Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/jn_O1PNOfzfnUbW0XzC5nGMR-X4.cer
File: jn_O1PNOfzfnUbW0XzC5nGMR-X4.cer (raw, json)
Hash identifier: TW0Yw4qBbfVU8NArroKMGvzIBqZBPPsG8IediiX71Hc=
Subject key identifier: 8E:7F:CE:D4:F3:4E:7F:37:E7:51:B5:B4:5F:30:B9:9C:63:11:F9:7E
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC6B80E0F7B4AA197AEA4B1102FBD30C5
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/b9/913cd7-593f-4e99-b5ee-0d050358e656/1/jn_O1PNOfzfnUbW0XzC5nGMR-X4.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/b9/913cd7-593f-4e99-b5ee-0d050358e656/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 20:30:00 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 198126
IP: 91.231.228.0/24
IP: 2001:678:3bc::/48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b8:0e:0f:7b:4a:a1:97:ae:a4:b1:10:2f:bd:30:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 20:30:00 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8e7fced4f34e7f37e751b5b45f30b99c6311f97e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fe:9e:b8:aa:01:bb:3b:89:13:d4:ac:fe:3f:72:
6d:02:f0:27:60:da:84:f1:26:fa:45:14:34:44:d9:
8b:da:db:47:29:b6:b1:38:d8:06:5c:52:b3:76:a9:
37:ef:3a:20:53:90:98:25:92:ca:b8:c2:7d:2a:e4:
c1:9a:f9:59:59:be:2c:c5:03:13:ff:c4:ec:83:76:
d9:4f:7a:78:f2:77:5e:5d:1e:69:0d:0f:a7:c9:01:
d5:97:00:28:a1:ef:e0:91:b5:7d:9b:2d:39:41:01:
a4:1b:f2:ce:d6:2c:12:1b:4d:96:8a:98:f6:7e:ef:
d3:46:f5:8c:23:68:b6:0b:e9:c1:04:fd:26:2f:29:
68:9c:37:c7:c5:5c:60:c5:e6:09:11:2b:93:cd:f1:
4f:00:86:bd:b6:16:4c:dd:d6:b3:8f:47:90:7a:4e:
0a:97:b3:8c:09:07:df:ad:3e:a9:2c:94:f2:f3:cf:
92:f0:d9:85:f2:3b:41:c6:f4:e7:ed:fa:4d:b0:47:
11:76:ef:f2:f0:b6:80:0d:72:e0:17:e3:d6:d3:a8:
9f:6e:76:7b:a7:7f:58:77:d3:f7:54:55:9d:29:70:
16:17:07:6a:2b:60:cc:6d:fe:c7:ce:5c:59:18:e8:
e6:14:81:94:75:4c:88:b7:c2:e9:96:52:73:60:e9:
b5:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:7F:CE:D4:F3:4E:7F:37:E7:51:B5:B4:5F:30:B9:9C:63:11:F9:7E
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/913cd7-593f-4e99-b5ee-0d050358e656/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/913cd7-593f-4e99-b5ee-0d050358e656/1/jn_O1PNOfzfnUbW0XzC5nGMR-X4.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.231.228.0/24
IPv6:
2001:678:3bc::/48
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
198126
Signature Algorithm: sha256WithRSAEncryption
96:48:25:90:86:8f:a9:1b:45:af:f2:df:08:c8:5a:2c:27:b2:
7a:a5:69:e4:d9:46:bb:be:a4:01:bd:31:53:93:c9:d9:0e:32:
00:f9:53:13:b8:92:1a:f1:3c:41:02:9a:46:49:78:63:29:f3:
92:ec:9d:e8:07:ea:89:89:7a:5d:c9:af:4b:02:8a:db:ef:a3:
b3:58:54:13:c3:10:b7:fe:c2:03:73:e5:a3:8d:7f:53:dc:9d:
7b:f4:85:27:ef:8b:c9:2c:f4:9c:41:a0:33:c1:b1:02:24:e3:
44:c0:30:14:77:4a:62:7d:4c:52:96:28:39:30:ce:4c:a4:b1:
b0:8e:9c:42:fd:5e:bf:c0:63:c3:7d:46:20:9a:71:0c:64:13:
9c:0a:bc:7f:36:7e:e7:be:73:b8:b7:a8:b5:a2:5c:2a:17:01:
c6:74:12:84:28:df:c7:e9:63:bd:b8:8b:6d:f1:fa:f8:7b:95:
14:1c:cf:6c:84:27:9e:d9:8c:ee:5f:1e:66:9c:c0:c7:c9:4d:
f3:a2:79:45:34:ee:58:ba:3b:89:a9:f6:33:84:25:a1:dc:22:
b1:5b:dc:65:f2:db:65:8e:ad:d3:52:7c:77:07:ab:a0:de:8c:
8a:95:38:de:64:1c:3b:83:c9:f4:ea:99:0a:e5:2e:f6:da:c9:
f7:24:f4:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 08:13:39 2024 by rpki-client on console-fra.rpki-client.org