Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e79Yl1uB6Pn5wV5Ni4mRkM7ABoc.cer
File: e79Yl1uB6Pn5wV5Ni4mRkM7ABoc.cer (raw, json)
Hash identifier: +U+Cke3uzuuopiOU2iH3A6Sf0mSOYTWVzjH/zxH2zVg=
Subject key identifier: 7B:BF:58:97:5B:81:E8:F9:F9:C1:5E:4D:8B:89:91:90:CE:C0:06:87
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC8DCD3FD80C6490FBF76A60CFF1FB20E
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/75/0ea9ca-ac97-43f0-8577-1c70d1e7b782/1/e79Yl1uB6Pn5wV5Ni4mRkM7ABoc.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/75/0ea9ca-ac97-43f0-8577-1c70d1e7b782/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 06:29:24 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 211219
IP: 194.31.253.0/24
IP: 2a05:8000::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:dc:d3:fd:80:c6:49:0f:bf:76:a6:0c:ff:1f:b2:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 06:29:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7bbf58975b81e8f9f9c15e4d8b899190cec00687
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:bd:fa:1f:dc:3d:52:88:a6:6c:8b:c6:ed:0f:
56:78:c8:85:af:0c:1e:f2:76:05:6c:74:13:ad:81:
78:a3:68:48:7f:8c:5c:ee:40:49:f3:b6:ba:e7:2a:
31:1a:39:fa:77:85:df:e5:91:e6:9e:75:6c:d8:e3:
38:45:aa:bc:2a:cb:b8:64:29:58:4a:37:93:1b:5c:
89:95:4c:9d:a7:11:b9:89:67:f3:b8:ef:b5:5c:9f:
ee:d2:77:a4:29:63:25:33:4f:bf:d7:e1:e8:ec:a2:
4a:ad:b6:b8:76:f6:e0:9c:68:b1:4b:1d:64:c8:ce:
53:99:3d:43:1d:47:e1:9e:85:f7:d3:2f:a1:d1:40:
b8:44:44:51:1c:bb:2e:f8:73:f5:51:a2:62:28:54:
57:f5:51:26:8f:e5:fa:a5:46:c6:92:a9:48:1e:27:
1c:11:b7:02:7a:4b:6e:ee:a9:7b:29:e8:a2:f6:47:
b8:7e:0b:5d:6c:36:12:f1:09:25:c8:d4:ef:3b:67:
95:02:ae:86:ae:4f:44:fd:74:7b:d4:08:64:76:2b:
44:cd:fe:3f:8c:ad:02:e9:2b:48:d5:7b:e8:70:d6:
63:db:38:a6:1d:72:5d:68:fa:71:37:5a:35:11:16:
ab:f4:26:0f:10:9c:f4:e6:7c:5a:09:a9:ea:4e:ee:
5b:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:BF:58:97:5B:81:E8:F9:F9:C1:5E:4D:8B:89:91:90:CE:C0:06:87
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/0ea9ca-ac97-43f0-8577-1c70d1e7b782/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/0ea9ca-ac97-43f0-8577-1c70d1e7b782/1/e79Yl1uB6Pn5wV5Ni4mRkM7ABoc.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.31.253.0/24
IPv6:
2a05:8000::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
211219
Signature Algorithm: sha256WithRSAEncryption
6e:ba:40:30:00:49:67:de:86:06:f4:3d:96:29:63:36:02:22:
96:e8:da:4a:48:ca:bc:0a:b2:ff:18:eb:c8:1f:bc:f0:aa:74:
f7:e4:ea:e3:45:20:13:a0:2a:0a:ce:64:95:00:1b:6f:47:0f:
b4:91:48:9a:cd:ae:08:3c:91:24:b5:1a:6d:17:1f:5e:27:57:
51:07:f3:ff:4c:cc:48:9d:9d:46:6d:34:a7:76:e1:7e:57:28:
ea:6d:46:fb:00:8e:8b:46:38:43:47:a1:ca:ec:63:ca:5a:f5:
bd:14:28:aa:d1:9d:f4:2e:84:d6:c0:26:09:c6:ba:14:d4:02:
83:40:f8:24:52:ad:87:0b:0a:45:97:2d:95:07:5a:39:0f:31:
35:81:3d:ba:aa:77:ca:8a:65:4d:fc:06:51:f1:74:a3:df:e0:
07:c6:33:79:dc:46:32:11:a4:c8:2d:e7:47:8b:8b:7e:7a:db:
36:7b:3e:bb:ab:cb:aa:c4:79:32:d0:87:0d:0d:93:66:22:78:
d7:ec:9c:79:9b:df:2f:41:39:7b:7b:c9:3c:7d:f1:17:d1:3c:
e3:e4:b9:c0:b3:66:6c:83:ba:e7:1d:a0:76:b3:ba:b9:fd:0b:
b3:51:7f:61:fa:3a:ee:f5:74:d0:a1:6a:fe:e3:e6:86:73:a7:
2c:61:4d:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:17:15 2024 by rpki-client on console-fra.rpki-client.org