:56:49:61:75:71:08:de:8f:52:5a:
0c:a3:af:73:6d:7d:6c:30:4e:65:4c:3b:ed:7f:4c:
37:ef:f4:9e:c3:45:4d:a3:d1:cd:14:13:eb:33:28:
8e:10:83:62:ec:e8:40:f1:bb:9d:07:61:4d:5b:d7:
5f:c7:df:35:1d:d6:8d:52:cc:26:51:a9:61:13:a8:
f6:cf:8c:60:78:b4:24:4a:f4:d6:b1:26:da:a4:f7:
3f:d9:fe:1a:53:15:13:cc:ec:f6:e8:18:57:c5:e9:
6f:9c:ea:c6:19:c0:cd:7b:de:84:1e:63:65:76:1a:
f2:ca:9f:61:05:8d:4a:07:7e:1a:ce:42:34:a4:a3:
cd:06:35:a6:24:2f:65:a0:7b:d4:f0:29:f7:9f:ba:
e1:2b:56:fc:85:fd:de:c2:ea:b2:e4:d2:4f:66:53:
ca:ea:da:41:5f:e0:81:20:6d:46:fc:ae:9b:f2:8a:
8b:3c:f1:05:26:1b:9c:9f:39:ce:b5:36:8f:6a:1d:
71:4c:53:66:7e:a0:14:fb:53:5d:4f:70:1e:ad:d9:
9a:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:4F:56:65:05:9A:BC:7B:E3:47:5E:F9:E7:7A:97:97:B7:16:FC:87
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/888a04-77f4-4159-986c-3cef593d16b4/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/888a04-77f4-4159-986c-3cef593d16b4/1/YU9WZQWavHvjR17553qXl7cW_Ic.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.35.216.0/21
77.73.40.0/21
185.40.148.0/22
IPv6:
2a01:5780::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
42493
Signature Algorithm: sha256WithRSAEncryption
56:f8:e2:68:cb:4a:93:2b:8c:bd:ed:e5:c9:2a:34:f3:38:8b:
46:14:af:70:d6:be:b7:ce:95:fa:25:ea:fb:6f:54:62:4f:d0:
ab:ff:30:1c:c6:5d:bc:4c:af:74:46:d1:1d:f8:be:11:f3:69:
8d:ed:df:c5:1c:bd:89:fe:58:e2:4d:2b:aa:8f:68:52:4b:dd:
a0:95:d1:c5:95:23:a2:15:c2:6f:b3:a9:ae:86:13:31:e7:a6:
af:65:76:b0:09:a7:13:d6:c1:89:6b:64:cc:93:b9:86:d8:f4:
2d:54:e0:6c:04:24:d9:ee:d8:7c:a6:f7:f3:d1:bf:93:81:e1:
d1:2e:13:cb:a4:7b:43:c9:c6:16:88:26:3a:fa:9d:c3:cf:13:
93:64:6a:02:62:c3:88:05:16:4d:3e:ad:10:de:89:c3:98:aa:
e8:97:6e:26:c0:d2:de:02:fc:ce:f5:44:ad:f1:b2:6d:d7:06:
52:1d:5a:d7:15:bc:e0:8c:63:0c:cd:a2:70:78:33:40:3e:fe:
09:c7:61:e6:1c:6a:48:42:12:38:bb:39:5b:d1:f0:0b:0e:3e:
c5:9f:f2:e6:57:c7:04:8b:af:11:9c:06:ae:ff:5f:c5:0c:db:
70:ba:cb:b3:f2:ca:ac:7b:0b:b2:e5:9e:4f:01:43:54:57:a3:
37:c5:a6:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:10:38 2024 by rpki-client on console-fra.rpki-client.org