Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/g1-7knspUGK30KcgR7a0qhsPmyk.cer
File: g1-7knspUGK30KcgR7a0qhsPmyk.cer (raw, json)
Hash identifier: 8ygUkJn3LPLPV17t5uPsTFMaiRs7+h+iBMqC9QlqUbI=
Subject key identifier: 83:5F:BB:92:7B:29:50:62:B7:D0:A7:20:47:B6:B4:AA:1B:0F:9B:29
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC492FFF19896C6A70DC3C77BFE3F0346
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/7a/c64bf4-c605-461a-bb74-b18f8f7d90e8/1/g1-7knspUGK30KcgR7a0qhsPmyk.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/7a/c64bf4-c605-461a-bb74-b18f8f7d90e8/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 10:30:17 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 206909
IP: 185.172.104.0/22
IP: 2a0b:1100::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:92:ff:f1:98:96:c6:a7:0d:c3:c7:7b:fe:3f:03:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 10:30:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=835fbb927b295062b7d0a72047b6b4aa1b0f9b29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:df:a6:bb:be:0b:60:89:b0:60:ea:45:0e:7b:
0a:4d:2f:e7:29:59:62:f0:1f:a5:92:2e:66:e7:f4:
5c:bd:78:4d:d4:a2:ac:c0:ab:0b:b8:40:3d:40:c7:
fe:b9:25:c0:75:1b:e7:6d:74:81:3b:16:5f:42:2f:
fb:8e:98:06:60:be:42:ec:6a:a2:ce:ce:f4:ae:6c:
17:1a:42:aa:62:4a:03:5c:41:e8:3d:cc:4e:e8:ca:
9d:a5:05:13:7a:3c:59:66:24:89:ed:b1:33:4b:0b:
5c:fc:74:b4:24:7c:27:59:b3:c8:06:82:29:9e:6d:
b4:7a:ac:ce:53:28:e2:e3:bf:37:2e:74:87:06:f7:
5a:b9:36:13:94:72:6e:f6:4a:cd:69:c8:9b:33:9e:
ae:03:ba:64:59:bf:60:b4:c9:dd:10:54:8e:5f:c7:
3d:77:73:fc:e6:d2:9f:a9:83:1d:b1:5a:08:b2:60:
18:8e:19:8a:b2:d8:43:ac:7b:47:67:ed:7c:06:68:
ee:f8:84:8f:cc:0f:ea:b8:bc:d4:49:5a:a0:b9:2b:
e5:89:15:6f:87:07:ba:bb:3e:02:07:ac:74:71:de:
29:a2:29:0c:65:35:b7:0c:e6:0c:ca:df:5b:47:ed:
bc:d6:80:27:33:7a:8d:2b:c7:74:7d:0a:e8:3c:f9:
69:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:5F:BB:92:7B:29:50:62:B7:D0:A7:20:47:B6:B4:AA:1B:0F:9B:29
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/c64bf4-c605-461a-bb74-b18f8f7d90e8/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/c64bf4-c605-461a-bb74-b18f8f7d90e8/1/g1-7knspUGK30KcgR7a0qhsPmyk.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.172.104.0/22
IPv6:
2a0b:1100::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
206909
Signature Algorithm: sha256WithRSAEncryption
2a:56:54:65:33:9b:01:7c:1a:a9:8b:38:d3:de:2a:e0:d2:c7:
0c:8e:d5:23:0a:09:5d:3a:e6:0c:c1:6f:32:5b:cd:6e:0d:bd:
9a:df:cf:82:ab:42:bd:98:9c:1a:29:56:4c:71:0c:96:be:e8:
59:bd:a5:42:74:5b:4b:3a:3b:00:a3:34:59:f2:ae:1c:ab:26:
d4:84:95:85:fb:fb:ee:65:ab:47:a3:51:2a:3b:22:3f:b5:40:
4e:98:a4:a8:6e:fd:bf:88:e4:4a:df:9b:bf:2f:c0:15:39:73:
75:b3:fb:ba:78:d4:02:40:15:c1:17:9f:ed:d5:a0:b7:6a:9c:
32:ce:ad:9a:1e:b0:6e:8c:d8:2c:69:ec:c1:28:20:8e:48:2e:
41:94:15:7e:05:36:ad:6a:cd:52:70:88:89:28:0b:72:bb:4f:
3b:2e:c2:b3:1d:60:32:55:96:eb:16:92:1b:8b:f3:8d:0b:b2:
f1:aa:70:5e:22:35:7d:ac:ac:d9:24:09:c5:7d:9f:7f:38:90:
93:13:b6:ad:49:9e:05:e2:ac:dc:75:bc:9b:17:5e:37:ef:84:
53:00:8c:a8:6b:d5:35:3d:9a:47:69:64:9e:f3:de:8d:ec:51:
11:41:80:b0:06:2b:ab:f8:be:d0:5d:0d:a9:a8:24:6e:7b:46:
a4:95:c3:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:19:25 2024 by rpki-client on console-fra.rpki-client.org