Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/lrvRv8ovihV4-qtbEMD8NVVhzGU.cer
File: lrvRv8ovihV4-qtbEMD8NVVhzGU.cer (raw, json)
Hash identifier: VFC2PK/tEm7IvrX3OB3TseRzj09PkgzG6qLP6bZjPFQ=
Subject key identifier: 96:BB:D1:BF:CA:2F:8A:15:78:FA:AB:5B:10:C0:FC:35:55:61:CC:65
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018D83C0142A89A6714AFA15B55FD3238052
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/73/73f5b5-293d-4035-92ac-a87e2872ad8a/1/lrvRv8ovihV4-qtbEMD8NVVhzGU.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/73/73f5b5-293d-4035-92ac-a87e2872ad8a/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 07 Feb 2024 13:26:59 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 216282
IP: 195.184.234.0/24
IP: 2a13:e1c0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:83:c0:14:2a:89:a6:71:4a:fa:15:b5:5f:d3:23:80:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Feb 7 13:26:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=96bbd1bfca2f8a1578faab5b10c0fc355561cc65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:f9:e5:b7:05:f9:0b:6f:16:1f:00:e6:52:34:
26:f4:33:67:ba:8b:c6:a0:51:da:99:3c:93:5d:ed:
cd:24:df:17:dd:8a:f6:7b:74:7a:f0:94:40:15:87:
6f:51:94:f7:57:2e:4c:46:6c:58:22:11:08:f1:58:
82:3c:07:2f:25:57:d1:01:5c:c0:fb:4d:93:de:7c:
06:fe:03:b7:1d:a6:2a:fa:74:d1:6a:73:67:5b:c4:
ee:bf:a3:21:ff:da:95:6b:36:eb:30:24:53:ee:2d:
b2:ba:cf:d9:bb:68:f8:37:a3:4e:d1:57:7f:2d:12:
28:8f:e1:e2:a5:50:f3:c0:62:95:c9:cb:f4:34:a3:
03:7d:61:d7:b6:c1:f9:b5:78:f0:06:7f:f5:2c:51:
46:7f:29:b4:40:6a:28:88:24:1b:ec:44:29:2d:86:
dd:00:72:fd:9b:03:87:7b:3c:1c:c4:2f:41:8f:9a:
43:02:98:22:83:4f:01:9a:1e:be:58:1b:2e:2a:d8:
2d:be:fd:48:64:db:e4:67:ab:cd:b0:89:18:40:a3:
7a:2f:b7:3c:f3:f2:8d:be:97:ce:cf:c5:55:74:2b:
dc:e2:82:6d:a0:7b:97:1e:37:05:84:44:e0:6b:6a:
49:07:b0:5f:33:c7:38:64:c2:8c:52:b6:7d:95:7c:
77:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:BB:D1:BF:CA:2F:8A:15:78:FA:AB:5B:10:C0:FC:35:55:61:CC:65
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/73f5b5-293d-4035-92ac-a87e2872ad8a/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/73f5b5-293d-4035-92ac-a87e2872ad8a/1/lrvRv8ovihV4-qtbEMD8NVVhzGU.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.184.234.0/24
IPv6:
2a13:e1c0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
216282
Signature Algorithm: sha256WithRSAEncryption
56:73:95:86:25:78:72:2c:e7:8d:b8:d6:8c:7b:fc:56:84:be:
2f:de:ea:a1:d4:0c:43:a5:1a:d6:d0:b8:56:c5:6a:04:60:8a:
76:9a:21:90:a8:be:df:7f:33:df:4a:fe:fa:98:6f:25:ab:6d:
52:da:50:fd:db:14:fc:bc:4b:ba:96:4f:31:a8:7f:56:d1:82:
3d:ab:4d:4e:0f:d2:41:02:ec:ff:96:65:57:15:b2:98:ac:55:
ed:b7:4c:22:08:ef:76:34:dd:08:60:a3:b9:9f:d4:bd:2a:17:
b0:81:57:0b:8a:53:75:93:a0:aa:e0:1c:72:7a:86:13:fa:1d:
b9:04:76:b9:38:02:37:fe:db:47:e1:5f:65:51:4a:f2:f4:1c:
49:2b:ef:8e:eb:d5:b0:8d:51:e9:6e:20:f2:78:d0:9f:2c:f1:
1d:6b:bd:f4:ba:09:2a:54:a7:33:ea:6f:02:26:6e:c8:e8:89:
c0:77:22:8b:40:1b:9b:dc:39:29:56:3f:f0:9a:b7:d3:d4:db:
7e:b3:5c:d0:74:67:af:ab:fa:ca:cd:cd:f9:82:66:0e:e9:2f:
39:af:49:d2:8f:12:30:e0:cf:5e:bb:df:54:26:44:e5:51:6d:
c7:b7:a4:7c:2d:d3:e4:ba:a0:79:8a:cc:7b:52:f4:6a:bf:3a:
eb:41:b4:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:21:02 2024 by rpki-client on console-fra.rpki-client.org