Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eaMEujS2GhXjeX_9TRrowhjBx78.cer
File: eaMEujS2GhXjeX_9TRrowhjBx78.cer (raw, json)
Hash identifier: nbmPjx666drSdG5Cq/nnGeXi2xIUrOu68vjb6nTQKrI=
Subject key identifier: 79:A3:04:BA:34:B6:1A:15:E3:79:7F:FD:4D:1A:E8:C2:18:C1:C7:BF
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CCA2A06BDB9E4CA58C88CE9BCFEF42AD8
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/92/e60107-19f3-4194-bc2f-99a0d29ba563/1/eaMEujS2GhXjeX_9TRrowhjBx78.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/92/e60107-19f3-4194-bc2f-99a0d29ba563/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 12:33:21 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 49768
IP: 185.23.111.0/24
IP: 2a12:c040::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:2a:06:bd:b9:e4:ca:58:c8:8c:e9:bc:fe:f4:2a:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 12:33:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=79a304ba34b61a15e3797ffd4d1ae8c218c1c7bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:a2:bf:e3:bf:9c:94:48:de:94:59:71:97:9e:
83:c4:2f:53:0a:ca:96:90:cc:2f:23:1f:94:55:8c:
0d:85:ff:e9:f1:b1:3a:72:b0:5b:65:37:44:34:42:
4d:3b:53:15:20:ce:30:8c:a7:e2:0b:a3:76:1b:f2:
55:fe:04:23:60:21:a0:ca:88:ac:f9:5d:cc:3e:61:
a7:c2:2b:12:de:16:fc:a5:94:92:ef:c0:d7:70:96:
70:a9:65:8a:a9:1e:19:c9:74:8a:05:eb:cd:74:36:
b2:77:7d:f9:7e:a6:0e:5b:28:e7:a8:ce:f1:df:5b:
a8:59:ae:de:21:35:e5:00:7a:2a:ed:c9:ae:a1:83:
f8:57:9a:d0:12:7a:57:37:95:f2:5f:a4:df:37:d1:
7b:79:f8:8e:c5:9c:ec:3a:c9:60:98:50:52:a4:8d:
cb:a6:e3:85:b8:85:4b:90:9d:12:ae:2a:df:20:06:
ad:d2:78:48:04:25:9c:48:e8:0a:fc:15:3e:e4:b5:
93:5c:88:05:b5:01:0a:32:d2:86:74:a5:41:55:49:
9d:b4:4c:54:59:e4:d4:61:b5:b3:95:e4:b6:56:e2:
e4:fd:1d:27:c4:53:ed:1b:92:74:4f:01:06:9c:25:
76:26:06:0d:7c:b0:81:fc:41:a1:f6:3a:84:61:57:
3f:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:A3:04:BA:34:B6:1A:15:E3:79:7F:FD:4D:1A:E8:C2:18:C1:C7:BF
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/e60107-19f3-4194-bc2f-99a0d29ba563/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/e60107-19f3-4194-bc2f-99a0d29ba563/1/eaMEujS2GhXjeX_9TRrowhjBx78.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.23.111.0/24
IPv6:
2a12:c040::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
49768
Signature Algorithm: sha256WithRSAEncryption
90:ec:f8:24:1d:e5:50:05:67:2c:f6:a8:85:b4:d2:42:95:6f:
83:12:dc:b8:73:04:76:b2:55:6f:97:c8:1d:f6:13:f1:fd:ff:
13:8f:6a:df:9b:5c:cd:6b:ad:25:b5:f8:88:ef:95:b6:43:0c:
4d:c8:ab:0c:6c:d5:5c:39:58:51:9a:f0:69:58:c6:2a:1e:54:
e1:b7:22:00:7a:f8:42:09:25:f7:2d:ee:a7:42:80:e6:7d:23:
0e:f0:dc:f4:85:eb:13:72:10:4a:ae:3a:85:7f:68:9e:24:80:
a7:3b:c5:c4:5b:b3:ee:d2:83:54:46:f7:98:e1:ad:b1:e1:cb:
52:65:9e:e6:a2:52:52:c4:e3:ea:17:92:68:b0:a8:84:0e:88:
32:82:82:64:3f:c6:88:76:54:6f:3e:bf:b0:bf:74:c3:17:73:
70:d3:6a:66:48:77:16:8c:4e:d9:a7:77:ba:d5:5d:83:88:9b:
85:af:27:15:c6:aa:72:27:eb:80:56:3b:e2:f9:cb:b3:86:56:
89:19:e3:5f:ef:ce:69:d4:45:17:81:f0:b8:4b:13:1b:cc:78:
65:10:9e:12:ab:be:bf:b2:a7:d3:4e:61:e3:bb:c8:42:c1:e7:
13:39:e2:b8:ac:81:78:e0:b0:eb:7c:16:ae:81:85:d3:ce:81:
81:09:6f:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:17:35 2024 by rpki-client on console-fra.rpki-client.org