Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da9OLDR4Dz2fUegKU7rDvm8yWUM.cer
File: da9OLDR4Dz2fUegKU7rDvm8yWUM.cer (raw, json)
Hash identifier: oS0n/lTbJjNQzlqpWHQRIoN16jUxBiHdYG76d+4Ne4E=
Subject key identifier: 75:AF:4E:2C:34:78:0F:3D:9F:51:E8:0A:53:BA:C3:BE:6F:32:59:43
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC794EBC4CF9FD43528A0A65BFEDCD113
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/f8/09239a-4f88-409b-a781-75330d4ce86e/1/da9OLDR4Dz2fUegKU7rDvm8yWUM.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/f8/09239a-4f88-409b-a781-75330d4ce86e/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 00:31:14 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 210553
IP: 178.57.64.0/24
IP: 178.57.69.0 -- 178.57.70.255
IP: 193.3.185.0/24
IP: 2a11:f8c0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:94:eb:c4:cf:9f:d4:35:28:a0:a6:5b:fe:dc:d1:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 00:31:14 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=75af4e2c34780f3d9f51e80a53bac3be6f325943
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:60:00:c6:2c:08:f2:1d:b1:63:c3:fc:b9:66:
ef:f2:19:16:60:81:e6:d6:2f:bd:c3:5b:95:57:76:
6a:e2:b8:6d:67:be:0c:4a:95:40:95:23:b8:6f:0d:
8d:e5:d2:34:0a:66:36:a6:b4:63:2f:e9:37:3e:19:
0b:d5:ec:c5:c2:07:75:af:75:e0:63:6c:14:d9:07:
34:5f:67:9e:4f:88:09:68:eb:18:8d:05:be:2a:23:
76:96:a0:1e:64:06:fb:aa:4c:90:93:a8:7e:e8:ad:
d1:8a:4d:3f:ca:07:55:96:a2:13:f4:84:0a:5f:5f:
67:92:6e:9f:a8:bf:ba:84:ac:68:99:89:16:dc:70:
31:67:40:ba:70:04:97:21:9f:e9:9c:a5:25:a1:aa:
e3:f2:91:04:df:60:0f:3a:72:cd:32:44:47:3b:ff:
67:41:b7:dc:13:ea:e2:cd:eb:4d:bd:48:c0:b1:66:
f5:12:2e:c3:5e:17:73:c4:d0:f8:45:9b:60:de:de:
d2:f0:b7:a7:33:7d:27:b9:7f:25:ec:41:da:29:c6:
51:b8:b1:01:40:5b:37:61:6f:2a:7d:35:82:41:2d:
94:20:52:8d:d9:15:b8:16:72:fc:6b:7b:5e:27:d8:
a6:22:ad:8f:9a:7d:50:54:ca:e0:1d:69:60:ba:50:
a3:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:AF:4E:2C:34:78:0F:3D:9F:51:E8:0A:53:BA:C3:BE:6F:32:59:43
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/09239a-4f88-409b-a781-75330d4ce86e/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/09239a-4f88-409b-a781-75330d4ce86e/1/da9OLDR4Dz2fUegKU7rDvm8yWUM.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.57.64.0/24
178.57.69.0-178.57.70.255
193.3.185.0/24
IPv6:
2a11:f8c0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
210553
Signature Algorithm: sha256WithRSAEncryption
30:67:00:28:74:b5:00:dd:b1:7a:bb:62:75:f0:cc:bb:68:3e:
e6:87:27:a6:d5:50:78:ae:bd:19:fc:a6:d8:ac:01:48:56:8a:
6c:87:16:6d:b3:0a:f3:48:68:6e:50:33:34:fb:e3:e2:c1:d0:
17:53:00:31:ac:aa:7f:34:66:39:60:50:46:1b:df:0c:98:29:
30:d3:b5:21:c1:02:88:d7:df:79:60:28:39:af:f7:4c:38:13:
07:94:f6:be:56:fb:b0:ce:5e:75:33:1b:e1:75:91:ed:14:95:
c4:cd:ac:b0:01:38:f8:e1:42:bb:1d:d1:da:98:86:3a:67:71:
a5:0c:9b:9f:a9:96:3a:03:d6:da:d4:42:10:33:93:42:4e:31:
44:9c:d9:86:d7:61:a0:42:0d:12:69:22:27:ce:1a:e3:75:c8:
df:28:ab:a8:62:fa:81:25:85:2a:dc:db:0a:2b:a1:12:3c:16:
6b:a6:a7:f0:48:68:4c:2c:00:74:c8:3b:ca:4d:ef:82:68:17:
db:df:2a:a8:0f:d1:5f:d3:36:7c:01:a9:21:04:56:64:59:b6:
76:bf:ad:f3:f8:57:4d:4e:27:ef:e2:1c:fb:c7:17:5c:a0:97:
31:c2:15:3e:fc:8d:91:eb:5b:2d:be:ec:ff:3a:8c:77:ed:79:
fc:1c:bb:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:58:18 2024 by rpki-client on console-ams.rpki-client.org