Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/_2mO6y5J_LX5xlqZhXrynOBmQdk.cer
File: _2mO6y5J_LX5xlqZhXrynOBmQdk.cer (raw, json)
Hash identifier: uud8UyMBPXPezLoE9r3xOtJvM1Or57KJEwdyj2RExao=
Subject key identifier: FF:69:8E:EB:2E:49:FC:B5:F9:C6:5A:99:85:7A:F2:9C:E0:66:41:D9
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC6499991E9BD5C1E8B40B03C2157A82A
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/5f/b4d75d-953a-4036-9839-57cd68d9cb4e/1/_2mO6y5J_LX5xlqZhXrynOBmQdk.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/5f/b4d75d-953a-4036-9839-57cd68d9cb4e/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 18:29:21 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 8194
AS: 47352
AS: 210213
AS: 210591
IP: 31.24.192.0/21
IP: 185.1.236.0/24
IP: 195.244.144.0/20
IP: 212.70.160.0/19
IP: 2001:7f8:126::/48
IP: 2a00:1780::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 15:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:49:99:91:e9:bd:5c:1e:8b:40:b0:3c:21:57:a8:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 18:29:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ff698eeb2e49fcb5f9c65a99857af29ce06641d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:fb:bd:2c:19:2a:7d:f8:82:bf:cf:92:f1:8f:
a2:a8:22:fb:b0:f8:2e:b2:d4:31:69:57:1a:30:bd:
2b:4b:50:62:0b:57:36:61:4c:3e:e9:eb:1c:62:c8:
5f:0b:9d:c7:27:97:1f:f1:4a:a6:3b:35:db:74:ac:
e8:f0:db:b1:1e:98:28:12:fd:c1:02:dc:7d:c1:49:
8a:28:e6:1c:aa:5b:05:fc:12:01:82:a4:17:4b:43:
af:3b:29:37:d7:a9:52:8e:4b:36:6d:a3:cf:b3:14:
58:87:48:3f:f0:ec:fb:1c:18:12:34:c7:d0:44:c8:
a5:8a:be:31:c3:64:f1:b7:9e:44:84:76:c8:54:39:
8f:a0:c5:96:98:07:07:6c:bc:ef:90:c8:7f:c3:84:
b7:de:2a:54:7e:1b:59:cd:b1:02:3e:2e:a0:7b:b5:
ab:58:40:f2:fc:ad:d0:01:ee:4a:4e:6f:0d:9d:bb:
64:29:51:09:0d:db:c9:be:e7:b3:f1:a4:d6:0c:30:
4a:cd:8d:85:89:67:44:54:00:a0:e0:6c:c7:3b:6c:
29:d8:66:ae:7f:1f:1b:1d:06:2f:68:32:38:b3:0f:
7d:ed:8b:c9:f1:ce:0b:a9:73:af:7c:f9:d5:3d:15:
93:12:14:b2:74:e6:57:a8:63:7b:81:bb:0e:0b:ba:
2d:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:69:8E:EB:2E:49:FC:B5:F9:C6:5A:99:85:7A:F2:9C:E0:66:41:D9
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b4d75d-953a-4036-9839-57cd68d9cb4e/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b4d75d-953a-4036-9839-57cd68d9cb4e/1/_2mO6y5J_LX5xlqZhXrynOBmQdk.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.24.192.0/21
185.1.236.0/24
195.244.144.0/20
212.70.160.0/19
IPv6:
2001:7f8:126::/48
2a00:1780::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
8194
47352
210213
210591
Signature Algorithm: sha256WithRSAEncryption
9e:1f:66:5f:63:78:9a:e5:2c:43:cf:3c:03:d6:31:e3:90:a8:
b4:00:fe:8e:f9:b4:4a:f7:95:0d:a1:f9:4f:5e:2d:d9:aa:6f:
ce:84:21:83:fe:b9:c0:05:01:ff:4a:98:ca:dc:6d:15:66:44:
77:de:ca:ed:7a:b2:1d:5a:12:7c:06:4a:01:d5:fe:59:d7:40:
5a:8a:73:c3:b1:05:c9:a6:62:45:87:2c:27:43:6e:81:f6:01:
be:b0:5d:e1:53:98:50:d1:8e:ed:47:74:74:19:3f:94:65:fb:
64:02:53:a4:17:e2:a4:0f:77:a4:c6:25:cf:78:aa:e5:7b:b1:
2f:cc:f4:dc:c9:c3:2d:2b:19:fe:f5:a8:4f:5d:e5:0c:d7:7d:
7c:0a:8d:6c:3f:50:9f:91:88:50:d1:86:ed:ac:e6:a4:5c:67:
b6:25:7e:b4:f9:c1:a2:08:f9:a5:06:58:ac:bc:83:b1:f0:83:
d9:11:ca:54:ed:1f:da:4b:e8:dd:70:30:3f:00:73:da:f8:bf:
6a:6c:a5:1b:3c:82:df:73:68:d1:fc:01:97:84:c8:03:99:7f:
b7:84:fc:16:3e:28:5e:4d:44:5a:f4:02:9b:e7:e3:a8:48:33:
fd:2b:e1:3d:3a:cd:e2:06:44:fd:04:79:09:58:cc:b9:84:4d:
09:3a:10:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 19:15:11 2024 by rpki-client on console-fra.rpki-client.org