Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/jagkvGMczuGumdcQOv0tx08eKcQ.cer
File: jagkvGMczuGumdcQOv0tx08eKcQ.cer (raw, json)
Hash identifier: ZEjZOrcT1bFUPyeBV+P0mW/QZ/TBC1brR3dZX+poGSA=
Subject key identifier: 8D:A8:24:BC:63:1C:CE:E1:AE:99:D7:10:3A:FD:2D:C7:4F:1E:29:C4
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC3495A30368F4CF796A0918D167C663E
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/ac/1caa79-b8c4-4d08-9bbe-386c1f8b0640/1/jagkvGMczuGumdcQOv0tx08eKcQ.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/ac/1caa79-b8c4-4d08-9bbe-386c1f8b0640/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 04:30:13 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 204437
IP: 82.130.64.0/18
IP: 129.132.0.0/16
IP: 192.33.87.0 -- 192.33.110.255
IP: 2001:67c:10ec::/48
IP: 2001:67c:2e40::/48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:49:5a:30:36:8f:4c:f7:96:a0:91:8d:16:7c:66:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 04:30:13 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8da824bc631ccee1ae99d7103afd2dc74f1e29c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:a1:92:e6:b2:26:44:7c:ba:69:fb:d5:58:6b:
ed:91:7d:41:8b:b9:55:ce:89:ae:b9:0d:5e:d3:9a:
a0:1f:cf:57:56:ea:89:6b:e8:b9:5b:61:40:96:b4:
c3:c0:ee:ed:ff:a3:b6:10:d5:9b:41:c0:23:4c:dc:
ac:a3:59:15:ea:41:f7:84:6c:b1:59:ae:ad:ac:ae:
11:70:8e:71:3a:f6:1b:f6:05:21:2a:fb:66:88:f7:
73:d7:a7:19:c3:f4:7a:af:9b:23:db:e6:40:f4:3c:
71:b1:fb:f4:99:f3:b2:40:c0:41:ce:1e:32:e8:b8:
d5:03:fa:96:c4:93:f0:7c:08:80:ba:ca:56:39:d2:
10:29:33:b7:53:78:a3:1e:ea:07:09:7e:07:d4:49:
4e:2d:11:9c:bf:de:e3:86:0a:0c:b4:15:eb:ce:c2:
24:1f:cc:3d:24:42:7e:a4:71:07:7b:5e:b6:f7:d4:
ea:8a:89:01:fc:88:be:4b:e2:94:e3:7d:77:78:23:
56:ef:aa:25:a9:ad:ee:1e:1d:df:29:ea:c7:36:d0:
12:79:31:fc:33:b5:38:72:ee:2a:a7:79:ee:d9:6f:
15:a5:17:e0:f8:3a:41:04:de:4b:b2:fe:23:07:44:
fe:b3:e6:a0:e1:48:d9:84:2e:5c:63:f5:c8:a0:11:
df:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:A8:24:BC:63:1C:CE:E1:AE:99:D7:10:3A:FD:2D:C7:4F:1E:29:C4
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/1caa79-b8c4-4d08-9bbe-386c1f8b0640/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/1caa79-b8c4-4d08-9bbe-386c1f8b0640/1/jagkvGMczuGumdcQOv0tx08eKcQ.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.130.64.0/18
129.132.0.0/16
192.33.87.0-192.33.110.255
IPv6:
2001:67c:10ec::/48
2001:67c:2e40::/48
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
204437
Signature Algorithm: sha256WithRSAEncryption
28:a7:e5:11:af:f7:02:a8:18:f7:2f:f8:2d:92:5c:f6:6f:41:
69:93:2f:0a:f0:ce:46:ab:e3:2a:b2:08:bf:34:41:96:80:b3:
b0:49:45:6e:4a:80:b8:68:7f:f0:85:c9:c6:a5:70:0f:f1:5f:
46:c9:27:56:99:a7:30:b4:50:5a:ae:9c:18:11:df:f9:f2:34:
df:41:b4:0c:09:b9:57:4a:c0:0e:b4:b9:65:9d:59:9f:f2:ff:
cd:5b:aa:97:08:a8:0f:e1:db:de:b5:1f:87:c8:16:8b:ae:21:
0b:77:a4:02:2e:30:6f:b5:f7:c2:81:38:39:65:b7:1f:3b:c2:
b7:22:8b:7f:82:0e:fb:87:ac:61:c7:95:a3:c2:96:67:f2:c5:
d9:03:9f:78:b0:86:cf:8d:38:89:d6:cb:b1:85:cc:aa:44:12:
be:91:8c:e6:15:6c:7f:d9:30:f2:e1:31:25:10:fe:7e:0c:7a:
d8:f0:d9:61:bf:a0:41:15:41:c3:f7:08:ba:99:07:22:48:aa:
a5:07:ff:c0:14:2a:ba:06:ee:6b:c6:de:ae:98:4b:50:58:9a:
b5:4b:d0:82:7f:15:b8:da:c8:28:dd:42:ed:05:85:3b:ac:b0:
c7:74:d7:22:50:7e:8a:f6:58:8a:7e:5c:7a:36:f1:f4:ae:1d:
50:99:2c:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 00:55:17 2024 by rpki-client on console-fra.rpki-client.org