Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/agTKSpZhYxxOxhWjptFdIgMNz0k.cer
File: agTKSpZhYxxOxhWjptFdIgMNz0k.cer (raw, json)
Hash identifier: YB9BEHDTaEHyz7bmiwaEImT+sAzQ977hJiVgRjpXJgg=
Subject key identifier: 6A:04:CA:4A:96:61:63:1C:4E:C6:15:A3:A6:D1:5D:22:03:0D:CF:49
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CCA29FFDE331909B096941CE73840ABF4
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/38/fa4e69-575e-46eb-b9c3-8113da67ef75/1/agTKSpZhYxxOxhWjptFdIgMNz0k.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/38/fa4e69-575e-46eb-b9c3-8113da67ef75/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 12:33:19 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 59586
IP: 91.240.252.0/23
IP: 185.148.140.0/22
IP: 2001:67c:1ba4::/48
IP: 2a07:6000::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 15:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:29:ff:de:33:19:09:b0:96:94:1c:e7:38:40:ab:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 12:33:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6a04ca4a9661631c4ec615a3a6d15d22030dcf49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:05:4e:21:b4:f6:17:27:43:1b:6e:c8:1e:48:
51:e4:65:60:80:97:a4:7f:32:39:66:bf:f0:59:cc:
01:0f:0e:71:24:09:25:af:00:ef:17:cc:99:8c:17:
49:1c:e7:c5:33:fb:6e:a4:90:4c:10:91:55:ac:bd:
64:01:ca:7c:0a:12:b9:7d:cc:97:d0:79:fc:f8:b9:
2c:04:b4:6e:29:20:4e:13:98:44:52:e1:bf:fd:89:
2a:88:b7:53:b0:82:5d:3a:d0:e0:04:c7:71:e6:08:
1c:d0:2d:e4:51:b9:1e:93:fb:9c:4e:65:bb:04:1b:
64:61:8f:15:95:1d:14:80:16:e1:63:9c:e3:f9:cc:
42:b1:ee:86:b1:96:34:8a:b1:2c:6e:98:5d:0a:38:
56:ef:4b:cf:12:24:87:16:cc:84:6f:9e:b3:9b:e6:
4c:fd:41:f1:4d:59:a5:98:75:8b:f7:57:fb:b8:ad:
0c:ef:c7:2c:2b:26:68:d8:19:51:95:18:06:01:68:
53:00:45:02:5c:f3:ff:7d:87:5b:5f:69:e6:a6:95:
d9:c5:5f:d5:ce:96:9d:ab:da:45:60:b3:29:68:bd:
ae:70:1b:e2:c6:b0:c4:4f:8f:59:91:6f:87:ea:f9:
22:37:02:94:f9:70:98:3e:68:4b:eb:10:88:33:90:
e8:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:04:CA:4A:96:61:63:1C:4E:C6:15:A3:A6:D1:5D:22:03:0D:CF:49
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/fa4e69-575e-46eb-b9c3-8113da67ef75/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/fa4e69-575e-46eb-b9c3-8113da67ef75/1/agTKSpZhYxxOxhWjptFdIgMNz0k.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.240.252.0/23
185.148.140.0/22
IPv6:
2001:67c:1ba4::/48
2a07:6000::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
59586
Signature Algorithm: sha256WithRSAEncryption
18:57:14:04:0f:46:c4:ab:3e:df:98:54:67:e5:3d:ab:06:08:
56:7f:97:e7:c3:d0:79:52:b2:78:5b:bb:21:10:4b:3e:2a:d0:
a4:e2:70:bb:48:e8:3d:15:55:2c:c3:4c:15:d0:05:dd:6b:24:
f8:d8:38:73:51:a5:68:f9:71:4c:6d:2c:8d:97:cc:40:61:c8:
ff:1f:70:04:fa:05:ab:2b:5b:f2:22:36:ec:f2:bd:96:ff:65:
ad:25:ff:da:14:3d:75:08:33:23:bd:4c:d6:ed:fa:fd:bb:9f:
c5:e5:b9:6c:99:c6:d0:db:c6:27:02:68:85:b9:27:14:3f:3f:
6a:8a:30:d7:d9:0a:05:f8:cd:5d:5a:9e:1c:e7:0a:3c:bc:2f:
c9:8b:ea:c1:53:87:ee:29:19:10:42:fc:a8:0c:39:5c:0c:f6:
ce:29:41:3d:0b:97:c3:f1:e0:62:33:16:7c:a1:54:62:71:11:
52:bf:31:a8:4c:12:73:2c:26:07:62:48:6f:44:c4:50:24:cc:
0d:57:40:3f:27:d1:12:55:b8:3b:6d:f4:d3:a4:2a:69:2a:d1:
a5:61:7f:3f:00:ab:ae:ec:0c:17:71:f4:8c:3a:46:9e:de:78:
1a:60:49:99:ae:4c:14:b5:e9:c4:9d:fe:e0:a5:ab:ee:fd:55:
ae:d9:36:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 19:16:40 2024 by rpki-client on console-fra.rpki-client.org