Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/_ejRxqr0qT_0G7-hvR2sYZfVlXU.cer
File: _ejRxqr0qT_0G7-hvR2sYZfVlXU.cer (raw, json)
Hash identifier: YCrDpAfbygqCj9uBNdU2v9wrfAbDylxis2wSI8/hnFk=
Subject key identifier: FD:E8:D1:C6:AA:F4:A9:3F:F4:1B:BF:A1:BD:1D:AC:61:97:D5:95:75
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC4939E41A1F239F0AC719250D56E7369
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/48/496885-709f-4bbb-9375-954d19549b61/1/_ejRxqr0qT_0G7-hvR2sYZfVlXU.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/48/496885-709f-4bbb-9375-954d19549b61/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 10:30:57 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 15866
IP: 94.232.192.0/21
IP: 185.45.88.0/22
IP: 217.171.240.0/20
IP: 2a00:1920::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:93:9e:41:a1:f2:39:f0:ac:71:92:50:d5:6e:73:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 10:30:57 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fde8d1c6aaf4a93ff41bbfa1bd1dac6197d59575
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:5b:6f:05:86:88:d3:eb:bd:a5:00:a8:b9:a3:
61:50:47:e4:c1:1b:cd:e7:53:63:5f:a2:aa:e1:d0:
8a:d8:79:06:ed:4a:2b:08:bb:a3:25:13:08:0b:ac:
16:d2:fb:81:82:ca:92:83:83:cb:d4:29:0b:db:e0:
9f:cd:49:d0:95:51:4a:72:c1:bf:9f:0b:3d:4a:7c:
93:74:56:eb:fc:80:b4:d0:ca:16:36:11:8d:12:4f:
88:71:ee:6d:a2:66:4f:7e:cb:4a:f2:ef:06:80:54:
c0:52:eb:8b:9f:f5:37:42:fc:24:93:da:46:e4:54:
90:40:f6:05:1e:74:16:40:d4:38:05:45:10:67:db:
f6:68:2f:e6:f4:79:a9:f4:ef:ab:83:db:ee:a8:e0:
6b:c5:06:c9:29:0b:27:28:2b:46:6d:6c:39:e0:31:
8f:a8:98:72:80:cf:dd:3e:12:04:4e:c2:db:9b:97:
a8:2a:da:d0:75:33:f9:37:ea:6b:fd:88:2e:fa:0a:
9f:69:50:94:51:c4:4c:bb:78:e3:b1:b5:3a:9a:95:
89:2d:3b:2d:f4:4e:8c:f6:5c:c7:3a:c0:14:09:aa:
11:d9:93:aa:ec:ac:68:31:5a:8d:47:11:dd:16:a1:
e6:70:d9:26:58:c7:c8:b3:0e:6d:c9:9a:62:c0:53:
5d:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:E8:D1:C6:AA:F4:A9:3F:F4:1B:BF:A1:BD:1D:AC:61:97:D5:95:75
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/496885-709f-4bbb-9375-954d19549b61/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/496885-709f-4bbb-9375-954d19549b61/1/_ejRxqr0qT_0G7-hvR2sYZfVlXU.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.232.192.0/21
185.45.88.0/22
217.171.240.0/20
IPv6:
2a00:1920::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
15866
Signature Algorithm: sha256WithRSAEncryption
9f:95:dd:c0:ad:2b:dc:fa:74:8a:6e:33:ee:ee:36:e9:dd:81:
42:28:b3:ae:bf:3d:3e:05:75:1c:3c:c4:8c:4f:7f:ee:de:a1:
bb:27:e2:38:dc:b4:c8:71:4d:bd:f3:bc:76:60:72:fe:6d:f4:
32:ff:51:6c:4c:ba:02:e1:fb:12:35:66:b1:8e:e5:48:1d:85:
fc:6b:6c:ab:3d:ec:fe:b5:79:ba:56:ea:1e:24:5e:ae:c9:87:
35:f4:61:aa:52:7b:2f:61:42:98:31:91:3c:21:d9:54:02:f8:
5c:f9:52:2d:5e:b4:c7:da:12:7f:4d:56:15:24:35:26:f0:86:
52:9c:e6:25:85:bc:a8:98:68:e7:7b:07:77:8d:d0:f5:ed:37:
fd:45:38:b3:03:60:b0:c6:9d:ba:f5:69:9d:b4:ee:a4:58:98:
fc:c5:ff:9f:a5:89:52:cd:db:4c:fe:b9:17:79:58:25:ac:41:
7a:2b:78:1b:01:2e:55:5a:e6:18:6f:ca:fb:73:86:f5:a4:cd:
c4:26:f7:e5:b0:f3:c4:ed:32:76:3c:71:3e:02:cd:71:81:29:
d3:8d:45:e5:7f:a1:4a:8a:2c:55:bf:56:4c:95:59:54:a8:9b:
58:f4:2f:57:2f:e4:cd:87:8b:4d:b7:97:e5:9c:29:4b:df:b8:
9b:3c:65:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:55:41 2024 by rpki-client on console-fra.rpki-client.org