Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/chprP17V-3TQNRIhZRPEyB7-Hlw.cer
File: chprP17V-3TQNRIhZRPEyB7-Hlw.cer (raw, json)
Hash identifier: ifXNs6tnqr6yzDbrAFkPTPeyadRzUyZHt9v1yZnQuPs=
Subject key identifier: 72:1A:6B:3F:5E:D5:FB:74:D0:35:12:21:65:13:C4:C8:1E:FE:1E:5C
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC64B428A35A2F35CF3F013601A035C8C
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/b0/af310c-2bd8-4efd-88e4-80c31db20ac5/1/chprP17V-3TQNRIhZRPEyB7-Hlw.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/b0/af310c-2bd8-4efd-88e4-80c31db20ac5/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 18:31:10 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 21087
IP: 91.210.160.0/22
IP: 178.217.64.0/21
IP: 194.176.114.0/24
IP: 195.93.128.0/23
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4b:42:8a:35:a2:f3:5c:f3:f0:13:60:1a:03:5c:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 18:31:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=721a6b3f5ed5fb74d03512216513c4c81efe1e5c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:d9:af:ff:ab:47:27:7a:aa:80:51:61:3c:71:
48:1d:97:65:12:23:8c:23:7d:eb:b1:f0:f5:2b:a8:
56:d2:9b:f6:35:ab:03:f9:45:6d:bd:9b:08:c4:ab:
9b:d0:23:fb:6a:3e:cd:62:a6:96:03:eb:36:b4:e5:
db:7f:f3:a3:dd:5a:74:71:c1:bb:f2:7b:8a:24:04:
8f:ec:46:0d:c8:cc:b9:4a:75:3f:81:16:05:d2:b9:
16:70:c6:3a:32:a0:8f:e2:66:3c:11:2a:fe:96:da:
71:d8:db:0a:2e:63:c0:42:8d:24:db:5e:38:66:4c:
98:4f:47:17:f7:71:2a:25:a3:84:7a:2b:34:98:95:
b0:4d:b6:c9:6b:3e:35:48:43:75:e7:55:43:f8:62:
80:77:60:a8:f4:80:7e:a1:6c:9e:aa:5a:e0:d8:4c:
e8:cf:a1:6b:ee:93:2a:ae:a0:02:27:ec:fd:7a:86:
d9:f5:36:64:a9:69:57:68:7c:d3:15:54:dd:a1:5b:
05:6b:61:3d:a1:d6:34:94:fd:de:71:31:7b:21:08:
8c:c9:a7:ba:c7:b5:fb:3c:07:81:ca:55:82:e2:3c:
58:a6:96:6e:ac:cb:5b:f9:19:c2:3e:d9:09:e0:d1:
e7:40:54:72:7d:ca:f7:ac:b3:fb:b6:02:7d:4b:43:
3d:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:1A:6B:3F:5E:D5:FB:74:D0:35:12:21:65:13:C4:C8:1E:FE:1E:5C
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/af310c-2bd8-4efd-88e4-80c31db20ac5/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/af310c-2bd8-4efd-88e4-80c31db20ac5/1/chprP17V-3TQNRIhZRPEyB7-Hlw.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.210.160.0/22
178.217.64.0/21
194.176.114.0/24
195.93.128.0/23
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
21087
Signature Algorithm: sha256WithRSAEncryption
03:42:92:cc:04:65:3b:c2:cb:6e:83:3e:ab:a9:5a:22:5a:8d:
a2:2e:ff:ce:4a:91:55:18:55:d7:12:08:fc:07:3c:c6:6d:d5:
7d:aa:11:b4:01:a8:f2:b7:69:78:80:01:40:d9:69:c9:dc:6f:
e0:b7:12:80:84:4b:69:26:d6:26:15:75:34:be:29:9f:e5:a0:
e3:5e:24:49:82:12:b4:ee:e5:46:a4:41:17:3e:fd:8c:0c:f8:
e1:00:61:d0:cb:72:fd:8e:47:09:e3:a1:d1:51:71:9f:1a:23:
8f:ac:69:e4:00:5d:c1:8a:7e:da:a3:cd:f9:2c:bb:fd:cc:84:
71:3f:35:c9:0d:19:3d:d4:21:6e:b6:fa:20:fe:01:28:e8:05:
18:d7:ad:e3:3e:4f:86:1a:54:d6:2f:4f:16:55:a6:e8:8b:41:
7d:38:f1:16:be:a8:ed:a4:de:1c:13:15:52:f9:7e:db:a7:c2:
1b:e0:a6:4e:cb:7e:1b:dc:d0:fa:c6:7e:fd:5a:be:22:18:34:
da:25:27:13:4c:2e:91:be:55:77:f8:57:6a:c9:c7:2c:28:90:
4a:5a:3d:ee:d6:31:d6:73:c9:73:50:66:93:5c:97:ad:12:a0:
1b:3c:bd:22:52:11:4f:2f:82:93:c5:93:5d:2d:a6:e8:5d:be:
5b:aa:ed:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:59:52 2024 by rpki-client on console-fra.rpki-client.org