Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dxToFxWNwwfu1NTG7fUaieVwPs8.cer
File: dxToFxWNwwfu1NTG7fUaieVwPs8.cer (raw, json)
Hash identifier: a4fJ8su5zj3i5nOjdW3frVdkQQyz25A1lATesNmy2tk=
Subject key identifier: 77:14:E8:17:15:8D:C3:07:EE:D4:D4:C6:ED:F5:1A:89:E5:70:3E:CF
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC493927679A283EC0A883DC3F9755084
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/d6/1e6d59-27cf-419f-ad1d-6210641e52d6/1/dxToFxWNwwfu1NTG7fUaieVwPs8.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/d6/1e6d59-27cf-419f-ad1d-6210641e52d6/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 10:30:54 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 210524
IP: 212.52.21.0/24
IP: 2a12:6a00::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:93:92:76:79:a2:83:ec:0a:88:3d:c3:f9:75:50:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 10:30:54 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7714e817158dc307eed4d4c6edf51a89e5703ecf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:3b:07:ef:03:04:9a:ae:7d:6c:64:f6:e3:32:
94:22:1c:13:5f:67:18:12:b6:14:42:92:99:45:74:
af:eb:ec:5f:dc:83:f4:ce:0d:5e:fc:95:a4:b6:cb:
c6:b6:83:cd:b3:ac:60:4c:f0:72:9b:ed:2b:8d:64:
e3:1f:18:74:c1:91:3a:6d:fd:d8:8f:eb:9b:45:db:
2d:66:c8:9d:00:0d:10:4e:0b:83:f2:98:f4:f1:26:
06:65:c3:b3:e8:0a:c0:13:32:4c:ce:23:76:41:2a:
7e:11:f1:5b:f1:f3:a6:13:47:ce:ce:9c:68:b6:2f:
b7:ea:81:76:d9:a5:ea:9f:3f:03:95:f7:79:d3:79:
e7:21:41:0a:fa:b6:4e:ff:e0:15:33:fb:33:4d:4f:
29:4b:47:39:21:e6:b3:67:70:ba:70:2f:51:81:01:
64:f2:5b:d5:a9:9c:48:b7:37:d5:49:8a:17:0b:b0:
2e:51:ff:63:02:ea:d4:69:f2:3f:fd:9c:02:cd:34:
d8:b0:1f:ee:2f:a4:26:f7:e2:5f:a7:e8:02:2a:15:
cb:8b:10:27:ea:a3:2e:62:fd:7a:ac:ff:d3:68:e7:
80:70:ac:5d:72:fe:0c:81:b8:20:91:04:5b:ff:96:
5d:cf:b2:cd:16:18:81:0d:57:22:21:ee:54:19:f8:
69:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:14:E8:17:15:8D:C3:07:EE:D4:D4:C6:ED:F5:1A:89:E5:70:3E:CF
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/1e6d59-27cf-419f-ad1d-6210641e52d6/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/1e6d59-27cf-419f-ad1d-6210641e52d6/1/dxToFxWNwwfu1NTG7fUaieVwPs8.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.52.21.0/24
IPv6:
2a12:6a00::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
210524
Signature Algorithm: sha256WithRSAEncryption
68:9b:e3:2c:25:f6:4a:4a:c5:cf:58:40:6b:c5:41:95:73:89:
32:8f:87:6f:7a:94:32:6f:f4:f5:b5:86:e0:e6:3c:9c:82:b7:
0c:8f:58:2c:91:f9:55:0c:44:df:93:2a:0b:f7:12:96:ac:f4:
35:92:d9:c9:02:0e:4f:d4:bc:ac:30:3f:b5:0e:07:24:8b:5a:
c6:a8:b0:6c:83:d5:68:ff:72:2c:56:fd:00:9f:4b:56:ac:e7:
4e:62:84:fe:94:e1:e5:ee:67:e4:16:54:6f:f5:ca:5c:a5:71:
c8:5f:a9:a3:82:7e:97:fc:00:dd:b4:a1:a9:4c:2b:6d:fd:b6:
aa:18:35:24:ec:8e:e4:81:fb:9a:06:de:f7:b7:c8:64:ca:7c:
89:cc:80:12:26:35:6a:38:8f:22:cc:7d:a5:cb:69:fb:96:e9:
31:aa:80:5a:b7:86:b2:8f:d4:a5:e6:9c:c6:dc:f7:a0:b9:0e:
da:40:93:00:2b:5c:97:d8:40:70:ed:6f:a4:49:de:59:93:e5:
96:c9:3b:60:19:2e:97:d0:a8:7a:d5:44:f0:92:16:5c:73:ea:
09:f7:5c:39:9b:5e:0d:6b:bc:04:a8:20:13:b9:2a:6f:84:72:
4e:78:97:83:f4:8b:fa:75:28:86:b9:5a:70:40:30:a8:24:4a:
e6:1c:d5:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 01:01:21 2024 by rpki-client on console-fra.rpki-client.org