Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/jdCYF9_qTGbJQY-fOQbx0OB8ydQ.cer
File: jdCYF9_qTGbJQY-fOQbx0OB8ydQ.cer (raw, json)
Hash identifier: O/XNe++Z3p1rN50jC9lEc7X07OmXtsHHBoFnkif+Dfw=
Subject key identifier: 8D:D0:98:17:DF:EA:4C:66:C9:41:8F:9F:39:06:F1:D0:E0:7C:C9:D4
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC7954C0BE2617C3423310BE1209465E7
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/c7/9337ec-b4de-449a-b607-ea9cb527ae71/1/jdCYF9_qTGbJQY-fOQbx0OB8ydQ.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/c7/9337ec-b4de-449a-b607-ea9cb527ae71/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 00:31:39 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 212464
IP: 2001:67c:2be0::/48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:95:4c:0b:e2:61:7c:34:23:31:0b:e1:20:94:65:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 00:31:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8dd09817dfea4c66c9418f9f3906f1d0e07cc9d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:86:15:09:c1:54:ec:a3:68:30:43:5d:26:3c:
ae:a5:86:2d:ce:e5:f0:7b:de:99:b0:50:c1:21:48:
db:e9:54:c1:8a:11:36:87:b3:be:88:51:62:08:45:
57:e1:d3:8a:9d:8e:c5:44:e7:e0:d1:02:aa:2a:f6:
ec:b3:ef:20:85:6c:29:55:80:7c:36:ad:10:44:85:
89:2f:dd:ba:b2:88:1a:1a:49:2a:e0:5f:de:c2:ac:
9d:3a:08:d3:3a:bc:95:ce:8e:10:53:8b:13:11:e4:
85:cf:8e:38:76:40:aa:f1:b5:95:39:93:c9:4d:31:
4f:39:8c:0e:64:4c:ac:34:c6:ac:98:28:df:9d:96:
52:b2:6c:c2:d2:d5:39:0a:07:36:03:6d:36:12:3d:
bc:20:8f:a5:be:8f:d0:ee:7b:9d:2e:41:f4:69:94:
1a:4e:2b:4b:63:d6:9b:ca:b2:b6:fb:a7:3c:4a:cd:
f9:60:a2:4f:a4:37:c6:ec:57:16:71:16:f5:e0:39:
e6:91:53:a4:ca:2f:6f:89:f9:fe:7f:2d:58:57:ce:
ad:c8:68:24:6b:b4:9b:09:d6:92:c1:9a:63:ad:7b:
33:a8:04:c3:d2:7f:f0:f0:7f:03:ae:35:82:c4:4e:
38:d3:f3:7d:31:78:92:d6:58:1d:bc:3c:aa:3c:47:
54:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:D0:98:17:DF:EA:4C:66:C9:41:8F:9F:39:06:F1:D0:E0:7C:C9:D4
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9337ec-b4de-449a-b607-ea9cb527ae71/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9337ec-b4de-449a-b607-ea9cb527ae71/1/jdCYF9_qTGbJQY-fOQbx0OB8ydQ.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:2be0::/48
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
212464
Signature Algorithm: sha256WithRSAEncryption
90:56:ab:00:b8:79:a5:ff:3f:e0:4d:89:ed:0d:47:f9:7d:76:
e4:ee:03:52:94:d9:bb:02:2d:90:08:97:60:41:58:c1:63:28:
45:aa:a6:df:09:f9:9d:7f:d9:57:76:3b:67:fa:e9:76:9f:0c:
ec:8f:bc:d7:13:c3:6c:9c:8e:b2:69:84:45:4b:f5:fa:fd:50:
ce:99:b0:ba:cc:d5:d4:20:d8:8d:d1:73:98:64:01:0f:b6:38:
72:69:11:32:ab:df:ba:17:ee:de:96:bf:d3:e6:3b:4e:4f:44:
57:30:19:3b:79:29:ce:91:16:0c:6a:ed:61:ac:85:54:2a:b8:
75:14:2e:c7:cc:b1:6d:ce:e5:c4:15:5c:c4:02:60:5c:41:90:
f3:40:3a:4a:52:3c:ed:1f:f3:7c:ac:4e:ee:2c:fb:f5:7b:f7:
b4:3d:53:aa:5d:55:36:71:70:59:e2:e7:07:ca:e7:01:fd:8e:
02:8c:7a:9b:c4:39:52:ac:e9:40:3e:5d:ad:31:82:3b:86:5b:
1c:fd:7c:19:89:d1:6a:5a:14:93:0e:0c:42:a8:03:e7:1c:4d:
2b:44:18:6e:98:3b:bc:d6:55:a0:82:06:d1:6a:94:ad:83:37:
6a:5a:b0:ba:3b:06:7d:ba:dc:21:db:6c:0a:85:95:50:97:ce:
7b:2e:ee:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:20:27 2024 by rpki-client on console-fra.rpki-client.org