Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/_pLvNTIb-Pcic0v_nfpj-9DwaQo.cer
File: _pLvNTIb-Pcic0v_nfpj-9DwaQo.cer (raw, json)
Hash identifier: FldRAwwasZ4vNmW0KkPovv8FHKfnghIm+JmDyCx3Ovg=
Subject key identifier: FE:92:EF:35:32:1B:F8:F7:22:73:4B:FF:9D:FA:63:FB:D0:F0:69:0A
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC794ABD65DC0D37D26E1148955154D91
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/12/d2725d-8001-41f1-80e5-a9eef294ac34/1/_pLvNTIb-Pcic0v_nfpj-9DwaQo.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/12/d2725d-8001-41f1-80e5-a9eef294ac34/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 00:30:58 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 212559
IP: 5.1.42.0/24
IP: 91.243.118.0/24
IP: 193.107.15.0/24
IP: 2a10:78c0::/29
IP: 2a10:ef40::/29
IP: 2a11:2900::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:94:ab:d6:5d:c0:d3:7d:26:e1:14:89:55:15:4d:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 00:30:58 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fe92ef35321bf8f722734bff9dfa63fbd0f0690a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:f7:4a:78:13:1f:b7:f4:2c:53:af:9f:7c:ea:
e0:30:5a:95:b5:4c:b2:a2:68:43:14:b0:f1:6f:b8:
0c:e6:5b:6b:8c:9f:7d:3d:a0:d4:76:5a:5b:27:af:
f3:00:2a:80:db:5c:10:f9:f1:ac:bd:bf:a5:b5:57:
69:e9:7f:ff:68:29:85:0c:3f:59:d4:2e:f7:27:c0:
ce:1e:90:b8:d3:e9:5b:08:de:32:79:67:d5:3e:75:
a1:e0:a3:ef:fe:b0:db:69:a7:1f:eb:28:b8:9d:ca:
b7:5d:61:12:e4:3f:5e:03:5b:74:ac:08:35:fb:95:
f2:f0:1a:36:ed:ac:22:0e:b6:9d:dd:6f:79:41:2f:
46:7b:de:ca:e6:06:04:32:1f:e4:8c:84:68:d2:dd:
b3:69:64:b2:a8:d2:34:7f:c5:b9:1c:42:4d:bf:0a:
ef:db:54:24:d4:1a:55:4a:d2:30:4d:d7:01:42:59:
d4:72:1e:69:0f:75:2e:8c:ed:8e:15:65:fd:7f:9d:
c8:65:9d:1c:3b:8b:21:b2:53:c3:06:e6:34:90:60:
f7:63:f4:13:af:f0:28:c6:64:71:6c:e2:6e:ce:2a:
07:0d:55:55:b2:b2:43:9d:73:83:d1:ca:e8:a9:f3:
0b:19:e8:6e:22:18:41:fe:fd:09:52:6e:fb:0e:42:
27:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:92:EF:35:32:1B:F8:F7:22:73:4B:FF:9D:FA:63:FB:D0:F0:69:0A
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/d2725d-8001-41f1-80e5-a9eef294ac34/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/d2725d-8001-41f1-80e5-a9eef294ac34/1/_pLvNTIb-Pcic0v_nfpj-9DwaQo.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.1.42.0/24
91.243.118.0/24
193.107.15.0/24
IPv6:
2a10:78c0::/29
2a10:ef40::/29
2a11:2900::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
212559
Signature Algorithm: sha256WithRSAEncryption
7b:12:de:cc:77:41:c9:ae:04:7e:bc:e3:a7:f0:75:13:67:bb:
87:83:78:88:6f:e2:2a:a0:bc:33:fd:75:ea:1f:5b:77:72:77:
7c:53:fc:24:02:78:26:df:3b:42:f7:c6:13:bf:7b:6b:a3:64:
52:11:b5:17:cf:7c:f1:73:be:65:86:dc:93:65:95:b6:46:5d:
1f:24:75:b5:36:2e:91:bc:1d:71:5a:5a:78:36:5f:e0:8d:f2:
9b:66:a9:f1:8c:3d:74:83:98:e6:a1:58:cc:04:69:a3:42:2f:
aa:28:77:5b:e6:50:df:e5:77:65:b6:0e:3e:c5:55:fe:75:37:
11:87:ce:de:3f:14:17:0c:72:0e:45:d0:97:1b:14:7f:7f:23:
43:a0:3d:f4:9e:ba:96:c6:f6:d6:6a:8f:d4:a3:99:1c:0d:4b:
f8:c9:61:55:18:14:fe:5e:07:49:d8:c3:23:03:b7:f0:82:22:
f8:ef:6d:dd:11:6b:bc:ce:1e:3f:5b:21:76:02:86:1c:da:87:
3d:4f:fa:1a:da:3a:25:e3:6a:5f:bc:46:b1:14:c5:bf:9a:98:
d0:fd:e7:30:e9:5d:1d:23:ff:25:fd:53:77:38:c4:b3:c2:44:
a7:38:e2:28:5e:6f:f9:8a:55:a3:76:09:07:ab:f7:16:99:1f:
b4:85:42:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:11:12 2024 by rpki-client on console-fra.rpki-client.org