Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/gaaIASwSJngYX8634QN_Dh7ReGE.cer
File: gaaIASwSJngYX8634QN_Dh7ReGE.cer (raw, json)
Hash identifier: 6nJk4jQOr5XF+HEi+wkROaIiOY5m3P7e5kru25N0KZQ=
Subject key identifier: 81:A6:88:01:2C:12:26:78:18:5F:CE:B7:E1:03:7F:0E:1E:D1:78:61
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC492E13A78DA4D04F27D10F5FFED6CC1
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/a7/c7c207-a3ba-49c8-a894-084d4748c385/1/gaaIASwSJngYX8634QN_Dh7ReGE.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/a7/c7c207-a3ba-49c8-a894-084d4748c385/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 10:30:09 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 51877
IP: 91.220.162.0/24
IP: 2001:67c:37c::/48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:92:e1:3a:78:da:4d:04:f2:7d:10:f5:ff:ed:6c:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 10:30:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=81a688012c122678185fceb7e1037f0e1ed17861
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:a1:40:58:fb:68:fc:77:ed:78:ce:00:e2:dd:
cf:32:9b:71:91:1c:e0:cb:75:6b:ca:37:56:19:ab:
bd:82:ba:61:a2:2a:1e:74:e1:4c:5d:f0:41:61:ee:
83:d2:cf:ba:c8:be:e0:24:46:9d:4b:46:dd:98:69:
7b:9b:70:89:42:6e:53:e1:10:0c:1f:e7:c2:5a:63:
ac:f2:41:4f:85:02:4a:66:9c:30:88:d4:b8:2f:d4:
58:1b:c7:4e:72:a3:53:d5:46:91:e2:bc:d0:8d:46:
12:90:d6:5e:73:c3:3b:41:5c:f2:a8:d0:18:dd:e5:
ab:ea:5a:61:34:70:28:3d:49:7c:bc:50:43:ed:57:
da:48:cc:96:60:42:2f:91:35:ac:d9:67:0e:b7:40:
bc:e7:d4:04:3e:0d:01:95:65:cf:01:8e:44:d2:86:
99:cd:50:a8:05:85:3b:01:b8:cc:8d:73:eb:d5:d5:
3e:33:3a:1f:3b:c4:17:13:d6:15:e9:22:de:26:2a:
ce:74:42:8d:b7:9f:40:00:8a:34:a6:67:ff:c4:2d:
da:56:31:dc:22:97:9b:cd:80:3d:29:7f:1f:2a:27:
18:42:e8:4b:0f:8c:24:2d:03:fd:60:37:40:f8:3f:
84:32:49:68:ec:16:5f:87:49:c2:87:aa:16:26:55:
e3:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:A6:88:01:2C:12:26:78:18:5F:CE:B7:E1:03:7F:0E:1E:D1:78:61
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/c7c207-a3ba-49c8-a894-084d4748c385/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/c7c207-a3ba-49c8-a894-084d4748c385/1/gaaIASwSJngYX8634QN_Dh7ReGE.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.220.162.0/24
IPv6:
2001:67c:37c::/48
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
51877
Signature Algorithm: sha256WithRSAEncryption
11:65:0c:62:cb:5d:c6:fe:dc:71:52:a7:17:ca:c0:53:95:f1:
a1:66:07:6c:bd:1a:23:11:25:79:f0:3a:42:e3:70:77:c5:33:
f6:79:e2:45:16:91:97:2f:97:c9:5b:da:58:c7:d1:85:54:69:
81:68:61:32:ce:7e:44:6f:13:03:aa:12:3e:3c:ad:dd:0a:aa:
a5:24:91:e4:ed:53:72:a8:16:ae:3c:8b:9a:88:9f:68:32:fb:
cb:3d:3b:a4:fc:e7:25:8a:b5:9c:3e:7e:26:a7:a1:be:fe:48:
83:50:42:81:81:68:d7:9d:1c:82:f2:2f:c2:83:d9:88:0a:9c:
71:f9:bc:32:64:6c:34:a9:d2:29:6d:1e:dc:1b:4d:e3:c9:e4:
23:da:85:14:95:88:78:e9:1b:e8:d1:5f:09:e5:c6:27:92:bd:
c2:1a:d4:2b:d6:c2:d2:6c:de:00:e7:5c:57:22:20:cc:ce:5a:
26:fa:53:4c:9d:aa:42:25:a7:78:a0:c6:ab:bf:b0:08:3b:a4:
03:09:08:51:82:ee:e3:30:fa:30:16:07:7a:c9:64:15:9e:9f:
f5:04:9a:6a:0f:03:ac:be:ca:b2:27:30:91:2d:de:fb:f4:fb:
39:ef:1c:7f:13:78:ed:01:77:50:82:ac:75:e0:03:94:10:66:
33:fa:e9:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:40:38 2024 by rpki-client on console-ams.rpki-client.org