Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/g7d8noEHbPS0zv7V7vIQf3UsNjA.cer
File: g7d8noEHbPS0zv7V7vIQf3UsNjA.cer (raw, json)
Hash identifier: Fbb9CdfjZ7SY364PlncgMprzbLwHd/G0FPvPWuSdK8g=
Subject key identifier: 83:B7:7C:9E:81:07:6C:F4:B4:CE:FE:D5:EE:F2:10:7F:75:2C:36:30
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC56E68AEDB0FAEABC7A6BC36639E2A9D
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/20/3dc4dd-80bb-4df5-af58-b7adf04e423d/1/g7d8noEHbPS0zv7V7vIQf3UsNjA.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/20/3dc4dd-80bb-4df5-af58-b7adf04e423d/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 14:29:56 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 6657
IP: 193.193.190.0/23
IP: 194.9.182.0/23
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 16:12:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:68:ae:db:0f:ae:ab:c7:a6:bc:36:63:9e:2a:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 14:29:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=83b77c9e81076cf4b4cefed5eef2107f752c3630
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:ce:c1:fe:0b:33:6e:15:01:1c:9c:6d:15:9c:
74:4d:6f:df:21:f9:90:8c:e6:c0:a8:aa:64:ca:45:
48:8e:dc:4b:0e:ec:ad:90:49:3a:0d:5b:98:d9:f2:
51:49:81:83:1f:68:85:4b:1f:ac:d2:c8:c9:71:36:
de:ff:11:9c:53:38:db:d1:83:d9:c2:4a:5c:98:67:
55:ec:d3:c3:ba:5a:1d:17:51:a2:20:1d:44:85:80:
ec:b5:1a:c4:2a:f1:6f:a7:cd:56:b6:e5:8a:90:0b:
4d:af:24:64:b5:c9:4d:ff:f8:c7:8a:c8:26:9e:c6:
7c:75:23:4e:41:c3:10:b7:8c:cb:f5:00:56:1a:55:
e6:70:8b:e8:af:9a:f0:42:da:8a:e4:cc:fa:be:ec:
2d:61:18:fb:e5:3a:e6:1a:f8:99:36:87:f8:e7:97:
eb:b7:3c:47:53:3b:02:b2:55:5b:2a:c3:1e:80:f7:
29:5a:b7:4f:8d:9f:c2:ac:58:9c:3b:8c:4f:2a:a7:
29:b7:59:bf:a1:78:c8:27:bf:45:77:f6:b7:d5:9a:
9e:b6:d8:39:7f:8d:11:2f:21:be:0c:cc:21:9e:1b:
72:3f:9f:8b:84:27:31:ab:12:43:df:bb:5a:8e:8d:
50:44:ed:32:aa:b4:81:5c:b5:71:c7:f5:95:4b:cf:
02:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:B7:7C:9E:81:07:6C:F4:B4:CE:FE:D5:EE:F2:10:7F:75:2C:36:30
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/3dc4dd-80bb-4df5-af58-b7adf04e423d/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/3dc4dd-80bb-4df5-af58-b7adf04e423d/1/g7d8noEHbPS0zv7V7vIQf3UsNjA.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.193.190.0/23
194.9.182.0/23
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
6657
Signature Algorithm: sha256WithRSAEncryption
8f:4e:d9:ad:fc:c7:e5:1a:88:23:9e:2f:d4:a2:3f:4a:1d:77:
37:9f:50:d3:65:ac:6c:ba:22:59:7c:00:22:e9:b3:9f:7d:95:
71:65:f5:be:33:fd:f8:5f:2c:ac:44:a4:73:80:b7:ae:68:55:
e9:aa:0e:4d:9c:f0:d9:72:3d:88:97:16:1b:4e:69:88:3a:8f:
8f:54:5e:9c:94:8d:16:94:0b:7f:5e:46:49:60:d3:2a:6c:1e:
e5:5f:70:86:ba:12:17:c1:99:d1:93:5b:9a:9a:12:ae:f5:18:
65:5c:db:23:a7:41:b9:9c:0e:cf:1f:3a:62:a8:a5:69:a9:0a:
f6:1e:96:40:fc:50:fa:2e:bd:12:36:b7:d7:82:34:2d:88:18:
e6:9b:b0:dd:e5:00:6b:84:75:e5:0d:76:15:7a:fe:8b:54:6e:
8d:5d:d3:5a:eb:d7:29:fd:34:b3:10:3d:56:48:e0:c7:82:b3:
a4:b7:8a:d8:3e:39:22:15:ee:37:86:80:94:e2:92:c6:f5:2b:
a9:83:13:ff:05:af:11:88:f0:58:d1:6a:28:58:75:3a:2b:f5:
b4:0f:e6:de:9f:8a:88:55:d6:52:ec:0d:80:a1:3d:fe:77:7d:
bd:ad:f0:3b:28:97:93:4c:f0:a0:db:31:2c:57:7d:51:ed:c8:
d8:35:d8:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 19:54:42 2024 by rpki-client on console-ams.rpki-client.org