Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/n98bEcryuCRFMXghJa6TOudpn3Y.cer
File: n98bEcryuCRFMXghJa6TOudpn3Y.cer (raw, json)
Hash identifier: /Q2K4FD8XwUpGwEgCBdczl2YRN5arBrGoIAgG8NEg6Y=
Subject key identifier: 9F:DF:1B:11:CA:F2:B8:24:45:31:78:21:25:AE:93:3A:E7:69:9F:76
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC80166D3B9F57CD54661094891927755
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/9f/8abe54-3dc7-4617-9907-472f4dad7fde/1/n98bEcryuCRFMXghJa6TOudpn3Y.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/9f/8abe54-3dc7-4617-9907-472f4dad7fde/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 02:29:44 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 206176
IP: 195.114.30.0/24
IP: 2a10:c900::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:66:d3:b9:f5:7c:d5:46:61:09:48:91:92:77:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 02:29:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9fdf1b11caf2b8244531782125ae933ae7699f76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:95:a1:46:ef:6f:d4:03:8c:64:15:b2:bb:64:
46:30:bb:11:8b:fa:26:17:ac:0c:76:d3:04:42:06:
a3:44:9f:d2:4b:25:70:8c:3b:15:2e:39:b0:57:24:
70:db:1b:26:67:45:a0:8b:d6:61:3f:45:42:3c:5c:
a7:b4:d9:06:c1:27:83:49:b7:47:7a:ff:95:3b:09:
ea:2c:c2:f6:3d:e1:57:0e:47:ad:8a:3b:fa:7b:4e:
2f:ce:63:9a:7c:d1:0c:d2:44:f2:5a:53:7b:30:e2:
62:32:a2:be:03:9b:9d:41:3d:3b:c4:89:6b:b0:82:
b8:11:a7:b6:55:7e:12:ae:75:fe:73:66:c5:4d:46:
a5:86:58:23:2d:b0:22:3f:30:e0:df:e3:a3:f2:c6:
68:24:80:a1:1c:31:a3:4b:fa:e6:62:51:d8:28:27:
62:e8:c8:48:47:87:f0:a9:40:93:ec:fc:dd:04:8b:
55:2a:98:6f:84:37:c3:2a:32:06:9a:30:df:41:bd:
2e:d6:67:ea:e0:e2:5f:76:6d:e9:77:82:32:76:f1:
00:86:eb:9e:c8:c6:34:da:5d:da:79:ce:c4:0f:e4:
4d:04:33:a6:3d:29:97:a1:54:64:6c:24:b7:82:84:
1d:12:62:27:0e:ba:c7:25:3e:e6:3b:25:50:b3:25:
31:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:DF:1B:11:CA:F2:B8:24:45:31:78:21:25:AE:93:3A:E7:69:9F:76
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/8abe54-3dc7-4617-9907-472f4dad7fde/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/8abe54-3dc7-4617-9907-472f4dad7fde/1/n98bEcryuCRFMXghJa6TOudpn3Y.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.114.30.0/24
IPv6:
2a10:c900::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
206176
Signature Algorithm: sha256WithRSAEncryption
2f:b6:54:bc:dd:6a:b0:35:25:fc:16:1d:70:d0:52:ef:e9:86:
c4:9b:c6:50:85:13:7a:80:1f:4f:d9:10:c3:30:ce:dd:30:99:
b4:59:31:96:b0:aa:c7:5c:9e:b8:d2:f5:fb:f6:b3:b1:82:f8:
d4:bf:77:ef:b5:43:ba:ea:76:d8:2a:e9:6c:7a:89:fd:e7:75:
cf:bd:39:be:4c:42:c8:cd:69:5d:14:9c:c7:e7:7f:e4:7b:39:
97:5a:a8:ed:a8:27:3c:c7:12:79:04:a5:47:6d:bd:86:aa:56:
20:cf:bc:83:20:2b:b9:74:89:90:dd:06:d9:66:e5:72:bb:32:
96:eb:ca:e6:3f:6a:0b:ea:2a:18:62:8d:63:2d:4b:a6:ff:23:
05:09:32:69:94:a4:d8:a4:db:ab:0b:8a:49:71:d4:e9:33:a3:
39:e8:a0:82:73:74:d3:f6:70:06:cc:4a:3a:bb:62:cb:a9:5c:
86:54:bf:a9:59:80:8c:10:9e:bc:fd:af:ef:a4:db:89:95:79:
56:c1:1a:68:7d:8a:e1:6f:1a:04:06:ef:42:39:b5:b3:78:53:
10:f0:fe:b3:c1:96:c6:91:09:ed:80:48:68:90:89:23:2d:e1:
8b:87:04:3f:8a:3d:c8:64:31:b7:b8:6a:24:a7:da:fe:23:79:
ba:9b:12:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 09:35:55 2024 by rpki-client on console-ams.rpki-client.org