Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/jw23m-h704ZVurcDpg53TE1sI1c.cer
File: jw23m-h704ZVurcDpg53TE1sI1c.cer (raw, json)
Hash identifier: io1DppE6UvM+bbAtd2Mgsx1/3HGXI6SVMiM4Jk0reRQ=
Subject key identifier: 8F:0D:B7:9B:E8:7B:D3:86:55:BA:B7:03:A6:0E:77:4C:4D:6C:23:57
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC94E4E928BEC10F311138DF7B57985E4
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/83/859f30-1e4b-45fe-b7ec-6d0781532a48/1/jw23m-h704ZVurcDpg53TE1sI1c.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/83/859f30-1e4b-45fe-b7ec-6d0781532a48/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 08:33:21 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 197138
IP: 91.206.50.0/23
IP: 2001:67c:354::/48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4e:4e:92:8b:ec:10:f3:11:13:8d:f7:b5:79:85:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 08:33:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8f0db79be87bd38655bab703a60e774c4d6c2357
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:b0:53:88:c2:10:4f:bf:71:10:18:de:81:75:
f9:b7:b4:7b:d3:11:0b:4f:c9:8f:ed:73:15:78:0e:
b0:ae:27:ac:08:ef:18:8e:8f:6f:3a:8e:d3:82:2c:
2d:92:cf:4d:0f:c7:59:6d:ef:bc:c4:b1:09:b9:d3:
c5:2a:a8:3e:fd:aa:4b:ce:30:d7:44:a8:59:4f:94:
dd:3c:ab:d1:c2:3a:06:d3:14:d8:73:09:9a:08:05:
3c:73:ad:a5:ad:d4:9d:4c:b5:6e:d7:52:03:72:33:
4a:17:cd:3f:b5:f4:13:aa:80:32:63:9c:dc:d1:7f:
69:3b:34:ba:ec:64:fb:11:2d:9f:e0:69:6e:fe:77:
63:2c:25:b7:b0:ed:ab:d6:0a:14:df:9c:d2:b8:fc:
26:3f:7f:2a:83:e0:7e:e3:1d:76:30:84:b1:4b:4f:
a4:1f:9a:fa:51:2a:82:b4:39:5e:a8:02:01:99:d3:
8d:3e:fb:ea:ba:24:ad:fb:3f:4f:f3:0c:57:01:10:
fb:20:a8:df:bc:3b:31:c1:80:dd:0f:58:ab:e2:9b:
24:44:70:4a:59:37:63:84:b6:e1:5e:98:f4:90:2b:
99:d0:7f:06:33:db:05:67:cd:e6:8e:24:4b:2c:d5:
85:6f:42:d5:50:c4:bb:bc:15:26:7b:3e:f2:b6:58:
d9:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:0D:B7:9B:E8:7B:D3:86:55:BA:B7:03:A6:0E:77:4C:4D:6C:23:57
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/859f30-1e4b-45fe-b7ec-6d0781532a48/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/859f30-1e4b-45fe-b7ec-6d0781532a48/1/jw23m-h704ZVurcDpg53TE1sI1c.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.206.50.0/23
IPv6:
2001:67c:354::/48
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
197138
Signature Algorithm: sha256WithRSAEncryption
22:1a:71:90:23:fc:f0:7e:b8:ce:9b:5f:c2:fc:7a:4c:40:6c:
84:49:02:d5:14:af:08:6a:24:2d:55:c8:44:8c:88:83:9d:c5:
62:43:55:fa:9c:5a:7a:78:2b:9c:66:5a:93:e1:a2:c4:e5:bd:
87:cc:9c:3e:25:63:6e:ca:81:e9:e1:9d:2b:be:c8:9b:25:46:
d7:44:76:4a:7e:75:59:e0:21:31:cd:e0:3f:50:f8:3f:a1:63:
7d:25:5c:c3:d1:4c:08:ae:94:09:6c:42:e9:4b:9b:f0:f3:ad:
33:1a:26:95:c7:65:2c:f2:ad:bb:ba:64:63:41:b3:6b:53:04:
6d:37:9d:21:ab:53:0f:62:6f:f9:a1:30:86:33:59:a3:7f:88:
31:99:67:04:eb:a7:67:b5:b4:bd:29:40:85:97:6d:5c:63:f4:
c5:88:fd:5a:e1:0b:9b:46:c6:08:b3:dd:8d:99:12:9d:ec:c6:
fd:39:f7:ef:c2:24:91:8f:4a:17:b9:e7:85:15:af:ca:b8:50:
0c:2b:ec:40:ca:b1:dd:86:fe:9a:7f:a8:94:e2:63:f7:df:82:
75:2e:3d:d9:3a:a2:9d:cd:19:51:0b:92:2c:31:2a:9d:d6:17:
88:1e:60:28:48:cb:7a:3f:0f:9c:6c:73:a4:f9:c1:bc:67:4e:
59:ec:03:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:20:32 2024 by rpki-client on console-fra.rpki-client.org