Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/oHFXHI4QtBnXo7824Qhf_VzXipg.cer
File: oHFXHI4QtBnXo7824Qhf_VzXipg.cer (raw, json)
Hash identifier: wJ5Lju+1zNKnVVQbcsPmer+UYVQn1maykP9hYlvCUf8=
Subject key identifier: A0:71:57:1C:8E:10:B4:19:D7:A3:BF:36:E1:08:5F:FD:5C:D7:8A:98
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC64B82B975465F2ACC53A412174CD092
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/37/c2829f-b3ed-44d3-a5cf-0c1f69b7aee7/1/oHFXHI4QtBnXo7824Qhf_VzXipg.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/37/c2829f-b3ed-44d3-a5cf-0c1f69b7aee7/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 18:31:26 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 31564
IP: 193.17.73.0/24
IP: 195.178.112.0/23
IP: 2001:67c:8d0::/48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4b:82:b9:75:46:5f:2a:cc:53:a4:12:17:4c:d0:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 18:31:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a071571c8e10b419d7a3bf36e1085ffd5cd78a98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:de:af:35:6b:41:70:4b:04:6a:91:92:bc:c6:
4d:e2:f0:28:62:4d:21:8c:47:d1:ef:08:6b:25:0e:
99:12:f2:ea:dc:c4:f5:11:da:81:22:9a:bc:21:52:
a8:43:3d:a4:0f:9b:08:ee:00:da:ba:aa:f1:40:08:
50:f1:98:ac:db:a7:24:d8:42:f0:a6:94:f0:62:74:
fc:a4:5b:12:ff:fc:91:a2:30:93:bf:f1:c0:57:34:
8f:a7:7a:87:ef:28:11:e4:a3:3d:32:4a:8e:75:a4:
7d:8e:a3:41:1f:72:84:4f:4e:18:77:a2:19:f1:f9:
cd:83:c4:bd:a2:a9:3e:bd:6a:3e:92:b5:f9:59:45:
33:71:05:18:b6:ee:aa:56:c3:05:04:12:ee:d0:cb:
4c:d0:2d:85:c9:b8:f2:97:07:18:d8:9e:27:44:9d:
f9:c5:c1:22:2e:55:6a:e3:96:dc:5f:ec:31:77:31:
de:22:85:cf:bd:f8:35:02:fc:31:33:2b:2b:f4:97:
b1:ce:34:e6:fb:34:12:e2:1c:6f:fd:97:86:4b:67:
b7:61:89:0d:4d:1e:9f:53:af:16:bd:2a:56:64:44:
4b:ba:ed:04:a8:79:ec:43:59:13:a4:d4:9b:cb:04:
50:64:95:e7:2e:2c:03:69:93:63:f8:33:ca:10:58:
15:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:71:57:1C:8E:10:B4:19:D7:A3:BF:36:E1:08:5F:FD:5C:D7:8A:98
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/c2829f-b3ed-44d3-a5cf-0c1f69b7aee7/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/c2829f-b3ed-44d3-a5cf-0c1f69b7aee7/1/oHFXHI4QtBnXo7824Qhf_VzXipg.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.17.73.0/24
195.178.112.0/23
IPv6:
2001:67c:8d0::/48
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
31564
Signature Algorithm: sha256WithRSAEncryption
74:22:6e:33:c0:13:3c:d7:4b:b5:a5:2f:bf:42:b1:0a:90:c6:
14:b2:33:0d:76:ab:d7:37:24:2f:e0:3c:40:ad:cd:34:e4:e3:
c1:72:f3:f3:c9:ca:24:b8:49:07:c1:1b:34:ec:0a:e3:e2:da:
9b:cf:e1:82:3a:93:bb:82:86:8b:08:80:50:46:32:b2:f3:84:
55:18:1a:a3:11:85:f1:e1:13:f4:8b:20:ca:ac:d1:02:bb:11:
39:31:6b:ed:85:47:0b:db:29:5d:72:88:48:65:0a:0e:0d:13:
a4:34:f8:f7:90:99:aa:62:7b:95:16:76:52:2f:26:1b:0a:62:
f1:99:34:5e:fc:89:af:c4:06:1a:f2:2f:3d:ef:17:18:d9:73:
bd:3e:3e:b1:70:67:d1:33:2a:8c:78:45:c6:83:71:dc:79:28:
e6:20:0b:e5:ad:32:b7:eb:ed:3c:55:de:d8:9f:8f:7f:5e:e6:
75:cd:82:82:d9:11:78:07:c9:8a:4d:b2:f6:a9:00:85:b1:34:
b2:c4:82:0f:5b:aa:bf:cd:b0:ab:c6:84:c8:02:aa:87:58:d8:
a2:dc:bc:e6:17:71:c3:bb:6a:3f:77:8d:93:f0:97:aa:2e:7a:
2d:31:c9:79:fe:c5:5f:be:46:fc:2b:ca:03:7c:ac:8d:8c:6a:
a2:02:cd:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:21:41 2024 by rpki-client on console-fra.rpki-client.org