Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/mFS9ioY6MYlcxsuSLzAIs_CKra4.cer
File: mFS9ioY6MYlcxsuSLzAIs_CKra4.cer (raw, json)
Hash identifier: cfwo1DdZpz7rfiDZgkkNuu1UdbxRSzUwDPsxePWklK0=
Subject key identifier: 98:54:BD:8A:86:3A:31:89:5C:C6:CB:92:2F:30:08:B3:F0:8A:AD:AE
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC7257E7CE04A42D6F1728797BAB3218C
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/1d/2ed10c-04b0-4866-9b82-c522b74ddcfd/1/mFS9ioY6MYlcxsuSLzAIs_CKra4.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/1d/2ed10c-04b0-4866-9b82-c522b74ddcfd/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 22:29:32 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 212774
IP: 193.46.58.0/23
IP: 193.186.252.0/24
IP: 2001:67c:478::/48
IP: 2001:67c:934::/48
IP: 2001:67c:960::/48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:25:7e:7c:e0:4a:42:d6:f1:72:87:97:ba:b3:21:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 22:29:32 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9854bd8a863a31895cc6cb922f3008b3f08aadae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:32:a0:64:7f:af:26:00:4b:bd:d3:7e:72:72:
fe:fa:a2:30:cc:05:dc:2f:3c:bb:2e:3d:31:68:57:
9d:62:72:01:20:e1:bd:2b:99:ce:b9:df:32:5e:58:
40:57:fd:30:bd:bf:f8:0b:f7:70:5e:e0:4e:d8:a1:
72:bf:30:e2:d5:3d:55:f8:63:1f:05:90:42:8a:c6:
77:9e:97:4a:e2:4d:35:0e:cf:55:47:34:34:f6:ca:
87:db:85:39:34:60:6c:f3:8e:2b:c3:c4:bb:59:ad:
be:9b:09:74:2a:d1:80:d1:cc:11:25:3c:99:21:57:
92:63:d7:35:4e:f9:a2:c0:4d:76:c3:6c:be:63:b0:
7c:79:c9:44:25:39:3c:83:48:1d:1c:c4:20:51:8b:
1d:c3:ce:14:dc:4e:64:78:61:7e:df:82:ec:fc:4c:
a0:67:12:ea:9a:5f:78:6d:54:32:27:b3:c3:30:0e:
64:89:23:1f:f4:fc:dc:c8:2e:c7:48:c9:82:9b:a8:
45:c7:ec:2f:c9:e2:8c:f3:88:2d:a0:63:e6:0a:3e:
24:ea:e3:e3:b4:30:30:17:f3:0a:10:c5:a4:8e:3a:
29:49:e9:22:8d:83:e2:4a:3b:79:14:da:a1:fd:5c:
41:bb:67:2c:70:17:7b:b9:c1:56:04:6b:40:0c:e1:
b5:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:54:BD:8A:86:3A:31:89:5C:C6:CB:92:2F:30:08:B3:F0:8A:AD:AE
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/2ed10c-04b0-4866-9b82-c522b74ddcfd/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/2ed10c-04b0-4866-9b82-c522b74ddcfd/1/mFS9ioY6MYlcxsuSLzAIs_CKra4.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.46.58.0/23
193.186.252.0/24
IPv6:
2001:67c:478::/48
2001:67c:934::/48
2001:67c:960::/48
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
212774
Signature Algorithm: sha256WithRSAEncryption
61:fd:d0:2f:b6:94:85:a3:06:43:d4:7c:e5:e4:1d:27:b4:ac:
a5:2b:c0:90:95:e0:f3:86:32:34:8c:86:df:68:1f:a4:54:10:
96:2f:79:16:12:b6:37:5d:cf:37:25:87:6d:58:f9:92:e4:be:
a7:f2:ff:7e:ca:e2:52:7f:18:3a:d3:e3:69:fd:bb:f6:cc:38:
35:8e:4b:0a:fd:aa:a0:e1:fe:21:29:1c:87:a3:a5:08:cc:40:
71:03:67:fc:10:e5:b2:05:1b:f5:08:4b:c3:10:51:82:40:69:
67:84:6a:46:71:52:4c:b5:b9:13:9f:b1:ce:38:1c:ba:89:41:
71:46:d0:53:f3:7d:82:6f:8e:b8:24:74:87:f2:4e:a0:37:e7:
90:e8:c1:e9:3f:fe:15:2f:c9:05:ff:58:e1:2f:7d:c1:6c:96:
2f:20:0a:81:ba:ea:1a:58:df:8f:61:34:9e:b3:88:4a:73:6e:
15:b7:a7:9a:91:a1:6f:0f:e6:de:3c:45:30:50:f7:7d:aa:7f:
37:da:b0:4f:7b:a4:18:ba:89:f2:9c:7c:39:13:38:dc:a0:42:
79:ed:56:b1:39:6e:cf:98:9a:71:e8:63:62:e6:68:24:41:d7:
68:6a:b2:bc:9f:84:6c:51:86:0a:73:cb:93:6b:ef:58:0d:1e:
31:42:35:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:42:04 2024 by rpki-client on console-ams.rpki-client.org