Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/_m1KNjQMPa2HoDkh0PiP9lFiiXo.cer
File: _m1KNjQMPa2HoDkh0PiP9lFiiXo.cer (raw, json)
Hash identifier: 31p/hTWGs3YOE3uczTQNPOl/e7vGCQrpSB2i25KDxXs=
Subject key identifier: FE:6D:4A:36:34:0C:3D:AD:87:A0:39:21:D0:F8:8F:F6:51:62:89:7A
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC5001F95C9253EBB9228F83A3B9F3FA5
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/a3/b70490-fcae-48ec-9249-beba754add57/1/_m1KNjQMPa2HoDkh0PiP9lFiiXo.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/a3/b70490-fcae-48ec-9249-beba754add57/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 12:29:28 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 204727
AS: 209288
IP: 91.202.210.0/24
IP: 151.248.16.0/22
IP: 185.112.73.0/24
IP: 212.18.105.0/24
IP: 2a05:ccc0::/29
IP: 2a10:c080::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:00:1f:95:c9:25:3e:bb:92:28:f8:3a:3b:9f:3f:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 12:29:28 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fe6d4a36340c3dad87a03921d0f88ff65162897a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:20:12:6c:84:a9:0a:52:15:62:34:26:43:de:
7c:3e:45:ab:56:46:fd:d0:1c:e0:37:28:f1:e1:5f:
15:f2:f4:6b:c9:86:1d:17:ab:9a:de:5a:27:8b:0a:
86:15:48:52:ee:5a:b8:7c:11:4d:3a:9b:d3:fb:7a:
e6:03:ca:d0:a3:9c:db:43:12:ce:6f:b1:98:e4:c0:
d8:ae:41:c4:a1:84:65:95:63:41:71:00:ae:59:a4:
35:56:6a:d7:96:6c:d0:87:7b:a1:ce:90:ca:64:c4:
9f:00:6b:8f:39:2a:15:7d:a1:fa:ad:d9:53:46:e2:
dc:83:ac:ed:a0:a2:6e:f0:b8:1d:39:03:81:8b:69:
47:50:fb:d6:89:70:2e:04:69:cd:2e:5a:fc:0d:15:
ab:8c:e3:60:9f:47:20:54:78:35:83:72:27:bb:8e:
ae:36:64:fc:17:dd:9f:d3:51:74:6c:42:c9:c0:a1:
73:ef:57:4c:f9:d1:62:0c:19:a5:dc:48:79:41:3c:
83:2a:02:08:92:35:56:f4:25:cc:3f:cf:3e:5d:a0:
36:7e:5b:05:e4:83:c0:6b:ac:9b:4b:fe:85:e8:f7:
e7:d3:f1:8e:e9:a0:c4:e8:ed:e9:41:ee:c0:41:b5:
fe:07:f6:3a:29:cf:13:df:0c:53:b3:d4:a7:4a:42:
5a:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:6D:4A:36:34:0C:3D:AD:87:A0:39:21:D0:F8:8F:F6:51:62:89:7A
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b70490-fcae-48ec-9249-beba754add57/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b70490-fcae-48ec-9249-beba754add57/1/_m1KNjQMPa2HoDkh0PiP9lFiiXo.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.202.210.0/24
151.248.16.0/22
185.112.73.0/24
212.18.105.0/24
IPv6:
2a05:ccc0::/29
2a10:c080::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
204727
209288
Signature Algorithm: sha256WithRSAEncryption
40:1d:22:a4:98:a6:d0:24:ce:60:07:77:60:b9:f6:ea:a8:a8:
96:fc:b8:68:38:e0:96:6d:9b:63:06:ac:90:6f:72:fc:bb:1f:
f4:c5:f6:6c:6f:7d:80:88:d5:d3:02:c0:64:54:18:16:2a:f5:
4a:0d:a9:25:32:58:0b:df:d6:40:ef:0f:12:f6:34:95:b8:7a:
0b:5f:2a:42:ab:62:30:d2:68:1a:f3:a5:f2:4a:8d:b4:ec:a8:
b6:24:06:23:0e:1e:4d:8e:93:60:0e:1c:1b:c3:cb:3d:0f:ba:
c2:6a:e2:6d:89:83:82:8b:dd:b0:27:ca:df:04:6b:9b:63:85:
1c:11:94:00:0f:8a:8d:d0:b2:cd:02:7d:45:d5:cb:49:ae:53:
b1:4c:1e:9d:c0:30:f9:95:92:11:42:87:c0:f3:cd:9d:4c:97:
cb:ad:7d:7a:0b:de:5e:91:16:80:93:ad:0f:fc:44:12:12:0e:
48:1c:d9:f7:cd:28:41:b1:5c:4b:65:e9:f4:e3:4d:0f:4a:1b:
ff:69:9f:f8:16:4a:91:8b:45:ad:6f:e2:4b:43:4b:79:97:03:
19:e4:d0:b3:00:55:f5:27:b8:44:36:68:5b:dd:32:b9:db:d9:
36:56:b6:e0:0b:19:fc:46:83:46:14:0b:57:c8:e6:50:53:9a:
e4:46:fe:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:11:12 2024 by rpki-client on console-fra.rpki-client.org