Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/_i4izBWFntSgeEv9CFhLPI-yn5o.cer
File: _i4izBWFntSgeEv9CFhLPI-yn5o.cer (raw, json)
Hash identifier: Oz3b6B3MQwq5D8aT2Vbp3dwIS7CmHK9mQCePbWTEYvM=
Subject key identifier: FE:2E:22:CC:15:85:9E:D4:A0:78:4B:FD:08:58:4B:3C:8F:B2:9F:9A
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC5DCD741B598D7E68AAFDD44ABD3F95B
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/78/cf9c10-c85c-4bbf-a25d-8060c503d86e/1/_i4izBWFntSgeEv9CFhLPI-yn5o.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/78/cf9c10-c85c-4bbf-a25d-8060c503d86e/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 16:30:33 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 1547
IP: 31.31.0.0/19
IP: 37.26.128.0/20
IP: 62.221.64.0/18
IP: 77.235.96.0/19
IP: 80.94.240.0/20
IP: 95.153.64.0/18
IP: 185.10.20.0/22
IP: 217.19.208.0/20
IP: 2a03:f680::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:dc:d7:41:b5:98:d7:e6:8a:af:dd:44:ab:d3:f9:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 16:30:33 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fe2e22cc15859ed4a0784bfd08584b3c8fb29f9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:96:46:56:a0:87:c5:a6:85:ed:15:59:ec:ae:
f6:54:6e:c7:06:4a:de:15:db:a6:9b:af:c0:99:02:
d2:4f:b0:83:1c:72:0c:bd:69:78:89:0e:d9:ab:9a:
eb:11:a8:ca:71:6f:d3:01:31:6d:ff:ee:ca:ad:44:
63:33:65:07:c5:a6:39:9a:37:9f:07:ae:4a:72:77:
d1:02:c9:ac:82:58:b0:ad:64:8f:9d:46:d4:19:08:
44:33:2d:ad:30:83:ef:81:32:73:ef:e5:74:07:5c:
54:9a:d6:99:72:02:ab:72:75:54:77:a3:92:33:d3:
78:10:53:69:20:e8:9f:c3:2f:8b:50:b4:33:37:3d:
d7:fd:62:6f:d8:0a:08:d1:9a:1e:99:c7:19:39:e2:
51:2c:86:70:36:81:14:75:ea:14:49:55:b7:e3:07:
f5:7c:e5:d2:ba:ae:bd:fe:c9:fd:8d:66:50:29:57:
94:2c:f2:d4:0e:fc:db:9d:b5:db:f2:1b:ad:7f:9d:
41:62:1f:70:ad:d7:14:60:bc:07:55:77:45:34:f3:
0e:17:c8:19:da:d0:6a:8a:22:18:34:9c:6a:c2:e6:
fe:dc:e3:8c:8e:a5:be:d9:c1:2b:52:e8:fa:f9:aa:
02:bb:c5:e9:a9:56:eb:14:11:91:cc:05:38:8a:97:
c7:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:2E:22:CC:15:85:9E:D4:A0:78:4B:FD:08:58:4B:3C:8F:B2:9F:9A
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/cf9c10-c85c-4bbf-a25d-8060c503d86e/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/cf9c10-c85c-4bbf-a25d-8060c503d86e/1/_i4izBWFntSgeEv9CFhLPI-yn5o.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.31.0.0/19
37.26.128.0/20
62.221.64.0/18
77.235.96.0/19
80.94.240.0/20
95.153.64.0/18
185.10.20.0/22
217.19.208.0/20
IPv6:
2a03:f680::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
1547
Signature Algorithm: sha256WithRSAEncryption
85:49:c3:af:18:f4:78:6c:2c:f6:0e:e3:d9:8b:f5:67:d9:84:
81:da:14:b1:94:cd:20:87:21:45:16:30:60:22:4b:65:c0:ff:
bb:0d:84:bf:96:72:3e:07:74:78:f4:84:20:40:33:22:e1:8c:
36:d1:5a:8d:b8:9c:d1:01:8f:5d:7b:3d:bc:68:f0:a1:7e:0f:
bb:19:25:64:26:48:7d:c2:15:93:cb:20:ae:03:7a:56:1f:05:
83:e9:dc:17:3f:2e:9d:eb:1d:b2:3b:e9:d9:1b:69:ae:0a:0d:
61:43:12:dc:72:9c:ce:6e:b6:2e:fe:95:ad:42:11:1d:f5:6e:
3a:61:db:fe:20:9c:ef:84:14:23:6a:1c:4b:ef:a8:28:2c:82:
6a:63:93:fb:f4:44:85:14:a7:ff:c6:43:32:5e:40:ac:50:17:
da:ba:9c:db:75:c0:9a:e6:b3:00:50:c3:21:3c:9f:75:9a:1f:
3d:a0:84:9f:1f:c3:f2:b2:01:24:81:b5:38:b0:74:12:f8:4e:
25:a6:6c:1f:58:d2:69:83:da:9c:f7:eb:56:7c:48:9a:37:b4:
48:8f:ba:31:55:aa:31:12:a2:8c:f5:1d:db:8b:eb:77:81:2e:
c9:3c:9a:48:2f:f1:c7:51:55:cb:25:18:ec:61:f1:92:53:d0:
95:39:7e:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:11:10 2024 by rpki-client on console-fra.rpki-client.org