Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/nrKJ89nhO-Z6JEtyvSSUWywyCmM.cer
File: nrKJ89nhO-Z6JEtyvSSUWywyCmM.cer (raw, json)
Hash identifier: v8dS0JA0LsCQgpuSWWPPqIjWQdTWtivVWfGj+QA3eMQ=
Subject key identifier: 9E:B2:89:F3:D9:E1:3B:E6:7A:24:4B:72:BD:24:94:5B:2C:32:0A:63
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC726CA7ADA6E7E6A684A58571571D4B4
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/83/79a605-6072-4142-856e-d8e1835693cd/1/nrKJ89nhO-Z6JEtyvSSUWywyCmM.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/83/79a605-6072-4142-856e-d8e1835693cd/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 22:30:57 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 208359
IP: 188.119.108.0/22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:26:ca:7a:da:6e:7e:6a:68:4a:58:57:15:71:d4:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 22:30:57 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9eb289f3d9e13be67a244b72bd24945b2c320a63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:6a:d1:2c:0e:43:ad:d2:b0:79:3b:fd:60:8f:
56:14:d6:c5:59:87:16:83:45:85:df:ba:61:0d:2a:
68:c8:5c:9d:23:d9:22:c8:1d:6b:8f:91:05:a5:58:
de:53:c7:88:15:b0:15:24:d2:82:18:ae:66:ab:3a:
82:85:d8:5c:e9:58:20:8d:f5:bb:48:bf:aa:83:86:
43:52:d5:1f:68:a4:ce:b8:48:19:e8:10:b1:9f:b1:
c3:68:82:6d:71:05:72:9c:b9:94:a6:05:64:3a:bb:
e9:67:ae:a1:5b:7e:c5:fc:6d:d1:79:3e:59:61:6d:
fc:23:a0:78:b2:35:b8:31:76:8f:38:4b:1a:b9:2f:
58:43:b4:62:18:0e:c9:54:3e:bc:88:09:df:62:d2:
48:e5:17:db:ca:3a:44:54:ef:1d:4c:3a:e1:88:82:
c0:39:bb:85:b3:11:a2:ad:b9:c4:f2:c2:63:11:77:
6d:d4:3e:b9:1d:8a:ed:2e:a7:0c:cc:0f:7e:b9:7c:
ab:5b:fb:d7:f9:d1:62:ea:46:06:39:36:ff:0b:fd:
48:cd:ff:5a:6d:74:78:c0:0e:ee:9f:2a:d4:16:7f:
49:d8:44:09:ef:ab:c1:96:67:6b:40:21:07:9f:3a:
45:a1:cf:2d:76:44:ce:e5:38:a5:a2:44:63:e8:48:
b0:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:B2:89:F3:D9:E1:3B:E6:7A:24:4B:72:BD:24:94:5B:2C:32:0A:63
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/79a605-6072-4142-856e-d8e1835693cd/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/79a605-6072-4142-856e-d8e1835693cd/1/nrKJ89nhO-Z6JEtyvSSUWywyCmM.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.119.108.0/22
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
208359
Signature Algorithm: sha256WithRSAEncryption
03:6e:de:e6:a8:bc:2c:d1:20:76:d5:9d:8e:27:58:e3:d4:1e:
ca:6c:48:ae:6b:52:02:a0:a4:25:97:b6:32:88:72:0c:72:bb:
62:64:cf:9c:1f:bf:41:56:b4:85:aa:31:20:8b:0d:11:5b:6e:
c0:da:70:36:18:6f:ea:2d:43:77:86:0a:12:a0:59:17:68:7a:
bb:cd:10:e3:a5:38:da:88:25:6b:e6:62:f3:aa:d4:0a:d8:e9:
8d:93:60:99:cb:a6:5e:39:53:3b:ba:7d:b7:49:21:f8:1f:ef:
e8:b4:45:00:4c:32:02:29:8f:d5:07:5e:40:ba:5e:7b:2b:40:
5e:66:1b:23:13:13:04:4f:fc:4e:01:46:85:e0:7b:f2:d7:e6:
98:05:a2:1d:de:0f:d3:94:77:9c:62:45:04:3a:3d:1e:8a:fa:
79:29:c0:05:bb:bb:5e:33:ab:b9:4c:ca:a2:9c:9d:59:9f:1e:
6f:54:dd:45:09:9b:73:0e:bd:47:d0:22:81:7f:39:8a:bf:67:
92:b1:ef:be:ec:50:89:5a:4d:42:9e:dc:7a:d0:aa:22:4f:e6:
69:e5:de:c9:6a:f6:86:31:3d:ca:97:df:1b:47:1d:ad:25:26:
85:8c:a5:5d:7e:28:e5:b0:d0:ef:68:f9:ad:8f:31:42:92:e3:
82:ff:e4:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 11:03:53 2024 by rpki-client on console-ams.rpki-client.org