Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/_kK02grqV4yifyXesM_tYagLnqI.cer
File: _kK02grqV4yifyXesM_tYagLnqI.cer (raw, json)
Hash identifier: HWJy+L5cl3DSKyfO9vuOlSkYdU0COPYssD77RXaBhWk=
Subject key identifier: FE:42:B4:DA:0A:EA:57:8C:A2:7F:25:DE:B0:CF:ED:61:A8:0B:9E:A2
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC64B371CC7C3262E3155B32CAF985B7E
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/0c/cc0750-f461-4d63-8ef2-68f32ea9f0a7/1/_kK02grqV4yifyXesM_tYagLnqI.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/0c/cc0750-f461-4d63-8ef2-68f32ea9f0a7/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 18:31:07 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 48262
IP: 185.33.25.0/24
IP: 2a12:6d40::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4b:37:1c:c7:c3:26:2e:31:55:b3:2c:af:98:5b:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 18:31:07 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fe42b4da0aea578ca27f25deb0cfed61a80b9ea2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:90:c8:68:db:55:b0:12:0b:24:55:08:17:bc:
78:ed:ea:87:df:84:83:1b:c3:1d:48:0f:67:61:74:
44:34:4a:79:c5:11:ac:03:94:d1:71:5f:56:ab:cb:
9e:2b:44:2a:dd:e9:13:c3:3f:59:bd:d0:2a:dd:c8:
e0:97:b6:ac:b0:58:8f:22:0d:ea:c2:65:c1:59:7c:
65:97:9d:83:6d:dd:d2:ea:a2:4a:97:50:a2:02:16:
89:36:ca:b3:97:de:f8:76:be:46:33:45:ff:b5:ce:
0d:08:12:d4:6e:bd:19:01:f2:b3:14:99:17:55:f4:
24:bd:33:c1:a2:38:77:6f:2b:14:84:73:4e:97:7a:
4b:a9:6b:a2:75:c1:3c:82:92:f4:49:05:9b:ef:47:
9d:b3:b5:8c:0b:43:f0:ae:7d:53:0a:e0:61:ad:1e:
c9:ff:b2:f3:5a:bb:00:82:22:72:91:28:97:01:46:
c3:4c:17:1d:9c:32:be:bc:e5:52:a4:51:d3:99:fd:
88:62:8b:90:ed:19:b0:ea:d0:89:9a:30:0d:1d:45:
0a:f2:36:af:ca:4d:87:e5:4e:a5:80:07:a4:59:47:
22:73:0a:19:18:6c:c9:95:64:25:fd:a1:7e:bd:fa:
c4:0e:aa:31:91:a4:36:e8:a8:41:ef:35:7b:fe:e0:
45:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:42:B4:DA:0A:EA:57:8C:A2:7F:25:DE:B0:CF:ED:61:A8:0B:9E:A2
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/cc0750-f461-4d63-8ef2-68f32ea9f0a7/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/cc0750-f461-4d63-8ef2-68f32ea9f0a7/1/_kK02grqV4yifyXesM_tYagLnqI.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.33.25.0/24
IPv6:
2a12:6d40::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
48262
Signature Algorithm: sha256WithRSAEncryption
31:26:f3:36:e7:04:27:14:38:5d:05:b0:89:a3:5f:d0:d3:5c:
e7:39:0e:18:2e:49:f7:ef:9a:85:ba:78:c2:34:71:c3:9e:e2:
c0:32:01:6b:c6:e8:f4:f0:34:f9:f9:f4:76:e4:9f:bc:e3:93:
86:89:3f:bf:60:ac:28:f5:f1:90:2d:10:a2:26:c5:99:43:e8:
f9:08:20:af:c7:ee:fb:04:e7:f1:6c:c9:60:8d:0f:22:7a:06:
c5:b4:4a:b8:33:ef:7b:0b:80:bd:4b:43:7c:eb:b7:db:c0:64:
30:fd:ee:15:c9:eb:32:45:af:52:2b:3e:10:c1:95:a5:ca:b5:
fb:b8:1c:5a:6c:b9:43:ba:f0:f1:2c:dd:35:de:e2:14:e3:ae:
31:5a:ef:7e:86:ed:10:30:03:81:fe:0f:90:6d:78:1b:e8:05:
78:ec:a3:69:0c:25:cc:ab:d0:bc:e0:2c:34:e3:89:4f:2f:74:
93:fd:14:66:ad:bc:b5:50:5f:e5:82:86:f5:a7:67:03:5b:e9:
80:68:d1:bc:6d:fa:52:b0:19:18:e3:66:6e:d5:6d:a7:13:45:
59:55:c9:87:c3:84:0e:26:37:fb:e1:12:3a:cd:84:7a:41:72:
a5:b6:e1:4c:f9:ee:2d:8b:30:5b:8d:49:ac:14:63:31:40:e1:
a6:78:86:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:11:11 2024 by rpki-client on console-fra.rpki-client.org