Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/nSZknk8seV_-VA-dl_JumcXF4_8.cer
File: nSZknk8seV_-VA-dl_JumcXF4_8.cer (raw, json)
Hash identifier: UevSjxxLrRzSGOJ9vvXTBbNU3/rnzdPYepDMOXQW+Yg=
Subject key identifier: 9D:26:64:9E:4F:2C:79:5F:FE:54:0F:9D:97:F2:6E:99:C5:C5:E3:FF
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC9BC149340C79BD78732FD4EE9B094D1
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/27/dc5c07-eb30-408f-858a-ea469c860dc6/1/nSZknk8seV_-VA-dl_JumcXF4_8.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/27/dc5c07-eb30-408f-858a-ea469c860dc6/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 10:33:15 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 1213
IP: 45.144.8.0/22
IP: 77.87.24.0/21
IP: 87.32.0.0/12
IP: 91.123.224.0/20
IP: 91.193.188.0/22
IP: 193.1.0.0/16
IP: 2001:770::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:14:93:40:c7:9b:d7:87:32:fd:4e:e9:b0:94:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 10:33:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9d26649e4f2c795ffe540f9d97f26e99c5c5e3ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:67:1f:78:ff:dd:fd:8a:91:61:83:47:b1:cf:
8b:66:3a:8f:7a:58:cb:1f:38:de:b1:03:a6:48:32:
75:a6:47:24:9e:ce:19:b1:68:63:86:2c:83:5d:b5:
0f:f8:1b:51:82:15:36:ac:76:2b:90:0c:49:22:5c:
86:20:c9:d2:73:53:1d:16:95:50:36:a1:52:8c:34:
58:f0:96:47:84:e2:99:97:36:d6:f5:92:fd:5c:90:
e6:cd:6d:15:73:f1:2c:4c:d5:91:dc:5c:b6:40:b1:
54:7b:93:ec:a2:f5:75:24:7b:e1:5e:22:b6:47:53:
9b:de:c8:33:98:6a:bc:6d:50:c8:9f:05:4f:de:0f:
1b:68:2c:79:5e:04:9e:ae:03:02:e3:37:ea:e1:cd:
dc:b5:9b:a6:3c:c0:99:26:7f:86:49:15:32:87:eb:
32:4f:81:97:0e:52:6a:b9:76:c0:bf:94:f8:6b:06:
5d:0d:87:8e:37:74:67:51:f1:e6:9b:8f:4e:b5:9a:
6a:5b:99:39:03:21:8c:bd:10:68:c7:ad:e6:c1:f6:
52:4a:4b:5f:9c:45:9c:5f:15:4a:d5:79:64:1c:6c:
e9:1f:a8:57:f8:f3:dc:65:8c:a7:d5:7f:be:f9:2f:
ef:b9:8f:54:ff:93:6c:6d:b9:a4:f3:c1:2f:91:7c:
5d:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:26:64:9E:4F:2C:79:5F:FE:54:0F:9D:97:F2:6E:99:C5:C5:E3:FF
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/dc5c07-eb30-408f-858a-ea469c860dc6/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/dc5c07-eb30-408f-858a-ea469c860dc6/1/nSZknk8seV_-VA-dl_JumcXF4_8.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.144.8.0/22
77.87.24.0/21
87.32.0.0/12
91.123.224.0/20
91.193.188.0/22
193.1.0.0/16
IPv6:
2001:770::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
1213
Signature Algorithm: sha256WithRSAEncryption
0d:61:4d:b7:fe:75:eb:18:cf:71:1a:99:17:a5:9c:3c:c5:97:
e9:e4:19:9b:45:71:cd:3d:e9:15:f5:62:83:ca:8c:cc:b9:88:
89:a1:90:ee:01:5b:91:9a:52:54:87:51:68:df:fd:d9:76:c7:
5b:14:8f:13:a2:4a:4f:d1:c4:eb:6e:71:4b:ed:d3:4f:c8:9b:
8a:07:43:94:fb:16:cd:be:1d:8c:67:49:e3:94:bd:23:0a:95:
e0:e2:dd:57:b6:ab:bc:6e:2c:5a:93:7e:fe:e9:a3:b0:b0:75:
5e:6b:62:66:68:ba:8d:58:59:aa:d2:ed:98:ca:fe:eb:38:6d:
5a:70:74:80:c8:7e:59:6b:63:0f:2b:4a:1e:3d:f6:c7:9d:d1:
4c:da:86:e9:12:81:21:29:ac:ed:12:ce:60:11:6f:02:b1:e9:
67:96:41:2b:5c:73:1f:de:b9:d6:4c:7d:21:3c:5f:82:40:54:
dd:5a:e2:ee:bf:15:b7:cf:6a:59:b7:c8:da:8a:7a:10:a1:24:
6e:af:6a:0a:36:73:9a:81:31:52:5e:ca:ff:a1:1b:9e:91:40:
6f:6e:fb:60:37:e0:1c:6c:df:e8:53:21:7c:87:da:5f:97:04:
5f:28:13:1c:46:8f:02:a3:29:99:b7:52:10:14:8e:07:b2:5c:
c3:35:0f:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 03:45:56 2024 by rpki-client on console-fra.rpki-client.org