Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eSttblvaBSZfwM6XGaYzvgSm6Xk.cer
File: eSttblvaBSZfwM6XGaYzvgSm6Xk.cer (raw, json)
Hash identifier: LCiDUNHHijY7VwBGaj7x0h7ODNYt/P4C6jGxuNzHud4=
Subject key identifier: 79:2B:6D:6E:5B:DA:05:26:5F:C0:CE:97:19:A6:33:BE:04:A6:E9:79
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC8DF7E19763E8444D247F8BDF0C835C5
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/69/dac1e5-1fd9-43d4-8926-213dc399be6f/1/eSttblvaBSZfwM6XGaYzvgSm6Xk.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/69/dac1e5-1fd9-43d4-8926-213dc399be6f/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 06:32:19 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 41890
AS: 203308
IP: 91.102.144.0/21
IP: 185.142.104.0/22
IP: 2a07:740::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:df:7e:19:76:3e:84:44:d2:47:f8:bd:f0:c8:35:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 06:32:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=792b6d6e5bda05265fc0ce9719a633be04a6e979
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:f0:a3:7f:19:5f:c9:ca:3c:27:4a:5e:f2:08:
a4:8a:9e:ff:93:28:6b:4e:ba:33:b0:48:d9:25:f2:
59:b7:55:78:96:28:a1:af:9d:82:0e:41:51:b7:be:
5e:15:5b:ee:c2:53:4b:72:1d:4f:93:53:5c:e5:d9:
16:e9:e6:21:42:b3:e7:7f:37:1c:42:4c:4c:6d:15:
e5:85:96:9e:95:32:26:27:ff:ca:2e:84:cb:a3:de:
40:c6:66:5c:54:1d:8a:ae:e2:d8:57:79:d1:fe:3e:
43:c0:58:31:4b:9b:24:85:79:81:58:25:a3:9d:7e:
f9:59:33:4e:43:8c:e2:64:99:75:dc:b7:c2:b5:9d:
5d:b3:23:32:2f:9b:f6:2a:fe:a3:3b:ba:10:0c:89:
9e:9e:b6:29:5b:1c:ef:bd:a1:4b:45:f8:55:1c:cb:
e0:a7:bf:28:db:8c:f6:59:85:55:de:a9:e3:ce:6f:
01:4d:18:82:61:84:0f:34:df:e7:4d:d5:a6:de:c3:
68:5b:8a:71:31:3c:7f:9b:1d:d9:e3:35:a9:24:4e:
2b:f6:80:83:6c:7e:da:d9:1a:60:9b:d5:67:e2:04:
3e:74:b4:9b:54:9a:b0:49:4b:f3:c9:19:1c:69:fe:
5a:c7:00:87:26:6a:41:29:ad:7f:7f:95:d4:cc:57:
02:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:2B:6D:6E:5B:DA:05:26:5F:C0:CE:97:19:A6:33:BE:04:A6:E9:79
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/dac1e5-1fd9-43d4-8926-213dc399be6f/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/dac1e5-1fd9-43d4-8926-213dc399be6f/1/eSttblvaBSZfwM6XGaYzvgSm6Xk.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.102.144.0/21
185.142.104.0/22
IPv6:
2a07:740::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
41890
203308
Signature Algorithm: sha256WithRSAEncryption
87:0a:45:ee:c1:ac:36:d2:83:8f:59:cf:6d:5f:b9:db:a9:ca:
49:8b:1d:e0:4f:5e:72:2c:27:0a:ec:ce:3e:6c:fe:56:f8:6b:
79:24:1a:c5:1c:56:3c:7a:be:60:a3:f2:80:88:af:7e:fc:a7:
6d:5c:18:93:5c:98:46:7e:f7:5e:a3:74:92:14:8c:5a:fc:0e:
55:5f:d5:30:a9:a9:05:b9:73:5a:51:a0:fd:5c:d5:0c:66:de:
49:aa:86:96:13:a5:33:9b:3c:7a:a3:04:02:57:89:f8:f5:cc:
36:14:39:1b:39:e7:af:4e:54:4c:e4:88:5d:f4:ac:65:57:02:
32:45:13:13:80:bd:12:6b:70:66:10:73:7c:a4:9d:c3:e0:47:
c6:53:98:69:35:73:de:49:4f:b4:30:56:81:6c:bc:e4:de:82:
f8:7d:a8:ef:77:78:a8:80:99:10:b8:47:bf:d2:ea:c4:42:3b:
31:e9:16:b9:92:bb:68:d4:79:33:2b:a9:c5:f0:bb:35:04:4a:
4b:b0:ba:84:6f:46:7e:fe:e1:70:73:52:70:84:ed:b6:84:d5:
09:e8:f8:a4:c2:cb:92:0b:8c:68:8a:dc:54:ab:68:71:ae:21:
b5:31:11:f1:4c:de:76:1e:f7:77:04:6e:da:1d:37:ad:89:59:
56:80:ed:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 01:02:13 2024 by rpki-client on console-fra.rpki-client.org