Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/nw0kyFXu4A_kq_OQPG6PzHCD7U0.cer
File: nw0kyFXu4A_kq_OQPG6PzHCD7U0.cer (raw, json)
Hash identifier: jBOf0KtXDbGQfPkNaGXuDlr6ov7nRtWycfANrPlHCfg=
Subject key identifier: 9F:0D:24:C8:55:EE:E0:0F:E4:AB:F3:90:3C:6E:8F:CC:70:83:ED:4D
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC2FFE2629C67EC2A0C9F666186E9641A
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rsync.paas.rpki.ripe.net/repository/af31768d-42b1-4e92-b83f-bef7ee017813/0/9F0D24C855EEE00FE4ABF3903C6E8FCC7083ED4D.mft
caRepository: rsync://rsync.paas.rpki.ripe.net/repository/af31768d-42b1-4e92-b83f-bef7ee017813/0/
Notify URL: https://rrdp.paas.rpki.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 03:09:58 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 5464
IP: 62.112.128.0/19
IP: 109.95.240.0/21
IP: 185.2.160.0/22
IP: 193.37.236.0/24
IP: 194.0.229.0/24
IP: 195.184.92.0/23
IP: 2001:67c:33c::/48
IP: 2a00:1df0::/32
IP: 2a02:d000::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:ff:e2:62:9c:67:ec:2a:0c:9f:66:61:86:e9:64:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 03:09:58 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9f0d24c855eee00fe4abf3903c6e8fcc7083ed4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:1f:bc:4c:2e:63:9b:20:9e:d1:02:5f:fd:77:
40:8f:34:ac:5c:5a:48:b2:5c:9c:7f:68:5b:80:18:
94:5a:0f:2c:24:44:f0:bc:ad:54:d1:4d:92:45:e7:
3f:64:87:b3:e2:1e:8c:bb:3f:70:45:04:4b:62:7a:
07:41:5f:9f:96:fc:e7:8c:22:a3:83:bb:fa:03:a3:
33:6b:09:9e:96:65:92:09:3a:59:64:1c:98:05:29:
41:71:bf:89:ea:6e:95:62:c3:bc:f3:59:f4:22:55:
9a:0c:0c:68:46:30:42:ea:ac:fc:b0:d5:72:16:8f:
44:f6:ee:fa:c4:64:f3:f1:1e:54:cc:ad:5d:f4:1c:
46:b5:17:e9:ec:6d:bf:77:8d:f6:00:36:77:2c:c7:
49:eb:00:2f:0d:4d:00:96:f6:36:da:6d:2c:25:88:
8a:c3:3a:10:99:93:06:1f:68:31:a9:5e:ed:e2:38:
1b:de:c5:6d:18:24:76:f0:fe:44:9e:82:fb:82:35:
25:ea:9c:a5:5e:25:4f:c0:df:11:37:69:3f:92:fa:
7b:e0:9f:29:3a:d2:79:73:22:6c:1c:50:e0:af:6b:
4e:36:65:cd:54:b0:2b:95:ec:7f:da:ef:9d:17:bf:
40:1a:26:b6:d0:64:08:d9:a5:72:88:b2:a1:67:5f:
88:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:0D:24:C8:55:EE:E0:0F:E4:AB:F3:90:3C:6E:8F:CC:70:83:ED:4D
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rsync.paas.rpki.ripe.net/repository/af31768d-42b1-4e92-b83f-bef7ee017813/0/
RPKI Manifest - URI:rsync://rsync.paas.rpki.ripe.net/repository/af31768d-42b1-4e92-b83f-bef7ee017813/0/9F0D24C855EEE00FE4ABF3903C6E8FCC7083ED4D.mft
RPKI Notify - URI:https://rrdp.paas.rpki.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.112.128.0/19
109.95.240.0/21
185.2.160.0/22
193.37.236.0/24
194.0.229.0/24
195.184.92.0/23
IPv6:
2001:67c:33c::/48
2a00:1df0::/32
2a02:d000::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
5464
Signature Algorithm: sha256WithRSAEncryption
80:18:5c:24:e4:ec:ad:7a:e4:d6:fd:ef:4c:77:fa:e4:b0:8a:
e0:16:71:24:29:49:d8:15:5f:33:d2:0f:d5:79:2f:d7:24:ee:
e5:4a:97:71:82:c2:25:c8:38:9a:6a:a0:af:eb:b8:51:40:92:
ff:34:69:1c:38:e2:91:07:28:d4:3a:c9:24:cf:d2:46:33:36:
4f:ff:6c:81:75:c5:d4:f9:4a:d3:22:f8:28:73:bd:6c:81:3f:
ca:ef:0c:8d:dd:d5:61:d4:b7:7f:b6:7c:c7:8b:62:13:ca:0c:
76:a2:1c:18:f7:5e:38:73:e8:c0:66:5a:bd:38:05:10:74:4e:
7a:8f:03:f6:a6:03:b5:2f:79:ed:0b:64:9a:b7:5b:b0:55:35:
70:9a:da:37:a6:bb:ec:f2:e4:54:5c:0f:fe:f9:60:c4:5e:ad:
80:b8:a8:56:48:75:d0:54:89:28:14:6c:af:0e:dd:8d:3d:c9:
a8:52:19:36:34:8c:84:bc:3c:7d:1d:7f:f1:2f:60:d4:d7:e1:
c6:47:8a:1b:73:23:c7:d2:db:be:98:da:58:03:c3:2e:6c:71:
f3:48:e8:07:76:75:ef:69:25:8e:8a:6d:b4:e7:4f:cf:fa:96:
90:83:ab:79:7b:e2:5b:96:d9:bd:2b:13:19:0c:52:ba:2d:c1:
b3:02:da:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:37:39 2024 by rpki-client on console-ams.rpki-client.org