Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/YUyg0Ju9BfS4qKwwoyn2cVEQdYw.cer
File: YUyg0Ju9BfS4qKwwoyn2cVEQdYw.cer (raw, json)
Hash identifier: bvy1M1w3M4YVwHjlQ75lGOqcZEcl0MsihA6i2u/MMug=
Subject key identifier: 61:4C:A0:D0:9B:BD:05:F4:B8:A8:AC:30:A3:29:F6:71:51:10:75:8C
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC6B8D628A69E80B46A38D8311C8C77EB
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/21/4786c2-11a1-48a4-ba80-7944976599d8/1/YUyg0Ju9BfS4qKwwoyn2cVEQdYw.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/21/4786c2-11a1-48a4-ba80-7944976599d8/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 20:30:51 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 210513
AS: 215801
IP: 62.3.56.0/24
IP: 2a12:100::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b8:d6:28:a6:9e:80:b4:6a:38:d8:31:1c:8c:77:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 20:30:51 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=614ca0d09bbd05f4b8a8ac30a329f6715110758c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:5e:14:65:ff:98:20:95:d6:1b:ce:c0:13:15:
35:13:3e:a9:fb:89:f3:1d:96:01:3b:48:25:47:b8:
09:a6:f0:60:3d:61:c7:e4:6a:b6:b4:d8:29:62:6a:
b5:c5:17:cb:24:ed:de:01:03:ca:b5:28:a4:5c:c8:
dd:59:d1:5e:86:0b:b9:1c:d5:85:93:70:c2:71:5e:
bc:9f:52:4d:bf:b9:85:77:98:9e:cc:2f:3f:81:f4:
e4:64:85:c6:44:c1:28:90:2b:02:b1:68:54:dc:48:
ee:3a:e4:9d:83:df:14:9a:82:52:ed:63:b4:7d:ff:
b0:2c:5a:7e:27:51:89:66:0a:53:5a:cd:0c:33:5f:
1a:1c:b1:58:2b:ac:8b:0b:42:d6:fa:32:15:9a:03:
0d:8c:88:3c:ee:60:c6:f3:9c:03:f3:0a:fe:c5:ea:
d8:d9:81:81:8d:10:d1:38:f1:47:ea:50:15:19:c0:
22:43:78:98:5f:d4:e5:88:a4:9f:2b:b1:9f:75:88:
85:d9:12:44:8d:77:bd:e2:b7:a2:b0:4a:e9:17:d2:
07:4c:5e:ef:09:b7:da:25:70:d4:31:75:b5:3b:a3:
30:21:8d:2c:a2:ef:f6:8e:69:f8:21:33:50:17:6b:
4c:5c:6e:12:66:53:27:f2:75:7d:03:ee:b6:da:fa:
9b:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:4C:A0:D0:9B:BD:05:F4:B8:A8:AC:30:A3:29:F6:71:51:10:75:8C
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/4786c2-11a1-48a4-ba80-7944976599d8/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/4786c2-11a1-48a4-ba80-7944976599d8/1/YUyg0Ju9BfS4qKwwoyn2cVEQdYw.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.3.56.0/24
IPv6:
2a12:100::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
210513
215801
Signature Algorithm: sha256WithRSAEncryption
26:1e:17:d9:bd:20:24:01:97:fb:76:08:ab:99:ed:b5:62:3c:
21:d5:45:ac:61:f4:81:06:cb:50:80:b3:12:64:75:3e:8b:8a:
29:54:29:8b:9a:c4:69:2b:07:b6:0c:a6:31:3f:44:82:f2:22:
3b:c0:d2:94:e9:d2:11:a6:0f:11:9d:84:14:74:7a:77:a3:ea:
4a:03:f1:f5:db:ce:ad:df:d0:87:8e:e2:a3:6c:e9:ea:d9:07:
39:f7:12:c6:17:af:ca:85:05:78:83:bf:01:55:91:ec:f8:c4:
50:20:b2:d6:c7:00:82:ee:27:41:e7:9b:50:b4:91:6d:a4:ff:
3b:09:e2:0f:fa:27:44:28:9b:c7:52:41:b6:d7:03:7b:86:f5:
fe:46:3f:d2:32:ce:8e:d6:09:41:4f:6a:5c:cb:49:a1:dd:44:
68:25:a9:8f:67:b4:08:8c:4d:6f:3f:bd:8d:ff:a5:1c:8a:83:
42:d1:b5:25:98:13:99:b3:a4:6b:a9:7a:ef:ff:e1:ae:d2:d2:
30:c7:b0:38:b0:7d:8b:3d:5b:b2:e6:b8:b5:b0:69:95:2f:e1:
68:bf:b3:91:32:c5:a3:44:46:f6:4f:56:1e:f4:9b:b6:48:e8:
39:17:9f:7d:9a:57:f9:4d:91:d4:ff:6a:98:59:b6:45:f1:f8:
db:b7:ae:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:25:47 2024 by rpki-client on console-ams.rpki-client.org