Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fINUmPNRmaFXGWTYVcOHd1FoGrk.cer
File: fINUmPNRmaFXGWTYVcOHd1FoGrk.cer (raw, json)
Hash identifier: nJg2DGWC2dAMZXwX4URPHJMa0Jnit+obGhf+VcBKHXo=
Subject key identifier: 7C:83:54:98:F3:51:99:A1:57:19:64:D8:55:C3:87:77:51:68:1A:B9
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CCA2BA6C773519DDBD2C167793C351294
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/0c/9f8ae2-0fb5-4c04-ad93-4ce477dbb407/1/fINUmPNRmaFXGWTYVcOHd1FoGrk.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/0c/9f8ae2-0fb5-4c04-ad93-4ce477dbb407/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 12:35:07 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 29024
AS: 61207
IP: 87.237.208.0/21
IP: 89.221.240.0/20
IP: 91.189.40.0/21
IP: 185.3.48.0/22
IP: 185.15.120.0/22
IP: 185.187.252.0/22
IP: 185.215.196.0/22
IP: 195.35.82.0/23
IP: 2a02:fc00::/29
IP: 2a0f:440::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:2b:a6:c7:73:51:9d:db:d2:c1:67:79:3c:35:12:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 12:35:07 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7c835498f35199a1571964d855c3877751681ab9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:7c:33:c5:6a:99:86:0e:75:1b:89:24:0e:0f:
4d:d1:75:4a:f6:58:69:5f:64:e7:fa:9e:42:28:f0:
48:86:97:9a:da:2f:60:a3:ba:65:2c:80:31:6d:b3:
75:f5:74:3a:85:6b:88:ec:78:fb:50:65:5a:3a:a7:
76:77:ca:47:83:21:15:1d:86:33:64:71:bb:73:a8:
81:38:b4:e3:a0:57:5f:c3:f2:9e:f7:96:8d:30:15:
4c:83:f8:e1:d7:40:55:b8:e8:53:79:7c:a8:8b:a4:
8b:2a:75:df:2a:bf:a0:f0:ed:e5:08:74:a8:ec:65:
94:97:af:6d:57:97:81:36:ca:17:16:71:5f:a4:53:
c8:81:7e:ff:ae:c4:7b:d0:07:e0:2c:95:e4:01:9c:
41:a6:71:85:17:1e:75:08:66:3d:c4:54:fb:8b:9d:
6e:e9:1b:36:9f:4b:3a:43:79:17:fa:a5:2b:00:a4:
65:82:52:3f:54:f0:bf:f6:cc:5d:85:d8:3e:55:a2:
8f:b3:b1:37:ed:96:31:89:b1:90:c8:b7:f7:b4:25:
32:04:02:2b:e9:35:e3:e2:8c:37:d8:94:33:24:ed:
44:f9:35:97:b6:6d:9b:5b:5b:ec:29:22:fc:94:44:
73:95:41:c0:33:e2:74:37:67:21:a7:be:83:e5:03:
9f:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:83:54:98:F3:51:99:A1:57:19:64:D8:55:C3:87:77:51:68:1A:B9
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/9f8ae2-0fb5-4c04-ad93-4ce477dbb407/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/9f8ae2-0fb5-4c04-ad93-4ce477dbb407/1/fINUmPNRmaFXGWTYVcOHd1FoGrk.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.237.208.0/21
89.221.240.0/20
91.189.40.0/21
185.3.48.0/22
185.15.120.0/22
185.187.252.0/22
185.215.196.0/22
195.35.82.0/23
IPv6:
2a02:fc00::/29
2a0f:440::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
29024
61207
Signature Algorithm: sha256WithRSAEncryption
6e:6f:50:bc:62:f0:7d:a4:a8:f5:38:bb:65:ec:9a:47:fd:27:
81:0a:da:1d:84:bb:c9:7b:0e:3e:fb:96:14:5d:d3:74:7b:95:
d7:c3:41:f0:7a:3e:b7:dc:ff:e4:7f:41:be:f6:0e:42:0c:f2:
64:49:a2:37:38:70:76:01:6e:2d:18:6e:d4:24:b9:b6:e2:46:
63:da:05:9c:19:3f:87:60:8e:b1:a4:57:5d:9f:bc:26:a3:bb:
6b:fb:d5:5d:84:1c:5c:b1:64:87:f9:61:42:a5:15:b4:1f:a8:
8c:81:df:a5:40:3f:4b:8f:e7:02:50:61:d1:3c:0d:1b:a1:54:
0e:d2:16:db:ca:e5:75:9f:2f:5b:08:2b:16:48:61:dd:e4:86:
22:59:b3:ca:c2:7e:f3:03:f0:0f:3d:7d:82:5a:b1:52:6a:17:
96:63:31:df:e5:b6:2c:fe:e3:7c:8f:3a:15:cd:5e:ad:9b:0d:
f3:8c:e9:12:23:6b:55:ea:f8:66:c4:fd:cf:1c:6f:9c:7b:6a:
5a:a3:a6:4c:d5:c2:a9:30:4f:d1:3d:ad:4c:b0:b8:72:65:18:
75:86:54:3d:9d:80:80:0b:4d:a6:ad:cb:de:d4:06:d2:78:5e:
39:5d:10:7b:71:6c:5b:fd:57:71:af:25:16:c0:80:9b:ea:58:
6d:c0:49:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 11:01:26 2024 by rpki-client on console-ams.rpki-client.org