Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/iYgl0vBkmJs4x4HyqFNRiaJpKMM.cer
File: iYgl0vBkmJs4x4HyqFNRiaJpKMM.cer (raw, json)
Hash identifier: 8tgO/awwsA0XsuL2UZ7a/ET2bnmlBfpw2PnCcBL6EKs=
Subject key identifier: 89:88:25:D2:F0:64:98:9B:38:C7:81:F2:A8:53:51:89:A2:69:28:C3
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC8DE71B0DAB0FCF1D0B79CA1D178A51A
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/36/0aa4d0-05e4-4802-99d8-ecae41446b77/1/iYgl0vBkmJs4x4HyqFNRiaJpKMM.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/36/0aa4d0-05e4-4802-99d8-ecae41446b77/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 06:31:10 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 28831
IP: 62.169.32.0/19
IP: 185.107.148.0/22
IP: 2a01:7460::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:de:71:b0:da:b0:fc:f1:d0:b7:9c:a1:d1:78:a5:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 06:31:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=898825d2f064989b38c781f2a8535189a26928c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:d5:ae:6c:6b:30:0e:a3:37:c9:97:17:7b:03:
a9:88:6f:c7:65:99:03:f4:a2:71:fc:6c:bf:f0:50:
19:e9:8d:40:89:e6:17:4f:38:5e:ff:60:b8:5f:c3:
0d:9a:9e:ea:01:0f:5e:db:8d:75:59:9e:19:35:52:
2c:37:62:12:16:2e:1b:e8:6b:9b:7d:85:38:94:d2:
b6:74:f2:8b:f5:21:d9:0d:9d:7c:d0:bb:c8:4a:31:
b2:ad:ab:f4:52:34:e4:cb:1d:4f:58:7b:f7:84:80:
a0:98:ff:d9:28:a9:18:b1:3c:c8:01:9b:30:02:32:
56:73:07:e6:44:1f:72:2c:74:0c:4e:bf:ca:83:ed:
14:bf:99:1d:88:0a:f8:a8:1e:d5:9d:22:bb:7a:0e:
ee:00:7e:c0:57:e3:e3:b0:d3:5a:ce:74:8b:c1:d9:
e2:e5:f4:4d:20:29:47:35:71:b9:20:e6:be:c4:dd:
94:d0:e8:04:5d:bb:14:fc:d0:81:d7:0b:e3:b2:8b:
71:c8:9d:2c:cd:2f:85:5a:b3:0a:88:df:ed:44:e4:
41:56:d5:dd:d4:49:25:d6:89:46:a1:a5:a6:a2:65:
43:d0:66:66:2a:48:a9:8e:bf:d4:8a:4f:32:d1:1a:
31:7d:ad:0d:ef:a6:42:86:46:f3:20:fc:0f:65:a9:
2a:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:88:25:D2:F0:64:98:9B:38:C7:81:F2:A8:53:51:89:A2:69:28:C3
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/0aa4d0-05e4-4802-99d8-ecae41446b77/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/0aa4d0-05e4-4802-99d8-ecae41446b77/1/iYgl0vBkmJs4x4HyqFNRiaJpKMM.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.169.32.0/19
185.107.148.0/22
IPv6:
2a01:7460::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
28831
Signature Algorithm: sha256WithRSAEncryption
18:c0:5c:ca:54:ce:5a:0c:d8:a4:eb:0b:b2:9b:df:c7:ec:ec:
1b:bb:03:be:48:65:2c:71:02:c8:6e:f7:f6:9f:83:ec:fd:ec:
be:26:b5:0f:49:56:c2:e8:ec:a8:12:c0:00:11:04:93:42:02:
dd:f2:b5:1c:f9:e8:d5:97:e2:8c:cd:f1:85:40:31:26:b1:ee:
c6:39:03:c5:e8:92:62:09:c6:51:01:29:50:c5:01:2c:1e:f8:
be:82:f3:a0:81:4c:08:50:c5:4a:24:c6:b0:86:22:a9:4b:9b:
f5:6d:f9:65:f5:23:87:27:3a:f9:0e:4a:87:09:05:e9:26:3c:
dc:13:4a:ea:7a:9a:71:aa:4e:1f:e9:5f:24:c6:7b:02:33:13:
95:00:6d:6a:93:18:74:7d:fb:fb:ee:d6:69:81:67:89:29:0c:
61:06:1b:f1:c6:7f:c7:42:f7:85:e7:af:27:07:76:c6:ce:86:
13:bf:d8:17:92:38:6b:ba:fc:f0:f4:1d:2e:9e:37:bf:a7:cb:
da:cb:11:ef:5c:35:17:f8:be:6e:e5:91:d4:e9:91:cc:3e:b2:
13:23:c0:e7:24:96:5d:bd:6a:98:8a:0d:a2:f5:01:cc:b4:d8:
62:b7:4d:eb:76:c0:f1:45:c5:a0:3d:3f:89:e5:bf:ae:ba:5a:
00:63:23:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:20:09 2024 by rpki-client on console-fra.rpki-client.org