Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a-OcMb6T9W5jvSbVscBy3HdTGeY.cer
File: a-OcMb6T9W5jvSbVscBy3HdTGeY.cer (raw, json)
Hash identifier: 2ZXdcB3LhO+CLVS2y0ILPXuzO0K2NH/tnCaHR9NzPAI=
Subject key identifier: 6B:E3:9C:31:BE:93:F5:6E:63:BD:26:D5:B1:C0:72:DC:77:53:19:E6
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0190EF9D8FC43AD1D86A4B4D98B991F1750B
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/7f/03c9d3-0e25-4cc7-96a3-117bf42941ca/1/a-OcMb6T9W5jvSbVscBy3HdTGeY.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/7f/03c9d3-0e25-4cc7-96a3-117bf42941ca/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Fri 26 Jul 2024 15:16:38 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 51597
IP: 91.219.80.0/22
IP: 176.116.192.0/21
IP: 2001:678:318::/48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:ef:9d:8f:c4:3a:d1:d8:6a:4b:4d:98:b9:91:f1:75:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jul 26 15:16:38 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6be39c31be93f56e63bd26d5b1c072dc775319e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:b5:ec:9e:16:c7:19:6b:77:e4:19:cb:e5:e9:
71:a7:33:b2:90:9e:8f:b4:05:cc:d0:d7:0a:a8:10:
07:83:0c:bb:82:6d:d9:57:f6:bb:64:97:b2:4d:53:
a0:bd:95:ae:55:3e:c3:3e:e6:a8:2c:34:6e:fd:48:
fe:e2:74:b0:db:1f:51:dd:ef:df:61:36:0a:b4:6f:
ac:c6:b3:fe:2d:64:85:8b:bc:b5:f6:f8:e5:e1:0c:
6d:54:18:23:03:b4:88:be:1d:17:b0:0e:3e:d3:b2:
f1:a6:e3:c5:97:45:43:bf:0c:78:47:38:05:db:b0:
11:f5:41:47:5f:77:d8:40:37:5c:49:ef:19:47:b4:
80:ef:45:27:b4:81:4d:87:bc:d1:00:db:87:9c:09:
0a:99:63:0d:d0:ad:1e:b5:c2:f2:32:56:de:50:0f:
41:48:07:b1:b1:c0:85:a5:08:2c:f9:cf:dd:2e:b4:
74:34:ce:74:8b:59:aa:b6:68:f0:9c:0d:cf:af:f4:
09:57:f2:e6:74:d6:d1:9b:b4:bf:e6:b7:cf:f8:a0:
cc:94:a2:e1:df:39:11:a4:9e:67:d9:b9:18:08:06:
e4:09:16:35:ff:0a:1f:31:42:1a:27:8a:a1:cd:1a:
23:e8:82:35:66:c8:bd:d7:ab:45:90:f8:14:4f:6b:
d4:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:E3:9C:31:BE:93:F5:6E:63:BD:26:D5:B1:C0:72:DC:77:53:19:E6
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/03c9d3-0e25-4cc7-96a3-117bf42941ca/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/03c9d3-0e25-4cc7-96a3-117bf42941ca/1/a-OcMb6T9W5jvSbVscBy3HdTGeY.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.219.80.0/22
176.116.192.0/21
IPv6:
2001:678:318::/48
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
51597
Signature Algorithm: sha256WithRSAEncryption
af:c1:c0:9b:52:71:f7:07:1a:ad:c3:77:d0:3f:ab:93:ed:f5:
a6:50:18:00:ff:37:a4:5e:03:62:a8:5f:f0:62:a4:a6:7e:00:
a9:11:f2:8b:93:eb:ea:f4:b8:90:aa:38:9c:44:7c:4f:f7:06:
57:6f:53:d2:ae:6f:33:bc:51:a5:2d:44:75:e4:e4:7f:4c:fd:
65:c2:a3:f1:54:a9:db:ea:87:bc:5f:e5:7d:14:9d:5f:8f:e4:
4f:86:39:0c:cd:ad:a9:6c:73:70:ed:55:5b:13:02:31:dc:f8:
8c:59:0b:5c:8f:cb:d2:01:e2:7f:89:40:d5:a9:d4:f0:73:da:
27:8b:ee:d7:33:21:f4:bb:69:3b:8c:77:61:ec:39:31:52:dc:
fb:17:97:21:a0:10:8c:74:c8:38:61:3b:7a:44:da:36:e6:c5:
ac:04:1f:42:b4:e6:7a:37:9d:ca:9e:4c:5a:e8:8a:4c:1a:eb:
31:e1:33:6c:9f:e5:2e:9d:3d:15:60:f4:13:9c:87:30:bd:8a:
5b:09:24:21:41:6c:93:6d:c4:9e:32:ce:ea:59:53:ba:0d:6d:
06:2a:3c:ec:a7:c3:d3:2f:2f:57:18:96:76:23:0b:0c:76:5a:
6d:b0:7a:b7:d8:10:34:57:0a:97:ae:c6:20:0a:db:e8:f3:9b:
0d:0e:6d:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 26 19:31:41 2024 by rpki-client on console-fra.rpki-client.org