Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dI6Zox81gkAKtd-nd8YNFqyu3bM.cer
File: dI6Zox81gkAKtd-nd8YNFqyu3bM.cer (raw, json)
Hash identifier: 4tIGwWR6eeOAbKmY0+rO4LjXHUSanptu4onAfj0eXz0=
Subject key identifier: 74:8E:99:A3:1F:35:82:40:0A:B5:DF:A7:77:C6:0D:16:AC:AE:DD:B3
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC64AC1FC65F655A40D595AE99F9F3427
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/c4/437ae5-c2ab-4c71-9d06-fec6c2701eda/1/dI6Zox81gkAKtd-nd8YNFqyu3bM.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/c4/437ae5-c2ab-4c71-9d06-fec6c2701eda/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 18:30:37 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 41174
IP: 185.84.52.0/22
IP: 2a05:a140::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4a:c1:fc:65:f6:55:a4:0d:59:5a:e9:9f:9f:34:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 18:30:37 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=748e99a31f3582400ab5dfa777c60d16acaeddb3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:99:12:18:fa:fb:24:b1:f3:2a:83:1b:3f:91:
a8:10:4a:f8:4d:f3:06:bb:a1:de:15:8e:d2:8d:f9:
e7:81:76:45:97:de:9c:8e:e5:fc:a0:2c:48:6a:f5:
d2:7f:ea:1b:ed:e2:f0:9d:01:aa:de:da:36:66:17:
12:bd:d1:76:5c:71:ea:bf:a6:22:55:58:e5:92:6d:
b9:73:56:84:7a:42:e6:b0:16:04:69:b2:2b:a1:75:
b1:94:a2:4a:89:1a:37:d0:83:bd:73:6b:9b:af:4e:
bb:01:10:78:07:7d:ae:85:34:c5:1d:2c:c6:8b:0e:
d5:29:c6:23:f8:d3:33:32:2c:b9:1c:46:19:21:c6:
32:e0:38:9b:c5:07:60:eb:18:b1:54:e9:5b:02:a0:
d7:67:37:79:42:10:1b:4b:cb:ea:fd:84:55:2a:ac:
1c:90:37:8a:aa:e9:c6:81:0d:ad:26:2f:77:eb:09:
3c:5b:69:a3:69:15:ae:54:a1:03:a4:13:26:3c:01:
6d:f2:a4:68:47:d6:f2:55:37:95:bb:7d:e9:8e:58:
f6:f4:93:23:ff:66:34:2d:47:26:f8:6d:3f:ee:8a:
a4:b5:4a:b4:42:2f:9f:5b:69:91:ba:32:d4:82:aa:
b0:2b:b1:df:42:98:94:b2:9f:b0:98:15:75:94:c6:
b7:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:8E:99:A3:1F:35:82:40:0A:B5:DF:A7:77:C6:0D:16:AC:AE:DD:B3
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/437ae5-c2ab-4c71-9d06-fec6c2701eda/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/437ae5-c2ab-4c71-9d06-fec6c2701eda/1/dI6Zox81gkAKtd-nd8YNFqyu3bM.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.84.52.0/22
IPv6:
2a05:a140::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
41174
Signature Algorithm: sha256WithRSAEncryption
6a:0f:7b:05:b8:2d:71:5a:1e:e5:21:cd:bf:a8:54:16:6a:e5:
11:fd:29:da:1b:be:b4:76:0e:fe:a0:9c:95:0e:68:07:7e:8f:
3d:3e:8e:f0:02:19:36:a6:86:57:98:51:2d:a4:cc:6b:27:93:
1e:0d:e4:95:92:fc:af:aa:6b:99:e0:e9:7b:bc:c0:e9:b9:04:
06:69:a0:9a:ab:5c:81:78:ec:b2:99:f9:0a:38:68:3a:b4:57:
b1:c9:2b:2e:19:d4:3d:60:71:f3:8c:36:e4:f2:a1:be:5b:4f:
d2:ac:e7:d9:5d:d5:68:da:c0:5e:e2:2e:51:a9:66:e6:5c:a3:
49:43:c7:e7:b1:11:73:ca:14:f9:fc:26:f9:cd:d1:d9:c3:4d:
81:62:58:6c:e3:d8:4a:1f:a1:34:1f:21:f0:2d:f4:b4:6b:1d:
9d:ce:9d:6a:b1:a4:8a:73:19:b9:6f:2b:a3:52:02:eb:b9:f2:
5e:8a:31:56:06:4d:9f:8c:4d:f5:00:fa:0a:57:97:b1:6c:a5:
ef:4c:45:86:7a:f3:7b:b2:9e:42:a0:c6:68:fc:7c:05:c9:f1:
b2:13:57:ee:04:4f:a4:33:b4:6c:d0:f3:dd:f5:7e:72:b0:49:
61:63:da:16:86:af:d4:92:10:71:5e:99:ca:8a:a9:47:ab:6f:
8f:2f:8b:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:58:10 2024 by rpki-client on console-ams.rpki-client.org