Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/hw4qIH9pdyFKlXqOFI0fi1pc0II.cer
File: hw4qIH9pdyFKlXqOFI0fi1pc0II.cer (raw, json)
Hash identifier: gVP9dF+VzwcBxtsstKP1zvFwW0P16/LzdH2CxZxleRg=
Subject key identifier: 87:0E:2A:20:7F:69:77:21:4A:95:7A:8E:14:8D:1F:8B:5A:5C:D0:82
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019300E865A2B1FF0C67D6725565218CB839
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/af/421158-f0c6-4619-afa5-8a94687dba6f/1/hw4qIH9pdyFKlXqOFI0fi1pc0II.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/af/421158-f0c6-4619-afa5-8a94687dba6f/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 06 Nov 2024 09:57:30 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 213909
IP: 188.211.169.0/24
IP: 193.163.93.0/24
IP: 2a11:1f40::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:00:e8:65:a2:b1:ff:0c:67:d6:72:55:65:21:8c:b8:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Nov 6 09:57:30 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=870e2a207f6977214a957a8e148d1f8b5a5cd082
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:1c:5c:58:78:30:30:e4:80:d4:c4:5f:83:27:
1a:d1:48:38:cc:da:b3:c9:87:15:4d:7a:df:2f:24:
46:67:10:06:c2:aa:a7:19:a0:cd:0d:e8:48:79:4e:
93:fc:53:cc:8a:28:35:87:0a:d0:42:3b:05:50:25:
18:a2:b1:ea:47:26:7f:69:5a:2a:7e:d4:56:60:09:
93:69:cf:8c:c7:c7:52:66:7a:4b:da:34:0b:1c:86:
4f:46:c6:2b:11:48:da:1e:3b:0d:c3:7a:d7:ac:26:
0f:db:bd:51:0d:e1:5e:61:1d:02:69:57:ef:ab:d9:
f6:05:74:ba:3d:e2:da:bb:ea:ef:06:cf:a8:41:4a:
ae:8a:6b:89:f3:e9:36:23:94:36:b7:34:12:55:34:
cb:7e:36:83:d5:d0:36:7f:40:73:c3:39:a2:3e:ab:
8f:dd:d0:f5:5d:fc:7f:d1:fd:f9:87:cf:3f:23:0b:
88:eb:f6:20:8e:31:76:2e:b2:53:8b:36:26:c9:fe:
19:bf:a8:34:32:06:ed:15:58:bd:07:d2:74:5b:8f:
bd:eb:4c:c9:d0:bf:61:be:6b:4e:ef:67:d1:f3:21:
3a:dc:97:57:df:c1:9b:37:8b:7e:26:d1:41:c6:b2:
7b:ad:11:90:ed:c0:85:41:e8:36:62:f8:2d:0c:77:
27:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:0E:2A:20:7F:69:77:21:4A:95:7A:8E:14:8D:1F:8B:5A:5C:D0:82
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/421158-f0c6-4619-afa5-8a94687dba6f/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/421158-f0c6-4619-afa5-8a94687dba6f/1/hw4qIH9pdyFKlXqOFI0fi1pc0II.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.211.169.0/24
193.163.93.0/24
IPv6:
2a11:1f40::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
213909
Signature Algorithm: sha256WithRSAEncryption
87:78:cb:1f:59:63:3f:a4:4a:23:6f:b5:5c:3c:2f:9a:7a:8a:
19:7f:c6:ad:0c:f3:97:70:ba:65:6d:9a:3c:2f:ce:f1:e4:22:
7e:b2:c5:0f:a4:1f:17:50:7a:09:04:0e:1a:52:3c:7e:35:04:
60:1f:27:e3:cb:82:29:98:a0:1d:08:ad:7a:59:6e:31:d0:52:
56:a5:cb:5f:28:94:b5:05:0f:fc:7e:13:c7:4f:97:dd:75:28:
17:77:07:63:73:b4:1d:cc:e4:2d:88:07:dd:fa:e1:5f:90:65:
97:4d:b2:b3:56:0f:bd:49:3d:de:19:71:05:92:81:c7:ad:76:
af:df:ba:6c:ae:fe:07:27:81:20:68:61:e3:aa:7d:ae:c6:51:
1d:c8:00:d2:ff:50:b2:5a:6b:6b:27:33:17:c9:a9:62:d7:79:
19:ae:06:8e:0d:9b:44:34:03:c1:a0:f9:3c:a6:8c:e5:a4:68:
9d:25:57:10:90:f2:49:2d:c2:c1:dc:b0:48:f1:a1:90:24:ec:
0e:ca:bf:54:a1:bf:18:80:7e:ae:cc:c9:d2:bb:50:66:49:2c:
55:6d:d5:9e:b9:d4:54:08:b5:b3:96:2a:a3:36:15:ce:e1:e1:
fa:f2:4e:c2:f2:3a:56:2f:e7:3c:6d:72:4f:d4:40:e6:1a:51:
b7:71:61:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:19:59 2024 by rpki-client on console-fra.rpki-client.org