Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/_1VJGZMcZ70mUPxODHPC-z4ijZU.cer
File: _1VJGZMcZ70mUPxODHPC-z4ijZU.cer (raw, json)
Hash identifier: Hx6IVrGLmCtnaw7CTMCyGWj/b3PieZbIOI944PVgCT8=
Subject key identifier: FF:55:49:19:93:1C:67:BD:26:50:FC:4E:0C:73:C2:FB:3E:22:8D:95
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC42549B1706CDB9F7A34FAD774B778D8
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/11/23244d-4886-470b-b1fc-290aa4318caa/1/_1VJGZMcZ70mUPxODHPC-z4ijZU.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/11/23244d-4886-470b-b1fc-290aa4318caa/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 08:30:27 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 58151
IP: 176.117.96.0/21
IP: 2001:67c:2988::/47
IP: 2a03:8c40::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:25:49:b1:70:6c:db:9f:7a:34:fa:d7:74:b7:78:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 08:30:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ff554919931c67bd2650fc4e0c73c2fb3e228d95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:45:7d:00:f7:71:42:57:7c:c7:68:36:ca:4c:
36:4b:6e:ca:9d:db:32:ab:a3:01:1b:ef:45:3c:a0:
07:df:1a:cd:2c:b9:84:c6:1b:ef:7f:18:a6:4d:dd:
7f:e3:a1:25:81:08:e9:9b:7f:41:38:bf:32:ae:b7:
38:89:18:bb:8d:15:f8:44:d5:28:6c:96:fd:1d:34:
fc:c1:76:00:3b:07:f4:22:4a:48:13:99:69:0a:72:
5c:e8:fd:7f:b3:52:fd:f6:19:19:ef:88:4b:3b:60:
c5:e8:7b:e3:a5:cb:56:6f:38:47:f2:bd:4c:40:ab:
19:e2:42:24:10:1d:89:57:d0:34:e7:fc:be:84:4c:
79:02:8e:1d:48:a3:5c:60:d3:1f:82:42:fb:65:ec:
87:5d:e4:e9:95:85:5b:8e:d6:28:30:a9:27:7f:3c:
ee:2c:ab:ae:75:1d:f8:cf:c4:15:9b:65:35:94:33:
60:14:97:2a:87:e8:f4:4f:13:ed:d6:28:cb:47:4c:
31:ad:92:1d:89:3b:a4:c7:3d:e9:96:f3:69:96:ad:
ea:96:9d:d9:8a:8b:b1:d0:96:6d:3f:1b:66:c0:f4:
c7:53:6a:f0:c7:27:0a:2e:8d:7d:76:08:3d:fb:66:
8b:53:c1:0c:67:6f:72:7b:74:9f:5d:6b:cc:e6:08:
19:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:55:49:19:93:1C:67:BD:26:50:FC:4E:0C:73:C2:FB:3E:22:8D:95
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/23244d-4886-470b-b1fc-290aa4318caa/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/23244d-4886-470b-b1fc-290aa4318caa/1/_1VJGZMcZ70mUPxODHPC-z4ijZU.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.117.96.0/21
IPv6:
2001:67c:2988::/47
2a03:8c40::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
58151
Signature Algorithm: sha256WithRSAEncryption
40:0a:28:4f:40:53:3c:7f:14:12:6a:db:c8:3e:e7:f1:4e:af:
3e:43:12:44:b8:86:72:48:bb:9f:0c:ac:50:92:ae:ae:fe:18:
cd:68:45:9f:0d:db:e4:45:de:23:df:f1:6f:9c:05:33:b9:dc:
9a:99:bc:26:25:07:23:c6:4e:ca:61:c0:5b:a7:6e:b6:fa:02:
90:ad:13:1b:52:b7:e3:c6:9b:d2:7c:4c:4a:d8:be:01:c7:3c:
7f:b7:1a:42:40:8b:68:47:ab:4b:af:18:e0:d2:f4:63:35:36:
3b:c3:95:37:45:c5:f8:40:31:6e:8e:0b:90:51:13:02:8f:1e:
3d:57:10:34:2a:4f:95:e5:43:c3:11:49:df:9a:6c:41:aa:4c:
fb:e3:2b:c3:d8:85:e3:ee:72:1e:df:61:9e:94:ab:2d:39:bf:
e5:37:8f:f8:ff:e1:79:bf:80:16:cc:51:a4:f8:d2:67:37:47:
18:26:bf:a3:ca:12:e5:7f:12:87:a7:59:e6:de:2a:83:8b:9d:
28:9c:98:4b:24:77:8d:ea:77:f5:80:fe:96:57:49:43:09:ec:
ee:d5:1f:ac:eb:36:e0:59:76:bf:a6:e7:4e:fa:23:b0:16:be:
e0:b1:1d:d0:f0:33:70:84:24:cd:d8:64:6b:0e:7d:0b:22:f5:
9b:f8:ee:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 02:18:09 2024 by rpki-client on console-ams.rpki-client.org