Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/lWhmVi2fJYMewKzoqdjNDllNcfw.cer
File: lWhmVi2fJYMewKzoqdjNDllNcfw.cer (raw, json)
Hash identifier: MXsjmtXBbw6GC0d7SWgyBMWrp/roWFizMAbyVZz+tsA=
Subject key identifier: 95:68:66:56:2D:9F:25:83:1E:C0:AC:E8:A9:D8:CD:0E:59:4D:71:FC
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC5DC703706D3C19AFB682453206964A1
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/be/cb2ee8-8782-4af4-8f6b-9d7f86f0d477/1/lWhmVi2fJYMewKzoqdjNDllNcfw.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/be/cb2ee8-8782-4af4-8f6b-9d7f86f0d477/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 16:30:07 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 59807
IP: 164.10.0.0/16
IP: 185.181.88.0/22
IP: 2a03:2520::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:dc:70:37:06:d3:c1:9a:fb:68:24:53:20:69:64:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 16:30:07 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=956866562d9f25831ec0ace8a9d8cd0e594d71fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:08:cd:e7:f2:3e:fc:98:bf:bc:ba:d6:2b:c8:
9c:fb:ca:86:9c:4a:80:f9:f5:43:6c:79:58:80:d3:
9b:16:66:50:ee:ac:26:71:a9:de:a8:91:a8:59:d0:
2f:32:8a:f3:e7:9e:46:e3:a2:37:46:5a:cd:5f:28:
c6:57:08:af:ea:f3:ab:51:cc:a1:33:3b:fb:cb:3c:
df:83:d9:34:ac:05:f7:32:d2:86:11:4e:25:d5:25:
6e:e1:93:17:1e:ca:21:32:99:f6:6c:7e:71:65:ff:
cb:d5:c4:ef:c8:c5:2f:3e:29:f0:e3:f8:1d:bc:97:
00:25:76:03:17:b6:6f:a5:99:88:b7:51:8a:d8:2e:
f4:fe:fd:9d:e9:40:39:64:19:2c:a4:57:79:5f:35:
18:c1:47:25:e9:20:fa:f0:bc:f4:7d:45:3b:9c:57:
82:94:4d:8a:0a:6e:ec:f0:4e:02:f2:2b:97:41:7c:
9e:54:c1:f1:4e:3d:b1:a9:ff:97:0e:e3:23:bc:87:
23:b7:49:65:d1:7c:5d:a1:01:ff:56:3a:1e:0b:c1:
82:b7:38:00:d7:f7:2a:71:75:70:93:6d:75:1c:fc:
6e:f3:2d:25:7a:dc:b3:a7:cc:cd:8c:30:63:6d:bb:
dc:38:d5:a2:2d:8f:11:aa:2d:cc:1e:81:25:90:65:
7a:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:68:66:56:2D:9F:25:83:1E:C0:AC:E8:A9:D8:CD:0E:59:4D:71:FC
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/cb2ee8-8782-4af4-8f6b-9d7f86f0d477/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/cb2ee8-8782-4af4-8f6b-9d7f86f0d477/1/lWhmVi2fJYMewKzoqdjNDllNcfw.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
164.10.0.0/16
185.181.88.0/22
IPv6:
2a03:2520::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
59807
Signature Algorithm: sha256WithRSAEncryption
05:e8:0a:c1:9e:99:54:d0:d3:fe:1d:6b:d9:d3:7a:0f:88:df:
63:b3:a9:84:27:f5:d5:4c:ef:a1:fd:9f:d4:2d:2d:8d:92:96:
25:f2:70:53:c0:82:cd:9e:c7:c6:ce:03:df:0c:09:f4:5d:23:
28:e2:2f:69:88:64:34:e9:20:64:59:8c:9c:06:17:a2:1d:b8:
25:91:b0:94:a6:75:f2:f6:fe:c6:50:e0:56:32:e6:e3:3d:0f:
6f:d8:21:90:62:e7:5e:11:b8:f5:22:91:7c:ad:c6:cc:a1:5f:
fa:64:21:4c:cb:bd:e7:8a:88:a8:7c:f7:3e:99:0e:94:de:56:
5a:ae:8d:4e:60:86:ae:ca:b5:06:01:32:b8:8f:60:19:9a:c8:
9b:32:7c:87:90:60:46:18:59:62:5b:b3:b2:3a:12:2e:ae:ca:
bb:97:c9:d8:e5:e3:8e:9f:2c:ba:60:13:40:73:b2:de:71:b0:
39:4f:f1:65:45:f7:cc:56:1b:66:37:8b:03:d8:2c:6d:d3:2e:
6a:3f:e0:49:f0:fe:62:46:79:9a:e8:43:9f:f1:08:eb:15:36:
1f:eb:e1:63:3a:14:06:a6:70:a0:79:42:74:56:95:26:8c:da:
b2:53:9a:bd:12:ee:13:6e:ca:b3:2b:2d:60:46:4c:de:6d:14:
84:51:b6:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 11:03:32 2024 by rpki-client on console-ams.rpki-client.org