Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fG3HOVgVrwRQSPTOORDQQAj_Onw.cer
File: fG3HOVgVrwRQSPTOORDQQAj_Onw.cer (raw, json)
Hash identifier: YXYI/meZbb6XLk/CmJ+J8AD5Q72O3XR1h8YcmgM4yc0=
Subject key identifier: 7C:6D:C7:39:58:15:AF:04:50:48:F4:CE:39:10:D0:40:08:FF:3A:7C
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC9BC879BB47EF8CF7F49FB692AACB698
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/64/54687f-efa5-4620-8619-3155ba8cb74f/1/fG3HOVgVrwRQSPTOORDQQAj_Onw.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/64/54687f-efa5-4620-8619-3155ba8cb74f/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 10:33:45 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 20718
IP: 62.151.160.0/21
IP: 62.151.176.0/21
IP: 82.223.0.0/16
IP: 93.93.112.0/21
IP: 94.143.136.0/21
IP: 185.132.44.0/22
IP: 217.76.128.0/19
IP: 2001:ba0::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:87:9b:b4:7e:f8:cf:7f:49:fb:69:2a:ac:b6:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 10:33:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7c6dc7395815af045048f4ce3910d04008ff3a7c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:cb:9c:42:c1:e5:d9:64:70:ba:f1:20:01:1b:
3d:40:60:ae:af:bc:d5:e0:45:aa:84:80:5e:7a:34:
be:68:cf:24:cb:29:b0:74:3a:b8:a2:d2:28:39:c0:
84:61:6a:58:cd:95:73:ce:9b:84:33:de:85:ff:04:
2f:c4:f7:f7:6d:76:92:87:14:d9:53:2d:3b:a7:0f:
70:4b:d5:e0:47:f0:3e:7a:39:6b:72:b2:d8:7b:41:
d5:2b:be:f2:ee:94:9b:61:54:69:5a:b1:ed:f4:6f:
d8:ac:c3:d7:43:1e:52:71:4b:d5:44:ab:72:6f:d8:
21:c2:81:e1:4f:af:e5:22:c3:6b:a7:3b:37:ad:d6:
3b:00:41:2b:bf:6a:ce:ec:55:72:b7:65:67:92:97:
a7:a2:2b:6d:4b:7f:f8:f7:f5:1d:9d:1c:17:96:3b:
7b:bf:bc:0a:24:1c:bb:88:3f:8a:69:a6:c6:b3:23:
48:7f:ac:4b:fe:4d:57:42:a3:94:84:89:2c:c1:7a:
a7:df:ce:21:a1:01:25:15:1d:0a:a9:e2:0e:1c:97:
b8:2a:9c:92:4a:cf:29:83:d0:78:6b:0c:1a:b3:83:
eb:a3:85:ce:e9:ca:15:5f:31:63:e8:b9:01:14:67:
87:5d:c0:7d:39:47:fa:53:92:ab:e5:27:b7:d0:89:
3f:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:6D:C7:39:58:15:AF:04:50:48:F4:CE:39:10:D0:40:08:FF:3A:7C
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/54687f-efa5-4620-8619-3155ba8cb74f/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/54687f-efa5-4620-8619-3155ba8cb74f/1/fG3HOVgVrwRQSPTOORDQQAj_Onw.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.151.160.0/21
62.151.176.0/21
82.223.0.0/16
93.93.112.0/21
94.143.136.0/21
185.132.44.0/22
217.76.128.0/19
IPv6:
2001:ba0::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
20718
Signature Algorithm: sha256WithRSAEncryption
27:9a:4a:6b:f3:7a:bf:88:f1:ac:0b:5a:53:60:8a:d8:12:4c:
14:af:cb:51:87:de:15:33:40:0f:8f:40:44:90:c5:6d:41:30:
66:b8:20:7c:8b:ce:86:62:8b:81:74:7c:64:aa:d8:70:ed:f3:
b7:08:30:e5:29:85:fe:90:cf:f4:9f:1d:1b:c6:99:29:72:98:
b3:0d:9d:fa:54:1b:3a:50:67:b6:d6:b1:5f:ee:6d:b2:26:9d:
ea:02:69:42:a5:d0:af:19:a2:86:65:14:25:31:f6:fd:b4:87:
0f:e7:ee:13:4b:74:76:3c:b7:85:4f:ee:3b:7b:30:7d:c8:48:
ed:f0:25:4d:39:91:ce:0b:ed:0d:bc:d3:87:73:fb:09:e6:05:
e4:54:61:18:73:e6:d7:95:aa:52:60:e3:18:3e:51:35:3d:fd:
c0:dc:64:a7:19:cc:a8:8f:0e:42:4f:0e:84:ef:45:3e:50:cb:
6a:f4:e4:f9:75:7d:85:ed:76:95:f4:11:2b:19:63:d9:75:23:
c4:c6:21:20:54:06:1e:c0:f0:25:68:95:69:e5:b1:93:a8:df:
72:8e:af:fb:e6:92:55:35:8b:b7:97:84:20:19:37:cc:cb:e0:
c2:8a:28:d5:56:0f:49:dc:ce:87:0c:9d:f0:4d:5c:74:5a:9e:
7e:b1:45:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 11:01:26 2024 by rpki-client on console-ams.rpki-client.org