Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dLM_sg3VV80LFO3-EIgPDg0hxSk.cer
File: dLM_sg3VV80LFO3-EIgPDg0hxSk.cer (raw, json)
Hash identifier: 9cqVGzAy8jjcLtWfZs0aNky7QIz9IOU6BRwuh/LCmiI=
Subject key identifier: 74:B3:3F:B2:0D:D5:57:CD:0B:14:ED:FE:10:88:0F:0E:0D:21:C5:29
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC8DEFD4FE4A67DD3FB89759204D284F9
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/8a/f6ee9d-756f-437e-bc03-e703e94b7beb/1/dLM_sg3VV80LFO3-EIgPDg0hxSk.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/8a/f6ee9d-756f-437e-bc03-e703e94b7beb/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 06:31:46 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 60232
AS: 199484
IP: 37.75.8.0/21
IP: 185.28.0.0/22
IP: 195.142.0.0/22
IP: 195.142.104.0/21
IP: 195.142.132.0/22
IP: 2a03:c040::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:de:fd:4f:e4:a6:7d:d3:fb:89:75:92:04:d2:84:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 06:31:46 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=74b33fb20dd557cd0b14edfe10880f0e0d21c529
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:12:9c:14:c9:f7:48:8b:1d:29:8f:fc:ba:04:
b6:4c:a7:18:93:73:19:4f:64:30:33:cb:2b:b8:f4:
21:66:2a:7f:e3:b0:ee:93:53:00:50:d7:d1:cd:0c:
89:ed:55:98:95:0f:cc:1b:0a:d3:6e:05:54:77:03:
33:db:bb:3d:5f:50:57:49:77:48:75:69:e8:ef:79:
de:7f:73:82:7b:8d:76:4d:d2:6a:c5:1b:94:38:84:
2f:d7:48:f1:e2:95:8c:c0:5e:a9:ed:b1:9e:f3:18:
14:3b:03:39:52:2f:d1:40:6f:19:85:1f:9b:fd:b3:
f3:0e:a6:74:9b:e8:af:4c:16:fd:47:a2:cf:79:14:
08:5a:b7:cc:81:87:6f:82:ef:56:83:9a:49:6a:24:
7e:70:d2:dd:9b:e1:74:5b:24:1d:ad:42:8d:fd:55:
f6:3e:52:75:aa:3c:22:a2:67:d1:d9:29:b8:72:91:
8c:7c:b0:98:26:9a:20:05:22:c6:05:be:a2:67:2b:
13:76:e1:16:3c:24:8b:3b:09:3f:be:6a:ca:4c:0c:
f6:9f:0c:60:73:6f:da:f8:06:47:ca:c2:8c:eb:e4:
e1:f0:2c:de:27:af:6c:97:ec:01:17:df:73:e0:9a:
d0:31:df:48:43:9d:3d:73:ae:46:d5:a7:b5:62:15:
94:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:B3:3F:B2:0D:D5:57:CD:0B:14:ED:FE:10:88:0F:0E:0D:21:C5:29
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/f6ee9d-756f-437e-bc03-e703e94b7beb/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/f6ee9d-756f-437e-bc03-e703e94b7beb/1/dLM_sg3VV80LFO3-EIgPDg0hxSk.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.75.8.0/21
185.28.0.0/22
195.142.0.0/22
195.142.104.0/21
195.142.132.0/22
IPv6:
2a03:c040::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
60232
199484
Signature Algorithm: sha256WithRSAEncryption
a1:91:fc:4c:3f:ba:fc:c5:e9:da:b5:cc:95:54:44:07:ed:b6:
0f:52:7b:f6:08:bc:2f:8e:35:09:48:8e:26:0d:32:67:53:01:
f9:71:2f:27:29:54:b5:82:ad:23:33:22:c6:90:ee:8c:e9:0f:
ab:b6:48:7a:6d:40:02:57:f9:23:f9:f6:85:c6:94:40:b0:85:
4e:63:cf:01:3e:cf:ac:78:1b:a2:99:10:34:3f:d9:d8:a4:e5:
ae:b9:9a:cb:d2:7e:ad:6a:7d:ac:9c:8b:7e:1c:2d:d5:0c:29:
99:4a:1f:36:15:49:3e:aa:8b:ba:43:ca:dd:de:50:8a:19:ce:
19:ad:b9:32:33:5a:3b:0a:27:00:58:eb:83:aa:b1:95:a2:32:
f7:ec:98:b3:12:17:47:dc:70:a8:c8:f7:42:9b:ac:6b:0a:7f:
ff:64:6d:18:cf:c4:af:6b:90:11:51:1c:59:d8:c4:8d:fd:ed:
66:bc:d7:37:29:c4:8b:33:6d:14:50:2a:7f:69:f5:02:d6:2f:
34:a8:47:1d:ca:56:37:3a:96:b0:07:34:06:f8:d3:36:57:8f:
7d:42:82:9d:a5:9a:48:a6:28:d9:7e:7c:b6:d5:51:f9:b6:29:
71:63:c2:62:47:4e:2b:34:17:1b:92:de:b0:ff:3f:3b:15:be:
05:14:84:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 02:24:19 2024 by rpki-client on console-ams.rpki-client.org