Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/jTUmuzG54wxJBF9DaMYC7pi-wBo.cer
File: jTUmuzG54wxJBF9DaMYC7pi-wBo.cer (raw, json)
Hash identifier: yfpZmE74A2KnLtyE7SDyGYHEsf1ZHeNCi8lwXiZy9uU=
Subject key identifier: 8D:35:26:BB:31:B9:E3:0C:49:04:5F:43:68:C6:02:EE:98:BE:C0:1A
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0191EAAF5AE0DED45529DF72D3758E8A55EA
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/6a/1a4b21-fda3-4c8a-aee0-7253da3510ee/1/jTUmuzG54wxJBF9DaMYC7pi-wBo.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/6a/1a4b21-fda3-4c8a-aee0-7253da3510ee/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Fri 13 Sep 2024 09:20:46 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 207277
IP: 176.119.146.0/24
IP: 2a14:2780::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:ea:af:5a:e0:de:d4:55:29:df:72:d3:75:8e:8a:55:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Sep 13 09:20:46 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8d3526bb31b9e30c49045f4368c602ee98bec01a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:40:f8:6b:c0:c2:cd:9b:47:e0:0b:f9:09:c1:
79:fa:5d:d8:dd:51:9a:8d:63:89:de:c3:5d:c1:34:
be:5e:78:c5:b2:56:54:e3:2d:b7:d1:9c:28:4f:3e:
27:4f:b9:0f:08:f1:01:b5:a6:4c:54:01:17:e1:3b:
f1:8c:b9:51:c5:16:c1:92:50:50:07:fc:fe:05:7e:
71:da:86:bd:a8:0f:39:d0:1c:f4:05:74:0a:52:58:
dd:9b:ac:2e:50:3b:bf:20:36:c5:0c:7b:1d:4a:96:
34:b8:97:40:81:5a:97:b5:94:10:50:2e:d4:27:fc:
b5:04:fb:77:38:9c:82:9b:41:36:73:7f:2e:ff:f4:
96:ca:19:be:77:cc:81:da:77:0f:63:3d:2b:ec:64:
36:88:74:fa:54:0f:d3:8b:53:28:cc:16:c6:2a:b6:
6f:b5:cf:39:bd:57:c7:6f:2e:ed:51:ba:c7:a1:bc:
81:cf:3f:d2:e6:9f:a7:5f:57:4b:c2:30:ce:6d:60:
5a:83:a5:8c:36:a6:23:39:50:c5:21:0d:11:d2:e7:
11:38:03:92:86:51:2f:0c:c3:df:df:9c:ee:58:f5:
1b:a6:c1:5d:e7:46:2d:e3:f3:0a:0a:f0:fb:59:7d:
a6:d8:78:07:93:9f:6f:4d:77:b0:1d:3a:f6:26:c0:
0a:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:35:26:BB:31:B9:E3:0C:49:04:5F:43:68:C6:02:EE:98:BE:C0:1A
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/1a4b21-fda3-4c8a-aee0-7253da3510ee/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/1a4b21-fda3-4c8a-aee0-7253da3510ee/1/jTUmuzG54wxJBF9DaMYC7pi-wBo.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.119.146.0/24
IPv6:
2a14:2780::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
207277
Signature Algorithm: sha256WithRSAEncryption
71:12:0b:ef:38:aa:ea:d6:70:69:c1:d0:64:06:bb:87:92:cb:
83:80:f6:68:c1:55:48:ba:d8:1e:6a:55:60:57:d0:12:8a:82:
b3:af:17:a6:85:30:98:b8:df:e2:46:4e:fc:a2:b2:62:61:c3:
ce:dc:ab:b0:f9:ba:8c:35:1a:b2:0d:d5:e1:c4:50:b3:43:81:
aa:c3:ef:dd:df:92:69:63:4e:6b:26:6d:eb:28:f7:90:ce:58:
af:98:7d:fb:9c:98:0e:cf:02:02:0a:0f:9a:d0:ea:40:94:f2:
76:ba:93:c4:49:63:ed:bd:8e:fb:6e:95:71:16:0e:8e:05:56:
28:df:a7:e7:b2:f5:62:7c:99:6b:8c:74:91:41:3a:0b:f2:c3:
cf:ef:e3:c5:a1:5d:2c:97:a6:09:9e:29:7c:a2:be:43:18:4a:
4b:15:3f:b2:17:32:73:6a:45:a4:88:31:e3:a8:be:54:93:86:
2e:dc:58:36:5a:5d:a9:4a:d3:2f:65:bb:50:f8:05:f5:36:ad:
dc:1f:39:af:27:c6:c5:50:56:1e:2e:6e:3a:27:c0:90:92:a5:
70:73:52:a7:fa:29:d9:37:a2:a7:dc:56:34:b9:79:e3:3b:34:
83:08:28:a3:c9:bc:5b:0a:f0:8c:eb:28:70:b1:f7:63:3f:4d:
24:71:ff:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 11:03:02 2024 by rpki-client on console-ams.rpki-client.org