Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/curcen7OR31fTXdyQ7YPK7u3VgM.cer
File: curcen7OR31fTXdyQ7YPK7u3VgM.cer (raw, json)
Hash identifier: p7mUdGnL9U9U6LgyN+EEx8D3sUtSwyNSMdT9Zl3jgIM=
Subject key identifier: 72:EA:DC:7A:7E:CE:47:7D:5F:4D:77:72:43:B6:0F:2B:BB:B7:56:03
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC5DC4F5AD0A7D3DCC7B67600D2A381DB
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 16:29:58 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 34968
IP: 46.38.192.0/19
IP: 89.207.24.0/21
IP: 95.155.184.0/21
IP: 193.238.240.0/22
IP: 2a01:710::/32
IP: 2a0f:4880::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 15:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:dc:4f:5a:d0:a7:d3:dc:c7:b6:76:00:d2:a3:81:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 16:29:58 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=72eadc7a7ece477d5f4d777243b60f2bbbb75603
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:39:92:af:b4:b7:1a:11:c7:3a:49:ad:7b:fa:
62:d7:a3:f1:71:3a:3b:3b:49:9e:dc:1a:8c:78:c3:
50:e6:e5:fd:15:1e:4a:10:0a:b1:9a:00:a7:5a:cd:
6d:69:6f:23:cd:db:6d:4f:1f:1f:2e:9b:6a:f3:b8:
82:d3:05:f1:6f:6c:a0:76:d2:a1:b3:98:52:e6:ec:
70:fb:ef:be:38:a5:20:fb:a5:76:40:d9:a1:59:73:
74:98:11:88:65:c8:c4:a2:48:9d:05:75:bd:a9:aa:
78:52:9d:85:d3:18:3e:d6:20:8b:88:28:f3:cb:d2:
11:e4:f6:68:38:db:00:58:5a:ee:98:01:43:71:8b:
4c:e7:53:f8:5c:b2:fa:af:8d:3e:76:8d:63:ea:cf:
2a:c4:22:b9:f3:c4:bc:ca:4a:fa:75:c7:d8:c0:0e:
92:fb:a6:d5:6f:4f:4e:80:04:5a:11:6f:44:74:0c:
82:95:9a:d9:35:dc:32:86:ef:7e:94:ee:43:e6:33:
8f:ab:b2:f0:cb:79:64:9b:1a:94:53:04:c4:93:5b:
c5:77:de:bc:c6:0d:d4:f8:70:14:1b:2d:6d:be:4c:
e5:89:d8:b2:4c:35:be:90:43:4a:42:a8:ee:ff:4d:
b0:77:d5:ee:e4:13:69:f8:c9:1c:99:6a:6c:62:a8:
74:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:EA:DC:7A:7E:CE:47:7D:5F:4D:77:72:43:B6:0F:2B:BB:B7:56:03
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.38.192.0/19
89.207.24.0/21
95.155.184.0/21
193.238.240.0/22
IPv6:
2a01:710::/32
2a0f:4880::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
34968
Signature Algorithm: sha256WithRSAEncryption
55:c2:13:dc:72:06:e3:7c:0f:97:ba:b8:b4:e8:0e:31:53:60:
d2:1b:f0:e4:40:86:bf:ca:9d:c6:0a:f5:f1:98:6b:bf:89:5d:
fc:2d:34:8a:05:df:cd:c7:79:86:bb:14:c2:c7:79:6d:d7:f2:
88:ef:f0:1a:2a:27:11:4e:6d:50:61:f8:5b:6d:0a:d3:8e:20:
bb:0f:ca:b9:6a:8a:dd:38:58:ba:64:79:0b:4b:d1:23:69:f0:
f8:45:15:5b:b9:a9:db:db:c5:8e:d7:eb:5e:b0:9a:7b:ff:ed:
34:5a:4b:4b:fa:ee:42:95:c0:0c:28:55:34:3d:40:57:1a:ee:
9f:0f:53:55:9d:d2:04:ab:cb:ef:83:5d:36:50:d4:3f:5c:6b:
70:b0:6b:d9:f4:a4:33:23:fa:56:24:79:21:82:1b:f7:6c:8d:
db:a7:e7:1e:d9:f9:90:a2:4d:65:a9:7a:63:80:0b:23:71:45:
c1:dc:30:15:d4:72:55:3d:1e:a3:04:ad:f2:85:55:b5:9c:bd:
1d:51:c3:fe:52:4c:8e:88:1e:6f:e4:5e:b2:f7:68:4c:69:94:
04:13:eb:1f:31:73:13:af:6f:90:d7:70:72:f8:57:5a:ae:06:
0a:6e:ed:b6:dc:f7:d3:da:09:5f:ba:fc:0c:ab:f5:53:6e:04:
8c:c1:69:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 19:19:30 2024 by rpki-client on console-fra.rpki-client.org