Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/g7zjVWH1Qb2pfnd-aHmh1wTntC8.cer
File: g7zjVWH1Qb2pfnd-aHmh1wTntC8.cer (raw, json)
Hash identifier: 7rEyv4zn8vJeV58S7onfWEnp2Y8XvyPXEq8pC/vOjf0=
Subject key identifier: 83:BC:E3:55:61:F5:41:BD:A9:7E:77:7E:68:79:A1:D7:04:E7:B4:2F
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC34908165FEE89C0FB0BE56648847920
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/2a/35064b-7a5a-4c74-8743-fd8660c4fd6e/1/g7zjVWH1Qb2pfnd-aHmh1wTntC8.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/2a/35064b-7a5a-4c74-8743-fd8660c4fd6e/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 04:29:52 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 3259
IP: 31.44.208.0/20
IP: 45.156.132.0/22
IP: 194.5.108.0 -- 194.5.125.255
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:49:08:16:5f:ee:89:c0:fb:0b:e5:66:48:84:79:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 04:29:52 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=83bce35561f541bda97e777e6879a1d704e7b42f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:97:d8:69:b8:24:6a:a2:a8:f8:2f:16:55:44:
c6:bf:0f:c3:e7:be:ba:70:b6:bf:63:ac:f8:45:86:
4a:17:3c:7b:22:20:ed:b8:b7:ca:b8:2c:85:09:73:
e6:2b:77:af:dc:0b:8c:cd:a2:6c:75:17:81:e5:2b:
73:79:d4:29:a6:f1:ed:c7:25:18:a7:e6:7d:a8:e3:
5e:3b:30:ae:01:cf:b3:fa:30:7f:a7:3a:89:b7:f2:
14:99:a0:d7:76:bf:ab:93:43:dc:2c:01:19:ea:c1:
a7:45:29:68:ec:56:49:68:70:e1:64:24:24:bc:eb:
6b:92:bb:92:fe:5d:05:18:db:66:1f:92:a4:7f:09:
bb:4b:5a:04:47:0f:62:91:ce:cf:cc:07:07:71:4c:
6c:d3:d8:27:10:f9:f2:3b:b1:79:f7:af:f1:21:07:
38:f8:ed:c0:cf:1e:f9:19:78:1f:5b:23:ae:d1:6f:
b5:38:a1:5e:55:85:b1:5b:21:ea:59:d5:80:1b:44:
82:00:17:38:8a:dc:0b:25:b6:73:08:47:f7:6e:ea:
d4:c9:ad:34:8b:bd:11:3e:c6:30:ce:79:73:3c:71:
ec:53:20:ef:11:16:c2:36:62:46:97:29:fc:8d:f7:
f8:9e:77:2c:d1:b7:4d:b9:12:53:c9:83:e0:c6:1e:
d9:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:BC:E3:55:61:F5:41:BD:A9:7E:77:7E:68:79:A1:D7:04:E7:B4:2F
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/35064b-7a5a-4c74-8743-fd8660c4fd6e/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/35064b-7a5a-4c74-8743-fd8660c4fd6e/1/g7zjVWH1Qb2pfnd-aHmh1wTntC8.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.44.208.0/20
45.156.132.0/22
194.5.108.0-194.5.125.255
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
3259
Signature Algorithm: sha256WithRSAEncryption
0e:49:d3:d6:64:01:e4:46:66:b6:c7:5e:ad:25:a9:07:b9:35:
7c:34:07:e9:e9:e4:cb:2a:e7:5a:16:94:8b:82:5e:08:69:79:
d7:89:4b:b7:fe:cd:fc:7b:9f:3a:4a:dd:7e:1d:4f:eb:cf:69:
db:f4:04:a1:db:76:d2:4e:6c:1e:d2:36:06:80:df:e2:b8:47:
db:83:c5:ae:30:fa:7c:f1:b7:ef:f8:4c:0c:58:47:80:b8:b8:
80:0d:82:8d:72:15:c0:47:a3:4a:77:cf:60:db:9a:be:49:c2:
49:68:80:13:69:98:08:2c:40:2e:29:e1:33:6a:08:b9:99:84:
f9:8e:75:20:8f:f3:78:22:7a:12:eb:e1:8d:6e:bf:1e:0c:3a:
cb:7a:9e:4c:be:c5:12:76:4b:b6:fd:61:b5:2d:93:1c:77:c7:
86:ed:5a:81:c9:d8:82:8c:93:3f:cc:dc:2e:8a:55:57:b9:69:
d9:c0:df:bb:45:ea:a4:18:33:9e:39:25:52:f9:49:12:65:9f:
f7:cb:e0:d1:06:c6:5d:bb:bc:e1:5e:05:8c:47:8c:02:3d:a3:
a9:e3:7f:18:28:6e:a4:2f:64:5e:55:f3:92:ed:e0:24:b8:84:
ea:71:47:bd:3f:10:51:6e:56:01:f3:e7:44:e4:ac:f2:6a:dc:
ca:1f:f3:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:40:31 2024 by rpki-client on console-ams.rpki-client.org