Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/_JgxNwQvyMSSFwfU622l9sSnmls.cer
File: _JgxNwQvyMSSFwfU622l9sSnmls.cer (raw, json)
Hash identifier: ox2DSuHDkxfEPiGkkUAG6FHxlj3Mmz4+C7b/Jf+PhsM=
Subject key identifier: FC:98:31:37:04:2F:C8:C4:92:17:07:D4:EB:6D:A5:F6:C4:A7:9A:5B
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC64B307805F873E676ED6729106F4E04
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/4c/421c80-ed3a-47fd-8d2c-224f10a981fe/1/_JgxNwQvyMSSFwfU622l9sSnmls.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/4c/421c80-ed3a-47fd-8d2c-224f10a981fe/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 18:31:05 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 8245
AS: 215815
IP: 185.126.20.0/22
IP: 195.26.192.0/19
IP: 212.236.0.0/16
IP: 2a02:2750::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 11:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4b:30:78:05:f8:73:e6:76:ed:67:29:10:6f:4e:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 18:31:05 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fc983137042fc8c4921707d4eb6da5f6c4a79a5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:95:df:ef:d0:da:e7:93:70:3b:05:f9:ab:f1:
40:80:4b:63:d3:e3:11:bf:b6:26:41:7f:c0:6e:2c:
ab:a8:76:b0:1e:d7:ba:85:a5:3c:45:da:d2:e9:04:
de:d6:3b:ec:c5:66:42:e5:7d:4a:68:32:16:bd:57:
ff:17:13:c4:95:39:e8:71:86:5d:6b:fa:b2:06:d6:
22:65:67:ef:e2:03:0a:b4:d2:92:7a:45:27:9a:1f:
5d:5a:f3:2b:c7:1c:97:af:ef:46:a9:8b:64:98:4a:
28:2d:44:52:c2:98:cb:e3:47:79:9f:5f:a0:02:8a:
5e:06:60:56:7d:cd:b4:c1:b4:27:7b:13:19:5b:2f:
0c:4f:ae:1d:6b:d0:92:60:b7:3b:a9:66:66:a8:ea:
90:f3:f7:d3:af:1e:85:ec:fa:86:c4:52:af:7c:dc:
08:5e:2f:f4:bc:09:24:f5:46:97:d1:f0:cb:8b:9d:
e7:72:b7:ed:23:6b:d2:3d:3e:63:64:8c:65:ff:a1:
d7:a1:60:40:06:8e:c8:15:bc:27:f3:94:72:fa:d4:
d8:2b:f1:33:ba:b8:24:2e:e4:a2:c3:e6:6c:58:e0:
34:7a:e8:b4:b7:b2:5c:ec:1b:dd:03:ff:97:ef:ea:
c6:29:30:8d:b7:c4:73:cd:3d:47:ae:ed:16:41:0b:
1e:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:98:31:37:04:2F:C8:C4:92:17:07:D4:EB:6D:A5:F6:C4:A7:9A:5B
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/421c80-ed3a-47fd-8d2c-224f10a981fe/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/421c80-ed3a-47fd-8d2c-224f10a981fe/1/_JgxNwQvyMSSFwfU622l9sSnmls.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.126.20.0/22
195.26.192.0/19
212.236.0.0/16
IPv6:
2a02:2750::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
8245
215815
Signature Algorithm: sha256WithRSAEncryption
b1:7b:0c:05:e6:f7:65:c6:ef:b9:74:01:1a:10:da:31:49:c3:
98:1a:b0:b7:21:3b:44:00:25:39:6e:be:23:6b:c0:c2:d6:ea:
b9:92:d7:28:6d:41:1c:d4:a8:ab:c9:fc:45:48:0c:5d:ae:f7:
14:51:f9:a3:6b:f1:6d:32:25:df:47:6b:17:d0:95:81:71:f4:
25:28:3e:96:65:94:d2:fa:42:5b:94:fb:bf:88:fc:fa:5f:4b:
fb:d7:2d:99:10:5e:f5:b6:75:47:dd:ea:50:99:46:8f:6e:a4:
08:96:e7:7e:ff:91:00:5a:78:98:84:29:46:41:09:48:bb:27:
e6:1c:c2:2e:4c:78:98:c8:aa:90:01:95:d1:75:49:f5:0c:6f:
74:fb:7a:7d:1a:a2:86:4c:9b:80:1f:bf:11:37:ea:86:4a:b7:
14:f2:7b:9e:72:9e:f6:16:0c:31:a4:9c:db:a5:09:43:0c:a3:
f2:f4:28:21:a2:36:8a:65:da:28:e0:8c:14:1e:8b:d8:52:10:
ce:f9:c5:08:11:e0:79:85:c8:b0:65:89:56:d2:3c:d8:2c:30:
f6:9b:1e:88:75:49:98:26:90:4f:68:70:5f:a4:3e:4b:ee:80:
ad:9a:1d:91:5a:e5:b8:48:cb:1b:b3:62:a4:e3:32:f9:24:b8:
5a:d4:a1:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 13:25:08 2024 by rpki-client on console-fra.rpki-client.org