Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aG1vVpUAwlBwthJPG4b2CVJnepM.cer
File: aG1vVpUAwlBwthJPG4b2CVJnepM.cer (raw, json)
Hash identifier: q0c5S97gT8XJFpS++WLFXsO/GnkpWdMKPLLGO1Zyodc=
Subject key identifier: 68:6D:6F:56:95:00:C2:50:70:B6:12:4F:1B:86:F6:09:52:67:7A:93
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC5DBEB76A101FAC9DD5A339A2B0F21D7
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/1b/2f5269-d433-47ed-bf1b-ab6fc4e0f1e0/1/aG1vVpUAwlBwthJPG4b2CVJnepM.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/1b/2f5269-d433-47ed-bf1b-ab6fc4e0f1e0/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 16:29:33 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 207881
IP: 91.237.208.0/24
IP: 91.237.215.0/24
IP: 91.238.1.0/24
IP: 91.238.18.0/24
IP: 2a0f:6940::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 28 Nov 2024 08:27:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:db:eb:76:a1:01:fa:c9:dd:5a:33:9a:2b:0f:21:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 16:29:33 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=686d6f569500c25070b6124f1b86f60952677a93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:d4:dc:b7:a0:ff:e6:fe:ef:0c:77:de:d8:97:
24:0e:59:3b:97:23:d6:99:3a:8d:de:be:f8:27:4a:
ba:5f:03:c1:9e:ac:cb:82:2e:ef:c8:c6:a2:c2:5b:
fa:03:06:9a:3d:f7:16:e1:99:9d:de:69:d1:1c:c7:
e5:a9:37:bf:e2:cb:16:6f:c2:00:89:b1:8c:92:9e:
18:cf:76:3b:c3:ab:70:7d:00:c0:05:9b:d1:c7:6d:
18:bb:ef:7f:ee:02:f0:ad:f1:06:4e:51:1b:05:1a:
7d:91:cd:0a:9a:a3:1a:68:b4:d3:f0:e9:97:5b:a0:
77:62:56:b2:04:96:ce:3d:77:42:52:e1:17:a8:fe:
bc:41:c4:4c:40:4f:08:47:64:fd:38:d7:aa:b0:78:
17:e9:c1:e3:ab:f5:d3:0e:d8:40:b5:89:3f:aa:47:
8e:c1:7b:aa:19:04:c3:40:b5:bd:d4:38:0a:2b:f0:
b7:b1:bb:4a:cd:06:d7:a2:aa:c9:2d:b6:63:20:bb:
dd:9d:ed:d6:85:34:bc:0b:67:6f:d2:9e:ab:fd:d5:
7a:9f:76:9b:3f:3e:54:60:f4:1f:c9:43:67:b3:7e:
d2:49:cd:03:cc:69:ae:af:ef:9b:06:47:24:85:f1:
91:d8:e2:1f:53:d3:6e:39:07:3e:fd:b5:23:f0:c0:
b3:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:6D:6F:56:95:00:C2:50:70:B6:12:4F:1B:86:F6:09:52:67:7A:93
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/2f5269-d433-47ed-bf1b-ab6fc4e0f1e0/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/2f5269-d433-47ed-bf1b-ab6fc4e0f1e0/1/aG1vVpUAwlBwthJPG4b2CVJnepM.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.237.208.0/24
91.237.215.0/24
91.238.1.0/24
91.238.18.0/24
IPv6:
2a0f:6940::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
207881
Signature Algorithm: sha256WithRSAEncryption
7f:87:48:23:54:dc:8b:27:d7:86:b7:5c:7f:53:cd:44:ad:5d:
ab:a1:8e:8a:e2:47:c9:6a:70:5a:23:17:3a:0e:ea:0e:80:94:
1b:69:f0:c5:8a:20:41:89:8b:11:0d:60:d5:20:39:9c:8f:7f:
eb:37:07:75:a0:07:ac:8a:49:cc:68:0a:9f:8f:28:4c:c9:c0:
7b:ea:12:48:f0:b8:b7:7c:ea:66:f6:52:3d:f8:ed:2d:ed:93:
0a:82:22:04:31:da:c4:b2:2a:e8:35:e4:73:e1:50:3f:b2:25:
ab:7a:82:dd:bc:21:c0:fb:84:bc:db:7a:40:ca:43:4f:46:2b:
51:80:a1:78:25:cb:8c:0a:b1:cd:e0:2b:4d:df:29:d9:cc:19:
c0:8e:50:59:9c:7f:34:df:69:ea:81:8c:e6:4d:d0:c8:93:e7:
f0:25:ce:2a:c0:55:b2:95:a0:30:1c:fd:13:a6:7d:81:80:1d:
c7:73:03:80:d7:5f:d3:15:ec:70:3b:04:b3:14:12:23:9d:73:
2e:a8:24:f4:45:69:de:9e:e6:53:8b:e5:32:a1:24:bf:e0:a1:
68:7e:d5:21:dc:62:d5:12:9f:59:c2:54:22:69:b7:8c:83:4a:
ff:bb:93:12:1e:72:5c:8b:33:fc:e1:4f:1c:a2:d5:3b:02:10:
89:f2:18:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 14:49:08 2024 by rpki-client on console-fra.rpki-client.org