Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/YeVlVi0-P1ZenApBlG6lPUXV1lc.cer
File: YeVlVi0-P1ZenApBlG6lPUXV1lc.cer (raw, json)
Hash identifier: 3Z+sLtdt24B2DIfDJT4fu0mO9viGRymOxiQ1QQQ4xp0=
Subject key identifier: 61:E5:65:56:2D:3E:3F:56:5E:9C:0A:41:94:6E:A5:3D:45:D5:D6:57
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC649DB4A2E707DB609DEF7E73A29615D
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/78/66214b-01df-4b01-ba76-f4cbd6ba6c0f/1/YeVlVi0-P1ZenApBlG6lPUXV1lc.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/78/66214b-01df-4b01-ba76-f4cbd6ba6c0f/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 18:29:38 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 211186
IP: 91.218.22.0/24
IP: 185.14.96.0/24
IP: 195.95.189.0/24
IP: 2a0c:2580::/30
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:49:db:4a:2e:70:7d:b6:09:de:f7:e7:3a:29:61:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 18:29:38 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=61e565562d3e3f565e9c0a41946ea53d45d5d657
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:7f:88:05:07:66:e1:f8:b3:ef:70:7e:52:1f:
57:cb:85:5b:86:20:15:76:8b:76:68:8a:ff:5d:88:
61:f5:d3:84:0c:34:8a:2c:2c:63:68:65:82:a8:42:
c6:1e:38:f3:d2:69:13:64:02:e4:73:92:bd:25:d5:
64:60:01:21:e7:8e:4c:42:5e:c6:2b:1a:12:5d:2e:
dc:ed:a3:ea:21:c7:38:e2:e2:e5:8e:78:13:b5:c7:
50:05:61:50:8e:da:d7:0e:9c:57:2c:d0:b5:a5:16:
90:d2:84:9b:b8:bc:2a:ab:f7:b8:9d:3b:c7:d9:b4:
dd:33:5a:7a:9e:be:2c:ce:24:a8:fd:7d:c0:f1:d5:
a8:65:9e:bb:92:55:e2:68:7c:9f:cf:4c:8b:8b:87:
3c:da:31:d3:a5:ec:5c:c8:5e:a4:13:fa:9d:93:cb:
e4:ea:b8:43:85:7c:39:2b:fa:af:35:30:00:ce:58:
12:93:e5:6b:35:ae:79:2b:82:c6:97:b2:49:30:e2:
39:a9:eb:00:c7:b8:36:b6:0a:6e:d8:ec:d2:1e:8f:
07:2a:be:6f:8a:d4:4c:b7:42:fa:a0:aa:ff:d5:d4:
9d:25:82:57:67:1b:8a:aa:20:f5:64:68:05:93:45:
6b:fc:e5:ac:c5:3e:67:b0:d5:22:8c:10:09:78:5b:
f4:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:E5:65:56:2D:3E:3F:56:5E:9C:0A:41:94:6E:A5:3D:45:D5:D6:57
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66214b-01df-4b01-ba76-f4cbd6ba6c0f/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66214b-01df-4b01-ba76-f4cbd6ba6c0f/1/YeVlVi0-P1ZenApBlG6lPUXV1lc.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.218.22.0/24
185.14.96.0/24
195.95.189.0/24
IPv6:
2a0c:2580::/30
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
211186
Signature Algorithm: sha256WithRSAEncryption
8c:21:52:48:41:84:7b:56:28:55:d5:d3:70:12:26:20:dc:f6:
6d:58:ac:2d:e6:05:9b:3a:9a:74:69:ab:f9:59:e6:f1:24:b8:
de:43:1a:c0:2e:06:07:7b:04:e9:f1:91:9f:86:c2:db:89:06:
f2:9d:d0:53:91:46:89:d0:88:e6:cc:74:fb:20:11:1e:09:ff:
0c:e8:b3:f9:bf:ac:3d:da:45:e8:11:73:0e:fc:b3:1b:27:2d:
bb:fc:c4:6d:a6:4a:97:76:44:83:65:70:12:14:e2:0f:6d:d1:
cc:01:97:a1:dd:a9:d1:8a:9a:ff:fd:76:80:bd:69:c5:05:d8:
32:1b:23:3a:47:83:7c:ab:c8:63:2d:71:78:09:7b:27:27:42:
05:25:bd:b4:1a:49:92:ad:0e:45:d8:d6:ea:04:1b:5b:bf:f1:
10:d4:00:dd:5f:5a:4c:9f:0b:59:a0:2d:d6:95:12:21:35:f7:
1c:0d:38:19:b3:e1:a0:74:fb:db:31:68:2f:b2:58:0b:7d:fd:
d2:bc:af:ce:e6:41:0f:f6:5c:dc:94:95:13:38:71:6c:fd:29:
94:55:de:c4:a8:94:6d:e4:29:26:28:a6:f3:18:7b:ad:de:6b:
ba:29:39:da:72:07:40:f0:d8:d5:72:83:e5:6c:22:99:64:86:
98:b6:7d:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:52:00 2024 by rpki-client on console-ams.rpki-client.org