Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/mc5WmhTC2zdy8jGHzmjmVB7ABI4.cer
File: mc5WmhTC2zdy8jGHzmjmVB7ABI4.cer (raw, json)
Hash identifier: c+rGwYJmLykBBuDDuvx4qDYVnzTH7xlwjfDKISKJTuY=
Subject key identifier: 99:CE:56:9A:14:C2:DB:37:72:F2:31:87:CE:68:E6:54:1E:C0:04:8E
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC6B9272D68E8137A9FA1F6AEE653F666
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/f2/cc6e99-6e5f-401b-912d-1095544c6c50/1/mc5WmhTC2zdy8jGHzmjmVB7ABI4.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/f2/cc6e99-6e5f-401b-912d-1095544c6c50/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 20:31:12 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 210539
IP: 185.149.24.0/22
IP: 185.162.88.0/22
IP: 185.165.152.0/22
IP: 185.170.128.0/22
IP: 185.172.36.0/22
IP: 185.174.40.0/22
IP: 185.175.164.0/22
IP: 185.196.220.0/22
IP: 2a07:6440::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b9:27:2d:68:e8:13:7a:9f:a1:f6:ae:e6:53:f6:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 20:31:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=99ce569a14c2db3772f23187ce68e6541ec0048e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:b0:6c:de:31:cb:25:f1:39:86:0f:31:9e:5c:
c6:a3:1b:8a:13:33:d9:de:fe:fc:51:3f:d6:64:b5:
fa:f4:fb:b2:05:37:df:16:ad:37:77:84:77:0d:dc:
bf:c8:73:37:2f:a4:4b:7b:f1:a0:a6:cc:c0:b6:26:
f0:b0:e0:79:a6:2f:a2:19:c0:25:d2:9e:a6:7f:63:
f2:6c:aa:6b:3f:8a:7e:45:c1:35:67:6a:41:e9:b4:
11:24:2b:b3:f1:0b:c7:cb:42:d7:54:ad:d6:22:21:
5f:80:43:4e:4b:da:66:68:5c:a6:ea:98:ad:00:2b:
c4:00:fa:85:11:85:f6:77:d0:c2:9a:ad:7b:6d:f8:
be:ce:27:08:9a:d5:e8:63:f0:9d:a1:d3:42:3a:77:
5f:29:45:f4:e4:05:f1:e4:a3:17:83:47:12:ad:87:
4b:80:7a:be:e7:0a:22:fa:39:9e:c0:1f:af:a0:32:
00:31:fd:4c:01:d2:ff:c4:06:b0:da:d9:bc:4a:49:
80:1b:51:01:e2:11:46:42:ae:7e:40:32:59:86:9c:
ea:0d:42:30:86:83:9b:60:cd:15:6c:59:37:b2:11:
83:ea:14:84:03:97:6f:5f:a8:0e:d9:e6:0e:74:b7:
09:2b:b8:8f:66:7d:77:28:a6:17:5f:25:c0:fa:cb:
8d:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:CE:56:9A:14:C2:DB:37:72:F2:31:87:CE:68:E6:54:1E:C0:04:8E
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/cc6e99-6e5f-401b-912d-1095544c6c50/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/cc6e99-6e5f-401b-912d-1095544c6c50/1/mc5WmhTC2zdy8jGHzmjmVB7ABI4.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.149.24.0/22
185.162.88.0/22
185.165.152.0/22
185.170.128.0/22
185.172.36.0/22
185.174.40.0/22
185.175.164.0/22
185.196.220.0/22
IPv6:
2a07:6440::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
210539
Signature Algorithm: sha256WithRSAEncryption
20:c7:bf:98:e9:f6:ea:d5:86:76:02:97:5a:90:45:8b:a2:2a:
39:d3:52:1a:f8:b4:29:07:2c:2e:54:86:76:35:32:71:54:64:
e2:32:ff:62:1e:7e:b2:85:48:fd:96:2f:16:c1:bd:1a:b3:cd:
a0:b5:dd:ce:39:f9:ca:3e:5d:a5:2a:ca:c4:29:c3:83:2f:6b:
47:13:29:41:05:0b:56:dc:27:3c:dc:02:06:e2:1b:36:7c:c3:
e2:4c:1e:ae:b6:68:97:a5:75:c6:9f:dc:67:e5:46:40:a9:dd:
e3:3c:0a:bf:28:3a:2e:3a:ad:69:c6:ad:55:a1:6a:be:55:e1:
9a:1c:9e:d9:44:d7:cf:94:9c:9e:d7:1d:cb:ec:c9:95:57:68:
d4:03:14:a6:8b:6d:f2:c0:8f:a5:0c:c5:40:5c:3d:d7:5f:b0:
9b:a6:d6:f5:1d:e6:9f:77:58:dd:9d:40:8c:54:1a:a3:60:aa:
47:db:e1:7a:f6:96:cf:45:77:71:33:4e:a3:d7:32:8b:22:b9:
76:df:7f:a5:d2:9d:40:6e:50:5c:3e:de:0f:b7:59:0a:91:6d:
8a:ec:c1:65:7c:ea:09:4d:36:c8:20:32:dc:cb:15:7a:48:f9:
58:59:55:0b:bc:a5:f4:72:95:cb:a4:61:32:7e:be:18:65:2e:
61:0e:fc:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 14:09:26 2024 by rpki-client on console-fra.rpki-client.org