Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fgQjIR9JsTNelLi9u7EWhmT2gE8.cer
File: fgQjIR9JsTNelLi9u7EWhmT2gE8.cer (raw, json)
Hash identifier: 2rHKWnNmYu32af2e3TIgG5/YCG79Qt0/xKqOnyddM3s=
Subject key identifier: 7E:04:23:21:1F:49:B1:33:5E:94:B8:BD:BB:B1:16:86:64:F6:80:4F
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC64AFF3B68B75C578D227937EA9E75E8
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/be/77ac86-31f6-4370-b433-b0e7d41b5d36/1/fgQjIR9JsTNelLi9u7EWhmT2gE8.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/be/77ac86-31f6-4370-b433-b0e7d41b5d36/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 18:30:52 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 204213
IP: 86.106.142.0/24
IP: 89.32.248.0/22
IP: 89.39.208.0/24
IP: 89.42.208.0/22
IP: 89.45.89.0/24
IP: 185.94.96.0/22
IP: 188.212.22.0/24
IP: 217.144.104.0/22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4a:ff:3b:68:b7:5c:57:8d:22:79:37:ea:9e:75:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 18:30:52 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7e0423211f49b1335e94b8bdbbb1168664f6804f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:e4:3e:38:49:cf:67:70:d1:89:f7:66:ed:da:
3a:10:ce:87:a3:c2:9f:dc:c1:3f:e5:8a:d5:54:d9:
eb:60:e2:9f:50:f3:c9:ee:7b:12:87:a9:0e:62:95:
70:39:d2:ca:1d:3f:50:a6:ec:96:60:c6:ad:56:53:
e5:e5:3d:a5:d8:d8:9e:1f:54:3c:78:b6:50:c0:4d:
1d:dc:55:97:1d:1b:ff:56:ee:b3:79:00:36:63:1f:
5f:da:e4:61:0d:2d:e8:05:10:94:2f:11:14:af:1b:
97:05:08:08:96:59:7b:a3:2c:e2:e6:f4:20:3a:12:
27:fa:b8:52:c9:60:73:58:11:e0:00:f9:1e:3f:2e:
c9:64:35:21:35:9f:cc:f0:a7:c6:3e:fa:34:8f:42:
29:e9:b2:b7:57:64:b6:2d:ac:9c:67:dc:c9:0e:30:
f3:3b:0f:00:0d:82:1e:e5:d0:98:32:9f:15:46:84:
f4:6a:e2:a7:53:b0:ac:ee:75:fe:30:8c:9f:57:d2:
dc:e7:ce:dd:b9:12:54:2b:fb:de:44:58:ae:e9:a6:
3a:83:10:39:81:74:a1:be:dc:2c:9e:12:0e:c4:37:
09:4f:7c:35:86:8d:33:51:b0:bb:6b:18:c6:f0:5d:
f4:d2:4f:58:ff:10:42:52:81:b3:82:20:18:79:c1:
2c:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:04:23:21:1F:49:B1:33:5E:94:B8:BD:BB:B1:16:86:64:F6:80:4F
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/77ac86-31f6-4370-b433-b0e7d41b5d36/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/77ac86-31f6-4370-b433-b0e7d41b5d36/1/fgQjIR9JsTNelLi9u7EWhmT2gE8.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.106.142.0/24
89.32.248.0/22
89.39.208.0/24
89.42.208.0/22
89.45.89.0/24
185.94.96.0/22
188.212.22.0/24
217.144.104.0/22
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
204213
Signature Algorithm: sha256WithRSAEncryption
0f:50:79:49:1c:56:0f:a3:43:78:f8:6f:f6:f9:63:d9:8d:1f:
af:f9:f8:ce:80:79:4d:f2:8d:ce:99:8f:62:de:b9:be:f5:f2:
44:8a:0d:75:76:0e:27:38:33:e8:fb:5a:cb:cf:06:25:1d:04:
65:a5:8d:9b:ac:f4:9b:de:3d:ff:f2:cf:3c:04:56:1c:39:53:
18:ce:0b:06:98:75:4f:ed:3d:be:24:13:d1:ee:78:67:04:37:
53:21:69:f5:d5:73:a1:72:6f:9b:c1:36:77:0b:79:a5:a1:4c:
25:63:a3:f2:3d:a4:30:53:bc:f8:46:31:21:43:0b:a2:93:9b:
f7:e1:e7:33:5d:f3:4e:6c:42:89:43:d1:1d:b3:b9:4a:be:9b:
f1:a8:a8:21:99:77:e4:ba:cc:3e:ec:00:96:a4:c6:69:0d:1a:
4e:3b:82:98:13:16:1f:4a:2c:be:ed:e4:9c:3a:e6:f4:c4:50:
11:b6:f0:b2:e1:44:d7:2c:32:13:ea:52:57:25:8e:37:f5:9f:
04:c9:aa:59:31:05:eb:d0:da:f3:50:34:5a:7c:20:a4:7e:b1:
6c:d6:05:88:eb:6e:6d:a0:1d:36:dd:24:25:6b:dd:67:b6:46:
1f:dd:cc:35:e7:55:3f:9c:1d:77:53:be:71:b5:64:6b:ed:73:
40:3e:e2:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:19:20 2024 by rpki-client on console-fra.rpki-client.org