Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/esordo3vi7lURGjtX3JiVsNkM24.cer
File: esordo3vi7lURGjtX3JiVsNkM24.cer (raw, json)
Hash identifier: luD0chQ8RRcTq7JI8X6CL7uuaoPg0bWsr2D+ugUL1dE=
Subject key identifier: 7A:CA:2B:76:8D:EF:8B:B9:54:44:68:ED:5F:72:62:56:C3:64:33:6E
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01900256A29C86836B2B5A37EDEB45EF74EC
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rsync.krill.nlnetlabs.nl/repo/nlnetlabs/1/7ACA2B768DEF8BB9544468ED5F726256C364336E.mft
caRepository: rsync://rsync.krill.nlnetlabs.nl/repo/nlnetlabs/1/
Notify URL: https://rrdp.krill.nlnetlabs.nl/notification.xml
Certificate not before: Mon 10 Jun 2024 13:29:10 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 204325
AS: 211321
IP: 185.49.140.0/22
IP: 2a04:b900::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:02:56:a2:9c:86:83:6b:2b:5a:37:ed:eb:45:ef:74:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jun 10 13:29:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7aca2b768def8bb9544468ed5f726256c364336e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:b2:2d:9e:92:f0:5d:bc:2b:33:e2:d3:50:89:
36:72:c0:bc:1d:27:e4:b2:c9:da:0a:de:4f:90:b3:
1b:75:df:a1:eb:f6:08:0c:cb:ea:c9:8b:1c:73:b0:
f6:f6:9e:86:fa:cd:1d:30:42:d7:56:22:59:c1:ff:
45:7d:a0:60:ad:4c:60:02:7b:8f:5c:25:42:8f:ad:
9a:e6:fe:0d:18:e0:1b:d7:5a:83:3c:c8:1b:77:a9:
da:61:82:36:db:d4:f1:3c:78:f2:5e:bf:c4:19:78:
40:2c:f2:e8:ab:d4:4b:3b:49:d9:72:5b:02:16:7b:
44:95:36:39:ac:29:d7:8c:25:fa:e7:09:b3:29:ae:
d5:b1:f8:85:b4:02:21:04:e0:56:32:cf:ed:93:ab:
0e:2b:72:9c:58:2d:bd:02:53:48:1e:a6:1e:44:9b:
77:68:c1:d6:b1:c9:c3:aa:4c:d6:13:0e:94:a7:16:
51:fe:b6:10:7d:32:b2:05:08:61:82:7f:34:29:9a:
c2:80:d7:83:d0:27:04:94:31:cd:61:73:a2:49:b5:
44:75:c3:35:2c:d7:f1:9e:f9:26:07:92:dd:8b:9b:
45:d3:e8:fa:66:73:cf:3b:81:f2:91:3e:cc:0d:d9:
8f:47:66:f4:15:69:e4:cd:ed:86:5b:d5:56:f5:0d:
6d:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:CA:2B:76:8D:EF:8B:B9:54:44:68:ED:5F:72:62:56:C3:64:33:6E
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rsync.krill.nlnetlabs.nl/repo/nlnetlabs/1/
RPKI Manifest - URI:rsync://rsync.krill.nlnetlabs.nl/repo/nlnetlabs/1/7ACA2B768DEF8BB9544468ED5F726256C364336E.mft
RPKI Notify - URI:https://rrdp.krill.nlnetlabs.nl/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.49.140.0/22
IPv6:
2a04:b900::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
204325
211321
Signature Algorithm: sha256WithRSAEncryption
70:38:78:09:6b:eb:d2:39:12:af:65:bd:6e:2e:6f:97:d1:9b:
81:e4:9f:6a:69:87:12:99:e7:26:a5:e9:a8:b2:02:b9:96:5a:
55:e1:28:0d:69:7a:79:e9:3f:a2:2c:e9:14:dc:28:9d:ad:75:
a1:4c:60:32:42:d9:d2:3a:b0:5c:bc:52:4f:59:2d:32:6a:a3:
ae:aa:e9:35:11:35:0d:4f:6f:7b:f5:a7:2b:48:20:0e:95:0c:
5a:63:62:be:8f:e2:68:40:dd:e4:a4:00:b8:48:59:d2:bf:63:
1f:59:bf:65:a7:e5:3b:14:a8:35:1a:d6:49:f1:fa:d0:b8:7f:
c3:c1:1f:64:63:15:a5:3a:6a:e3:83:ab:a1:b7:f4:1a:47:46:
53:8c:73:15:11:d2:b0:82:ca:28:09:cc:4a:31:90:67:7a:4f:
59:d2:e3:23:f8:99:98:01:1d:c1:90:6f:b7:fa:ba:41:40:a1:
3a:bb:1f:eb:69:12:57:15:2e:c9:a2:c7:8e:20:5f:6d:bd:43:
ee:a0:a4:5f:0a:2d:a4:01:59:ac:4d:02:ba:5b:c4:62:93:86:
09:7e:2c:38:dc:2d:b0:3c:42:98:6f:bd:ea:eb:b3:59:b3:d0:
94:94:f4:6d:10:4f:1a:3e:fc:88:69:19:aa:8b:96:09:de:f8:
cb:9c:64:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:34:08 2024 by rpki-client on console-ams.rpki-client.org