Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/mYDHD3bwtfXIRXoDN61dYxIs9-Y.cer
File: mYDHD3bwtfXIRXoDN61dYxIs9-Y.cer (raw, json)
Hash identifier: Ub/tdE3ZOT941MrAvPz7NKbsW92tgpfaHEVUpU9dxtg=
Subject key identifier: 99:80:C7:0F:76:F0:B5:F5:C8:45:7A:03:37:AD:5D:63:12:2C:F7:E6
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC7261FC00179EABF192B816C8D2EF0E5
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/cd/42ec68-d433-4000-906c-c3eae6b0fb9c/1/mYDHD3bwtfXIRXoDN61dYxIs9-Y.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/cd/42ec68-d433-4000-906c-c3eae6b0fb9c/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 22:30:13 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 43008
IP: 91.194.30.0/24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:26:1f:c0:01:79:ea:bf:19:2b:81:6c:8d:2e:f0:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 22:30:13 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9980c70f76f0b5f5c8457a0337ad5d63122cf7e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:6a:88:db:1e:5a:bb:60:32:a4:30:e7:3a:67:
a4:35:25:0a:62:a1:ee:db:b6:85:66:d2:66:62:b8:
23:e0:8a:ef:3a:66:fb:fd:a6:ef:25:68:ad:bb:85:
4c:29:56:47:11:26:71:08:8c:91:a6:31:7b:ae:ce:
b3:62:10:2f:bf:87:93:54:c7:8a:53:ae:7f:28:32:
a2:08:29:ab:fe:74:93:f0:a4:60:7b:18:75:84:02:
be:60:bc:77:9b:20:da:33:73:40:02:1e:0d:56:c9:
25:d1:99:9a:d5:3d:b7:14:7f:cc:9a:4d:8e:ad:53:
14:e4:40:42:49:b8:cf:11:94:16:a0:39:07:e9:31:
f0:bb:ec:68:3a:d7:f1:80:6f:96:bf:bb:e2:2b:a3:
5e:72:4e:da:25:85:12:bf:7e:22:3f:8a:11:9e:1e:
cf:f3:7f:4a:1d:dc:1b:22:8e:5d:43:78:3a:09:05:
e2:b2:4e:07:18:65:15:7f:58:81:7e:ca:1f:5c:9f:
0f:0e:11:bf:72:0c:0d:de:ce:84:c4:28:df:53:fc:
06:3d:84:78:b0:f6:87:7c:c4:5a:96:8f:bd:56:05:
18:54:e0:90:3c:42:b2:3c:5d:88:80:d4:44:21:be:
3d:33:77:85:8b:b6:b5:d6:17:ee:ac:6a:56:59:23:
96:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:80:C7:0F:76:F0:B5:F5:C8:45:7A:03:37:AD:5D:63:12:2C:F7:E6
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/42ec68-d433-4000-906c-c3eae6b0fb9c/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/42ec68-d433-4000-906c-c3eae6b0fb9c/1/mYDHD3bwtfXIRXoDN61dYxIs9-Y.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.194.30.0/24
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
43008
Signature Algorithm: sha256WithRSAEncryption
4a:f2:43:86:e7:24:1c:e0:06:68:29:9a:15:97:24:3a:d0:0a:
e1:68:b7:30:72:7d:23:4d:50:96:fe:58:a3:ce:5a:78:b7:dd:
7a:b5:08:3d:76:20:3a:2f:bc:06:c3:7a:36:d8:9e:84:84:c1:
09:a8:1a:72:f6:4d:cb:7b:df:f6:c5:ba:1f:cd:a7:a2:fe:7c:
48:23:1f:80:4a:49:d5:8d:33:ab:4c:46:95:13:b7:1d:62:fa:
85:1d:61:c9:1e:0d:3a:f8:64:34:5c:c7:c1:fe:7b:ef:2c:e1:
d0:45:20:2a:57:8f:9a:a0:27:c6:11:75:3d:3b:23:31:30:ac:
1c:5f:7c:7f:ef:87:0c:38:d5:5b:f3:cd:d6:9b:fc:a9:38:54:
6f:a4:71:9a:b2:4b:07:f9:8b:1d:d3:df:99:3e:0c:83:e9:48:
8d:9d:d4:78:03:c7:d7:0b:a8:f1:e3:25:12:a0:2f:6a:f9:7f:
4a:93:88:81:1d:4a:41:de:b6:1e:ad:b0:80:56:50:dd:00:e5:
44:f8:56:4d:7f:1f:b7:10:bb:e3:9a:91:64:37:b6:6d:91:14:
53:a4:77:44:db:fa:27:44:76:e2:a7:a5:4c:ec:72:6d:09:0a:
17:82:65:23:51:7e:58:fd:24:b4:0d:5e:4b:6c:51:6e:8c:81:
9a:2d:a0:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 11:03:42 2024 by rpki-client on console-ams.rpki-client.org