Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/kPJzpjxR6vP55a57n6r9spMTQN8.cer
File: kPJzpjxR6vP55a57n6r9spMTQN8.cer (raw, json)
Hash identifier: +B7bD1TBWFhmkQvq2nqNUzNhj3RHOCWCXTCme/YJf4g=
Subject key identifier: 90:F2:73:A6:3C:51:EA:F3:F9:E5:AE:7B:9F:AA:FD:B2:93:13:40:DF
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01914FFC24D5F6CBE4B5B0C50572FB1566AF
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/d7/bc676b-c0b6-4fbb-933f-5082c28b715f/1/kPJzpjxR6vP55a57n6r9spMTQN8.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/d7/bc676b-c0b6-4fbb-933f-5082c28b715f/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 14 Aug 2024 08:23:30 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 203339
AS: 212911
AS: 214360
IP: 84.38.128.0/24
IP: 185.220.116.0/22
IP: 2a0b:f6c0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:4f:fc:24:d5:f6:cb:e4:b5:b0:c5:05:72:fb:15:66:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Aug 14 08:23:30 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=90f273a63c51eaf3f9e5ae7b9faafdb2931340df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:a0:65:ea:8d:4f:dc:15:de:0a:c9:ad:c9:0f:
47:9c:52:62:bc:47:34:b6:de:a8:df:1b:64:d8:ab:
54:4c:80:6e:69:71:ea:dc:ea:ac:77:99:21:a2:48:
4e:d7:8f:ab:57:ed:ae:dd:fe:40:e1:0c:a4:88:a3:
47:1c:66:72:59:9a:83:05:cf:c7:5c:76:ac:cd:3a:
84:eb:28:a1:ac:b3:43:74:33:6d:44:5b:4e:de:a4:
96:42:63:48:1a:a9:3d:1e:45:99:fd:72:ce:ab:70:
47:89:f7:23:9d:75:58:57:77:79:f7:51:6f:7d:e7:
e6:68:f3:c4:04:16:2f:84:63:af:ce:10:aa:49:83:
9d:62:81:b3:6b:03:fe:be:2e:77:95:ca:79:29:75:
55:17:25:4a:0d:99:d3:0e:08:f0:1d:b2:db:86:7e:
b1:95:82:b9:c8:e4:82:e9:f3:41:9c:2f:1d:12:c2:
e5:90:18:76:3e:7d:d0:59:6f:48:80:10:de:d5:31:
a9:1c:f3:73:ed:45:11:fa:27:b3:a7:ae:01:c5:e5:
50:48:c6:c6:12:9b:38:4a:4f:e2:19:f2:c3:ce:ca:
b0:8e:72:03:5e:16:81:08:30:c3:96:79:90:50:75:
04:32:81:cd:0b:72:2d:a9:7a:62:1b:38:79:51:2d:
b6:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:F2:73:A6:3C:51:EA:F3:F9:E5:AE:7B:9F:AA:FD:B2:93:13:40:DF
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/bc676b-c0b6-4fbb-933f-5082c28b715f/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/bc676b-c0b6-4fbb-933f-5082c28b715f/1/kPJzpjxR6vP55a57n6r9spMTQN8.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.38.128.0/24
185.220.116.0/22
IPv6:
2a0b:f6c0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
203339
212911
214360
Signature Algorithm: sha256WithRSAEncryption
85:eb:3a:19:1b:af:75:de:23:e5:79:d0:83:b2:cb:ea:09:8e:
d1:e7:ea:bf:e0:3e:4e:9c:b2:03:c8:4c:3f:63:93:e7:23:3e:
1f:15:78:58:16:a5:4e:09:50:e9:4b:5c:4f:b6:28:f6:ab:4c:
17:30:ce:be:ad:15:b2:09:d8:26:fb:93:9c:9d:7c:77:93:86:
e7:a3:7d:bd:ae:72:a5:e4:dc:b3:36:90:5d:84:94:da:bb:76:
40:f2:db:7b:cf:e9:34:16:e1:a3:b0:e8:96:49:c5:a9:3a:b7:
4e:49:bc:3d:73:a7:65:4b:fa:ea:d1:26:fc:54:82:62:de:6c:
90:d7:00:2d:13:71:6d:c0:58:38:32:0d:c0:8f:a3:c3:1d:fc:
04:ad:79:0c:bc:e3:92:89:56:78:ff:17:6f:fe:b2:c5:0c:a4:
40:f5:1c:68:78:49:f0:a1:59:4e:04:0c:17:6a:0b:d4:fa:56:
7e:87:06:2c:1e:c5:90:5c:ad:60:55:c8:71:4d:e9:8f:d2:5f:
eb:f4:d3:0d:ad:72:5d:b7:3d:4c:7d:4e:da:fe:40:66:38:37:
d8:77:21:d1:c9:20:81:5e:c0:9b:46:1a:26:47:54:ee:91:66:
66:39:a4:a0:96:d7:4b:99:b0:7e:27:dd:75:db:9e:73:93:ca:
c1:ce:76:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:20:39 2024 by rpki-client on console-fra.rpki-client.org