Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd0jbYBNWqmiyrOc9RAirAXgsYM.cer
File: fd0jbYBNWqmiyrOc9RAirAXgsYM.cer (raw, json)
Hash identifier: PVhpA+WuF1Iv9jruavbJCjXFF4e8J3dI/6cW8//tU9o=
Subject key identifier: 7D:DD:23:6D:80:4D:5A:A9:A2:CA:B3:9C:F5:10:22:AC:05:E0:B1:83
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC56EEB92F1D822C1A21A69001AA91653
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/65/1e98c2-2bae-4d14-9bcc-855e6072ef36/1/fd0jbYBNWqmiyrOc9RAirAXgsYM.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/65/1e98c2-2bae-4d14-9bcc-855e6072ef36/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 14:30:30 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 47908
IP: 193.142.111.0/24
IP: 2001:67c:170::/48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 25 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:eb:92:f1:d8:22:c1:a2:1a:69:00:1a:a9:16:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 14:30:30 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7ddd236d804d5aa9a2cab39cf51022ac05e0b183
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:fb:26:76:16:35:01:76:88:b6:c0:5b:45:3f:
c1:cd:4c:a0:e3:58:70:75:a3:2a:85:0e:16:b1:46:
7b:9f:f2:04:cd:2a:4d:ea:62:ac:99:42:f0:d8:f1:
3d:f1:4f:72:0e:66:0e:36:97:84:e8:df:f5:31:0a:
00:6e:8d:8c:df:de:df:f1:07:9a:20:6d:05:f6:6d:
db:a5:b9:1b:4c:8d:3d:86:7e:42:db:b8:15:b7:fd:
09:fd:ff:3b:e5:df:e3:b7:e0:27:19:98:f4:0f:19:
d1:09:7d:a6:24:1d:2c:81:aa:28:59:98:a5:4f:3d:
a6:9e:a3:e0:83:e1:9b:58:ab:69:55:5f:3a:fa:58:
5b:29:da:1f:f5:78:b6:32:1e:5f:61:9b:d4:ff:42:
33:de:46:8b:4e:ec:bc:6c:3c:95:55:e8:a7:36:70:
d2:17:14:e9:b1:11:1e:7a:00:51:51:0d:57:7d:e9:
c8:f3:cb:f9:5c:ad:e8:85:cd:62:4c:1a:f0:2f:4d:
ce:e8:0d:be:c6:e9:42:6d:61:12:e5:af:4d:c5:73:
f3:e4:6a:0d:27:92:b3:5c:a5:bc:6e:06:1c:33:85:
84:2c:ed:bd:6e:05:30:17:e7:28:19:d3:e1:67:d4:
71:70:59:96:ff:93:b5:c1:bf:c1:07:c6:40:85:6f:
90:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:DD:23:6D:80:4D:5A:A9:A2:CA:B3:9C:F5:10:22:AC:05:E0:B1:83
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/1e98c2-2bae-4d14-9bcc-855e6072ef36/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/1e98c2-2bae-4d14-9bcc-855e6072ef36/1/fd0jbYBNWqmiyrOc9RAirAXgsYM.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.142.111.0/24
IPv6:
2001:67c:170::/48
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
47908
Signature Algorithm: sha256WithRSAEncryption
5f:f0:7b:c7:fc:21:dc:a5:e7:74:7a:04:9b:eb:ec:86:ef:61:
95:55:e6:d4:dd:db:e8:1c:5e:58:ec:78:77:e7:58:52:96:59:
c7:41:b9:fc:c3:8a:d8:b9:6a:39:75:0c:cf:a4:e5:14:f0:18:
76:e9:d6:de:56:3f:ae:c8:55:42:60:87:5e:41:5b:b3:f3:ed:
89:d7:f1:69:90:7b:f6:b4:48:b9:8f:a9:76:72:23:3d:d6:72:
08:ea:00:d0:d9:6b:81:d2:b3:cb:35:65:08:0d:84:4a:a3:86:
5d:53:e8:eb:3d:da:cf:d5:a9:92:fa:2c:fd:84:e0:7d:fd:47:
00:90:18:ed:fe:8a:2c:d3:36:5f:4b:09:5e:1c:d5:be:84:cb:
65:a3:44:35:07:fb:ae:cb:46:33:fb:33:72:52:41:3f:c4:05:
c5:fc:c0:f6:92:6a:45:2c:7c:a7:f6:bb:55:ac:6f:c4:d8:62:
9f:3f:97:47:c9:10:df:d4:f5:40:21:ff:44:60:9d:2e:b4:1e:
2e:26:7e:91:b2:3b:cf:df:8b:ba:15:29:29:eb:37:e6:29:52:
15:29:58:86:a4:d3:33:f7:25:24:bc:84:1a:a8:81:8d:d3:ca:
32:d5:1a:f7:1b:25:6e:aa:13:3a:c7:1b:85:6f:c7:68:95:70:
6b:35:d6:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 22:45:19 2024 by rpki-client on console-fra.rpki-client.org