Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2XsEgFPkR9yBe7LwvyBi5s1cjw.cer
File: c2XsEgFPkR9yBe7LwvyBi5s1cjw.cer (raw, json)
Hash identifier: CwKjMtZSR6kOWgEznqnPua1wAhnIa2gZq6ELDYxomdA=
Subject key identifier: 73:65:EC:12:01:4F:91:1F:72:05:EE:CB:C2:FC:81:8B:9B:35:72:3C
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01932606CB3FD1F45F421A0C2B79F45034B8
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/55/9f63ac-b1e4-4dbd-9996-5a19afdb06a7/1/c2XsEgFPkR9yBe7LwvyBi5s1cjw.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/55/9f63ac-b1e4-4dbd-9996-5a19afdb06a7/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 13 Nov 2024 14:56:39 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 216364
IP: 116.214.120.0 -- 116.214.122.255
IP: 116.214.124.0/24
IP: 2001:3300::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 11:39:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:26:06:cb:3f:d1:f4:5f:42:1a:0c:2b:79:f4:50:34:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Nov 13 14:56:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7365ec12014f911f7205eecbc2fc818b9b35723c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:56:a9:78:4f:aa:96:f7:17:ff:e2:d4:30:de:
1f:90:72:4d:42:1e:92:25:77:6e:a7:3b:b8:21:47:
45:a6:aa:9c:e6:63:86:2e:4b:56:98:40:13:06:81:
dc:01:07:e7:d1:78:66:39:cf:96:11:d2:ac:25:8c:
6e:c4:dc:62:eb:f8:2f:e0:fb:96:48:09:c6:32:d5:
55:a1:7d:7e:58:44:48:6e:38:e3:8b:7c:8d:3c:20:
2e:21:02:6f:ab:91:08:84:27:90:37:1f:12:1c:a1:
82:da:38:f1:41:aa:91:ce:f7:12:98:29:c8:c7:4f:
8a:00:e9:95:78:71:1d:60:22:60:5e:af:d7:20:75:
4b:aa:14:2b:75:a9:66:36:59:05:f9:0f:58:61:34:
45:26:26:9a:b2:69:f8:14:6b:81:da:5f:ac:ac:56:
3c:1f:b7:23:e3:fe:01:37:27:4f:6a:69:ff:b4:dc:
37:0d:b8:de:1d:e6:e1:70:e4:f8:f2:80:40:6e:d6:
18:5f:73:fe:91:dc:eb:96:f2:c9:9e:b9:9d:b3:f6:
3e:25:62:f5:db:ab:4a:ab:07:37:47:10:bd:14:96:
4f:a2:68:74:84:06:fd:e5:11:0f:0c:e7:b1:f3:bd:
98:9d:72:ad:93:eb:7a:a6:c4:4e:6b:e8:1a:c3:76:
5f:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:65:EC:12:01:4F:91:1F:72:05:EE:CB:C2:FC:81:8B:9B:35:72:3C
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/9f63ac-b1e4-4dbd-9996-5a19afdb06a7/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/9f63ac-b1e4-4dbd-9996-5a19afdb06a7/1/c2XsEgFPkR9yBe7LwvyBi5s1cjw.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
116.214.120.0-116.214.122.255
116.214.124.0/24
IPv6:
2001:3300::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
216364
Signature Algorithm: sha256WithRSAEncryption
6f:a6:bf:d4:a0:87:77:4c:24:77:94:20:7f:c1:65:27:79:1a:
03:fd:69:84:ed:4e:1a:a7:1a:6c:5e:b5:0b:9f:11:2b:d6:99:
d3:e8:7c:80:42:92:a3:59:f9:28:28:36:b6:4b:4a:15:b1:de:
88:ce:b8:3d:ac:04:57:37:01:65:a4:52:b6:c8:d1:0e:b1:47:
60:04:5b:22:d3:79:64:bd:6c:53:b7:a6:c8:2e:d7:d0:b4:18:
69:b2:95:82:7a:fc:fd:93:85:62:85:04:1b:4c:a3:1f:1e:a0:
74:ee:2a:87:c8:1c:54:bd:2e:7a:e3:b4:80:13:f3:43:45:fe:
4d:45:b2:c2:26:48:b9:b8:ac:04:4b:aa:89:f8:11:bb:95:bc:
d1:49:96:82:39:54:91:f8:3d:8f:e0:73:82:36:26:48:f4:05:
d9:ea:30:bd:b2:3f:cc:a9:ac:1f:f6:13:b2:38:c5:1a:e9:ee:
e8:98:20:9d:27:de:49:44:c0:9e:e6:dc:c9:da:7d:ff:8c:b9:
0b:17:bc:66:1a:69:de:43:fe:d6:2f:85:b9:a8:e6:9d:14:32:
7b:e9:82:f2:c7:f2:42:d9:d9:2d:0e:8f:67:74:ab:17:31:d3:
4a:fa:20:09:2b:f2:62:fa:85:42:5e:64:fe:74:fa:9b:53:7f:
8b:65:5f:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 14:09:40 2024 by rpki-client on console-fra.rpki-client.org