Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e-ykASv3tQVuLgoWHrRhiHbJESo.cer
File: e-ykASv3tQVuLgoWHrRhiHbJESo.cer (raw, json)
Hash identifier: wSNaLzn2pjLV4xsiZIcI/iib8S+f9Bfsmrki6UZYMY4=
Subject key identifier: 7B:EC:A4:01:2B:F7:B5:05:6E:2E:0A:16:1E:B4:61:88:76:C9:11:2A
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC727684C57DC90A7E5AF2D662FC4F298
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/f5/9488d5-a8d3-44b5-92df-58caf4701be3/1/e-ykASv3tQVuLgoWHrRhiHbJESo.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/f5/9488d5-a8d3-44b5-92df-58caf4701be3/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 22:31:37 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: IP: 82.192.96.0/23
IP: 82.192.100.0 -- 82.192.111.255
IP: 2a03:9e80::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:27:68:4c:57:dc:90:a7:e5:af:2d:66:2f:c4:f2:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 22:31:37 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7beca4012bf7b5056e2e0a161eb4618876c9112a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:84:a1:f0:bf:59:c8:be:f3:cb:25:ef:7a:db:
54:19:b4:4e:a1:d2:1c:9a:94:2d:d3:97:d8:ed:27:
76:16:0f:27:d3:23:54:51:70:04:f7:e0:d8:b0:db:
b6:d4:b9:d3:3c:27:52:09:a6:2a:df:88:31:a0:40:
d1:94:9c:0c:7a:89:d7:f9:08:08:33:ac:d5:db:3c:
89:0d:82:31:ed:e2:1f:ad:22:40:17:52:df:a1:44:
b2:cd:5c:89:05:57:33:82:25:1f:f0:33:fb:ca:2f:
aa:4c:4c:09:42:54:62:75:bf:5b:c1:f0:25:89:e9:
49:bb:58:09:7b:8e:12:a3:f3:3c:04:09:05:91:f2:
7c:45:23:92:f8:05:09:77:6d:50:d0:47:44:62:25:
03:f6:8f:51:42:fb:ef:e9:25:3f:be:e2:fb:88:75:
b8:aa:51:8f:4b:77:e1:de:ab:27:4e:54:d1:25:ea:
85:a9:ce:bf:b7:55:e6:12:b5:5e:70:94:e5:f3:28:
0b:4d:54:79:99:c7:cf:b4:25:ba:16:0d:6e:20:c8:
09:97:b7:be:59:3e:8d:b7:be:77:f1:90:bb:bc:a0:
2a:c2:d4:33:7b:cb:ff:7a:5e:37:52:7b:4c:94:ac:
74:b3:c2:aa:83:da:1e:b8:b0:4d:9a:f7:71:b4:11:
9c:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:EC:A4:01:2B:F7:B5:05:6E:2E:0A:16:1E:B4:61:88:76:C9:11:2A
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/9488d5-a8d3-44b5-92df-58caf4701be3/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/9488d5-a8d3-44b5-92df-58caf4701be3/1/e-ykASv3tQVuLgoWHrRhiHbJESo.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.192.96.0/23
82.192.100.0-82.192.111.255
IPv6:
2a03:9e80::/32
Signature Algorithm: sha256WithRSAEncryption
9c:f1:3c:bc:fb:61:59:96:79:59:a0:e7:7c:77:66:eb:70:6b:
86:e8:3e:1b:c0:89:d8:ab:eb:bd:3f:e5:bc:2c:a2:35:87:bc:
ee:d5:04:ed:08:0e:c1:d3:fc:d7:db:e6:4b:b9:37:71:8f:94:
69:dd:ba:c7:d1:0a:5e:ca:8c:97:9b:47:60:5c:74:11:f1:c0:
5e:f1:14:cc:20:94:5f:11:a7:d7:16:88:db:15:bd:1a:01:8d:
52:8c:98:e1:6c:db:4f:a5:18:80:24:e6:b9:d0:93:6a:52:80:
c3:f7:f8:a0:6a:13:63:83:c7:71:02:a2:4f:8e:00:fa:26:87:
15:2f:49:0e:9b:69:ab:43:02:c6:f5:63:40:c0:21:32:dc:1f:
a2:d5:ce:a7:96:eb:2d:fa:0e:ce:d5:91:92:9e:bd:cc:4e:b1:
60:a9:f8:23:3e:0e:91:de:37:5c:e7:c8:1a:a5:26:94:6e:5b:
67:59:73:19:66:a3:30:bb:30:99:c1:45:70:cc:c8:64:8c:d2:
a8:5d:a9:d3:08:cf:41:e8:73:1f:07:37:74:ab:3c:e7:91:ca:
4b:4b:22:87:ae:7b:c7:53:91:93:78:11:b1:c0:1f:ec:ec:42:
84:37:44:ce:2d:75:c9:c9:84:04:6b:12:f9:63:65:b9:eb:a8:
0a:f1:d6:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:32:39 2024 by rpki-client on console-ams.rpki-client.org