Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d_u84sIID4H1oPmPJ5Ipgm3khQs.cer
File: d_u84sIID4H1oPmPJ5Ipgm3khQs.cer (raw, json)
Hash identifier: Fe2MSvU60wMfh36c/JzUJWS51Bd7dynVGT+642ZrTlM=
Subject key identifier: 77:FB:BC:E2:C2:08:0F:81:F5:A0:F9:8F:27:92:29:82:6D:E4:85:0B
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC6B7BF6CA458C76220E8FF677425DC31
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/f9/1ed739-2754-440f-9546-3aa27df47521/1/d_u84sIID4H1oPmPJ5Ipgm3khQs.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/f9/1ed739-2754-440f-9546-3aa27df47521/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 20:29:40 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 42181
IP: 194.0.160.0/24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b7:bf:6c:a4:58:c7:62:20:e8:ff:67:74:25:dc:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 20:29:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=77fbbce2c2080f81f5a0f98f279229826de4850b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:f2:49:79:6a:19:40:da:e7:82:af:35:9c:dc:
35:ea:27:66:ef:fa:fe:5d:2a:4f:75:04:33:9b:04:
00:76:3a:e3:51:35:ba:00:f9:1f:3e:c5:52:c3:d3:
ee:0b:25:3b:6b:ee:08:70:91:ad:c3:ed:fa:d4:4e:
1b:e2:de:c6:3b:4f:3d:42:52:7b:a3:8d:49:b6:9c:
d6:07:3c:57:e0:3b:c4:f1:55:e7:d5:45:63:b2:ba:
0d:0e:04:30:f7:05:54:e0:63:2a:36:22:50:36:93:
67:d0:ec:31:16:c5:cd:2a:2b:a4:6e:28:3f:96:83:
ef:79:ef:0f:7f:b7:49:16:14:98:2e:c9:e6:f6:16:
3a:70:24:be:96:11:0c:44:5e:96:68:7f:73:a6:17:
a2:b7:12:34:18:c5:53:1c:2c:b0:40:78:96:7e:f0:
61:a6:00:63:df:f9:d1:f1:e3:71:cf:91:20:ac:4f:
b4:7e:a4:7c:b1:a6:be:d1:db:fa:82:d9:8a:f4:da:
85:9c:c7:79:e5:ad:8b:36:7f:4d:0a:29:84:15:6b:
15:4d:bb:14:17:23:4c:c3:b2:6e:8d:88:92:f2:32:
30:39:44:6b:fe:e7:e1:0a:10:3e:f4:89:d3:9e:7e:
df:f2:c9:0a:c4:a5:32:3b:09:91:70:84:5d:8c:98:
e0:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:FB:BC:E2:C2:08:0F:81:F5:A0:F9:8F:27:92:29:82:6D:E4:85:0B
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/1ed739-2754-440f-9546-3aa27df47521/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/1ed739-2754-440f-9546-3aa27df47521/1/d_u84sIID4H1oPmPJ5Ipgm3khQs.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.0.160.0/24
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
42181
Signature Algorithm: sha256WithRSAEncryption
70:42:d9:4c:09:f0:7e:1f:cc:eb:d2:b6:99:56:f1:5f:ea:5e:
7e:31:c6:b6:09:d5:a4:61:4a:71:50:91:9e:b9:55:c6:be:1f:
d8:68:27:37:32:2a:81:53:aa:fb:6b:a2:4c:2a:c4:a7:1f:85:
24:aa:d7:ac:81:74:53:10:43:6a:ed:7e:d6:81:7b:9c:8d:66:
c7:a5:e0:19:ba:6d:7f:9f:b8:3e:47:6a:a9:5a:e1:b5:a2:80:
c6:f9:4c:35:64:00:95:1f:15:57:df:38:23:8e:b8:be:23:31:
21:ee:49:3c:91:6e:c2:7d:71:85:5a:cf:0c:b0:5c:b4:1a:e2:
ae:3d:31:cd:bd:fa:8f:d2:49:69:5e:d6:70:58:b9:80:15:43:
ee:a9:d9:cd:0f:1b:e4:47:f2:40:ae:d8:b7:63:d5:39:93:4d:
94:de:b4:b4:6f:78:d1:c3:80:40:12:78:f6:69:60:d7:50:78:
e6:3a:9d:ab:f1:cd:2c:4c:71:26:ea:3e:95:46:a9:05:2d:2f:
d9:18:19:8c:46:88:69:49:f7:c4:99:00:a8:28:d2:f1:51:b1:
c1:b2:ae:ff:a9:95:9a:18:d4:71:78:59:e5:54:a5:03:bf:84:
99:67:01:fd:19:4d:cd:3c:03:93:3c:7a:d7:5a:29:f7:40:b1:
c7:6a:9b:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 01:00:50 2024 by rpki-client on console-fra.rpki-client.org