Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/_m27LD-YIyjgdJUUeRzrwuDqn4g.cer
File: _m27LD-YIyjgdJUUeRzrwuDqn4g.cer (raw, json)
Hash identifier: kJgKyynGnGlG6ffMHEaR/8fRgy3oigtLoNlK0d1U9e0=
Subject key identifier: FE:6D:BB:2C:3F:98:23:28:E0:74:95:14:79:1C:EB:C2:E0:EA:9F:88
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC56DE18E41E8E847D7A58DAFE3A50835
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/9e/e08355-cbd0-4012-bcf0-531266df32c0/1/_m27LD-YIyjgdJUUeRzrwuDqn4g.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/9e/e08355-cbd0-4012-bcf0-531266df32c0/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 14:29:21 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 204890
IP: 92.119.44.0/22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6d:e1:8e:41:e8:e8:47:d7:a5:8d:af:e3:a5:08:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 14:29:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fe6dbb2c3f982328e0749514791cebc2e0ea9f88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:2d:5f:76:31:3d:81:1e:c2:f0:c8:59:f5:35:
42:2e:14:7b:73:68:bf:ad:fa:3a:99:85:a5:88:c1:
16:5a:98:c6:11:ac:d6:30:59:02:ba:e8:57:73:6b:
23:63:b4:de:21:1b:de:b3:65:d8:b0:1d:38:8d:dc:
53:e2:67:b5:bb:96:cb:53:cf:ea:c2:87:e2:e2:34:
cc:e2:e2:86:ab:6f:58:4f:ad:5f:c5:47:ff:50:87:
68:a5:b1:8a:36:0d:c1:6b:ee:e1:27:9d:a5:c4:ca:
70:80:3b:fa:d8:2b:12:31:3c:a9:a0:4c:e9:25:35:
7f:7a:51:f0:a8:d3:49:ef:ee:a6:3d:7f:0c:1d:f0:
d8:4d:64:5b:a8:1e:fe:d4:3f:c9:8e:a2:44:ab:d8:
45:fa:39:20:63:18:5e:38:fd:75:6b:9d:83:28:bb:
29:4c:bd:86:76:e4:74:38:fc:bc:b8:cc:0d:6f:2c:
4c:44:08:0c:bd:de:05:90:17:9b:5e:78:c0:9b:cc:
da:4c:32:89:5d:77:3c:13:63:43:8d:4a:bf:a1:de:
9d:9a:34:8d:11:be:ef:67:f5:97:95:76:44:7c:b4:
81:b0:33:eb:80:ef:f7:b6:1e:f3:01:f3:d8:d6:cb:
03:da:7c:1d:08:fc:7f:ea:88:50:47:9e:5f:53:9c:
56:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:6D:BB:2C:3F:98:23:28:E0:74:95:14:79:1C:EB:C2:E0:EA:9F:88
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/e08355-cbd0-4012-bcf0-531266df32c0/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/e08355-cbd0-4012-bcf0-531266df32c0/1/_m27LD-YIyjgdJUUeRzrwuDqn4g.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.119.44.0/22
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
204890
Signature Algorithm: sha256WithRSAEncryption
33:6d:85:c6:ff:87:d2:48:6d:5c:a9:31:bc:05:6e:e5:d9:78:
30:e3:18:dc:fd:45:f1:6e:1c:d9:2a:4f:09:d2:d3:20:1a:ee:
a2:9c:2a:d5:cb:39:6f:a6:d2:c7:08:f1:e7:98:10:63:3a:6e:
7c:22:f5:e3:b5:50:4a:bf:35:38:ba:5b:e4:58:39:a4:e0:7f:
69:c8:5f:a3:0f:86:93:92:60:49:3f:9d:5a:e8:bb:03:f6:fc:
f1:51:4a:f6:d6:1a:5c:7d:6e:e0:15:7f:21:9e:1b:47:7d:03:
d7:0b:60:51:bb:5f:6c:72:97:71:29:f5:f2:2e:6e:7a:c4:bb:
71:3e:b4:7c:c0:04:17:18:29:18:c8:48:53:47:62:d3:06:6e:
64:0e:50:75:ca:b5:9f:77:50:7f:c9:37:b9:81:b6:45:c9:53:
2d:f1:7f:0a:2d:9f:6d:71:1c:59:22:06:3b:34:f5:40:97:9e:
b9:1c:6e:88:6d:60:df:36:4e:83:9f:8a:bf:de:5a:0b:7b:ba:
6f:30:73:fd:87:d8:6a:c9:aa:50:74:b7:b9:7a:02:ab:32:cf:
6f:78:2f:ca:6c:e4:bb:4d:28:2c:2a:aa:fa:98:bf:35:8c:b5:
ad:90:7a:b0:c9:1c:ec:31:0b:74:3b:c6:7c:14:43:65:4a:b8:
cf:87:71:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 18:21:13 2024 by rpki-client on console-fra.rpki-client.org