Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/_XF_OrY5RaG-c5wrOiWJvqVd224.cer
File: _XF_OrY5RaG-c5wrOiWJvqVd224.cer (raw, json)
Hash identifier: tH57o+IicmdEDWYAaKAGlKmpEcrMs5YHpoZiVXMff6I=
Subject key identifier: FD:71:7F:3A:B6:39:45:A1:BE:73:9C:2B:3A:25:89:BE:A5:5D:DB:6E
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC9BC14FF8265EAC45B642A96693FF6B1
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/87/2f0a66-1634-40fb-99b0-931505ff41c5/1/_XF_OrY5RaG-c5wrOiWJvqVd224.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/87/2f0a66-1634-40fb-99b0-931505ff41c5/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 10:33:15 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 47505
IP: 91.206.78.0/23
IP: 193.142.208.0/24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 14:42:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:14:ff:82:65:ea:c4:5b:64:2a:96:69:3f:f6:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 10:33:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fd717f3ab63945a1be739c2b3a2589bea55ddb6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:ab:8c:98:b1:93:9e:3e:cd:f5:3d:92:a1:21:
ba:ee:a2:16:d9:3c:89:89:17:65:e9:4c:6d:97:cf:
cb:c7:8b:87:43:df:ff:69:26:4e:bf:bb:2b:49:fe:
ee:b9:8b:e1:e4:76:4a:71:7b:da:b1:36:5d:9a:7b:
ca:6b:df:7c:ab:ff:81:64:f6:77:70:11:d4:55:10:
a4:7d:b6:89:21:bf:50:07:06:c7:93:8f:be:08:5b:
5a:a6:80:68:70:b3:f5:1e:32:57:89:0e:0d:2c:60:
3c:80:59:b9:2f:e4:e9:cc:21:e3:38:8e:f5:af:07:
39:9e:f0:e0:d4:d4:b2:1b:e5:71:15:3d:7e:50:52:
fb:e4:30:44:50:a3:b1:fc:51:4c:b5:8e:6b:b7:00:
d4:1c:e8:5b:bf:f4:12:f7:6e:68:b7:00:ee:da:c7:
14:6b:36:5f:6e:82:08:7b:04:ad:d8:fc:66:2a:6c:
4e:c7:b0:12:91:b9:85:9e:7e:f9:09:ee:40:c0:a8:
c8:8c:b1:03:87:4f:c0:9a:13:f8:60:9f:49:2a:b0:
1e:7d:3e:96:06:bb:39:a8:01:b8:a7:d5:d9:a2:20:
8d:da:41:55:07:b5:f0:b0:ab:51:ef:a6:a5:cd:b4:
14:8e:4f:52:97:4e:7c:6a:9b:8c:a3:63:44:db:fe:
4b:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:71:7F:3A:B6:39:45:A1:BE:73:9C:2B:3A:25:89:BE:A5:5D:DB:6E
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/2f0a66-1634-40fb-99b0-931505ff41c5/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/2f0a66-1634-40fb-99b0-931505ff41c5/1/_XF_OrY5RaG-c5wrOiWJvqVd224.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.206.78.0/23
193.142.208.0/24
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
47505
Signature Algorithm: sha256WithRSAEncryption
9e:6e:b1:24:c6:39:61:5c:c7:04:2a:94:18:45:f6:a1:c3:a4:
44:8e:5c:6c:bf:97:57:a5:19:c5:15:13:38:4c:9d:dd:58:8e:
cb:ba:9c:c3:62:04:0a:05:2d:44:52:5c:55:37:ca:22:ea:d1:
0e:53:ae:1a:3e:cc:50:b1:b5:0d:4e:72:4e:db:5b:6a:46:e3:
92:32:47:1f:0b:6c:7a:16:e4:ed:18:c1:60:73:bf:8a:3e:d2:
bd:91:22:fc:43:5d:39:c2:c2:05:f1:3c:e4:45:f4:c3:e3:0b:
e4:03:79:a4:af:d6:86:d0:f1:20:aa:1d:93:08:30:24:dd:2e:
8e:99:25:8c:e5:52:b3:f5:14:ef:de:3d:7c:5f:61:7c:8a:cc:
c4:31:c4:2c:53:07:33:7f:7f:86:6d:b2:ac:cc:bd:5f:2b:0d:
33:34:5f:48:01:d9:f2:ea:16:61:69:35:46:56:cf:43:70:53:
0f:85:e8:1b:ad:be:01:42:bf:e0:e1:8b:34:1a:8d:03:fd:69:
94:26:47:31:c8:67:6b:22:bb:8b:91:40:f3:f3:78:88:ab:7d:
c4:d6:3a:e3:ed:4e:b4:59:c3:c7:d7:bb:71:d6:b9:72:68:b4:
bc:bf:75:74:9e:7d:92:8d:ea:49:0a:37:75:dc:d9:2a:9d:08:
09:a8:fe:f0
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Mon Nov 25 16:30:07 2024 by rpki-client on console-fra.rpki-client.org