Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/jRrIPuOj-WjWatL99GFue7Hk0dc.cer
File: jRrIPuOj-WjWatL99GFue7Hk0dc.cer (raw, json)
Hash identifier: uAVXcY10SdrjqBno6m5YKaeDZ5aLENS9D5lEtczHybw=
Subject key identifier: 8D:1A:C8:3E:E3:A3:F9:68:D6:6A:D2:FD:F4:61:6E:7B:B1:E4:D1:D7
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018D6401EF027F66B747FB1286A8C3655C93
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/jRrIPuOj-WjWatL99GFue7Hk0dc.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 01 Feb 2024 09:31:04 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: IP: 62.233.59.0/24
IP: 91.225.224.0/22
IP: 185.164.175.0/24
IP: 185.227.7.0/24
IP: 188.191.96.0/20
IP: 193.3.20.0/24
IP: 2a0f:a100::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:64:01:ef:02:7f:66:b7:47:fb:12:86:a8:c3:65:5c:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Feb 1 09:31:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8d1ac83ee3a3f968d66ad2fdf4616e7bb1e4d1d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:de:f4:7e:da:c1:15:97:3e:e8:58:95:1d:80:
99:8d:de:26:a5:a1:51:9d:bd:87:3d:e6:7a:d2:8a:
ea:70:bf:42:8e:8a:15:ef:72:00:1d:d7:8f:ba:be:
7c:bb:c9:dc:c3:68:93:84:8e:61:51:ce:b6:b8:97:
78:ae:79:1a:c7:6e:8a:c4:52:bd:72:01:c2:ca:14:
92:1f:af:d6:9d:3a:e1:a3:7b:be:ba:5c:02:54:5c:
57:12:b1:d9:4a:28:9d:c5:e6:bd:07:38:64:db:3b:
38:f8:71:67:30:1f:d1:a5:74:fd:6e:c9:6a:c2:ca:
c9:a4:0e:d4:78:1b:96:17:af:2c:53:53:4e:f1:c1:
78:a8:1a:1d:48:88:88:63:fe:e4:99:5d:2a:40:57:
00:ed:27:a8:5a:8e:8e:9d:72:b0:de:0d:19:6c:66:
e7:2e:7c:64:bc:fd:2a:e3:d8:21:e3:59:a7:ba:e7:
6f:b4:c3:25:9c:e6:bd:4b:83:6b:19:5b:61:b2:40:
9a:56:40:0e:06:c8:92:7e:dc:1f:94:6b:47:e7:ec:
f1:88:b2:07:70:b4:e3:7d:a8:cc:1e:82:b1:e7:97:
5a:e2:7f:30:7c:65:91:c8:6c:ea:dc:7a:21:ff:ba:
93:a6:10:dd:b8:07:c5:1d:8c:cb:d0:0b:4a:9e:57:
a9:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:1A:C8:3E:E3:A3:F9:68:D6:6A:D2:FD:F4:61:6E:7B:B1:E4:D1:D7
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/jRrIPuOj-WjWatL99GFue7Hk0dc.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.233.59.0/24
91.225.224.0/22
185.164.175.0/24
185.227.7.0/24
188.191.96.0/20
193.3.20.0/24
IPv6:
2a0f:a100::/29
Signature Algorithm: sha256WithRSAEncryption
99:00:65:45:9e:80:b0:18:31:65:28:80:fc:48:05:df:32:58:
65:0c:d4:79:06:ab:d9:41:87:6d:37:2b:94:a8:35:8d:2c:cb:
cc:37:b5:a1:9c:6c:d7:da:cc:6c:dd:6c:d7:df:a2:a5:2a:1d:
a5:88:3a:8f:e2:c4:90:6b:21:36:5e:15:60:d5:2b:f4:e5:53:
eb:82:09:32:fb:00:2c:81:03:08:d8:75:85:ba:76:ca:5c:26:
cf:93:55:02:13:88:de:15:a3:07:59:cf:9e:8a:ef:63:22:6f:
75:37:cb:f1:61:25:e8:0d:55:42:3b:07:e9:ed:8f:89:62:a5:
be:77:c2:19:da:f5:17:fe:6f:d0:f4:60:1f:1c:01:73:60:fe:
cf:f9:5b:8a:52:90:f0:a2:81:9c:92:27:e5:f0:59:83:2c:82:
42:c0:ef:fa:4e:1e:3e:55:01:f4:b2:e7:3f:21:29:d7:63:0f:
e8:50:06:77:e7:40:38:a0:ae:48:6b:28:d6:d2:f7:20:19:72:
40:47:5b:2b:89:fd:cd:15:78:03:a0:db:69:74:bd:29:06:40:
97:9b:37:db:de:12:8c:f0:58:fa:59:8a:5b:27:10:e2:4a:fc:
68:b4:98:78:d4:dd:f1:f8:7d:29:72:32:5a:69:a7:e8:b4:fd:
d1:4d:e1:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 00:55:14 2024 by rpki-client on console-fra.rpki-client.org