Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/p2i77FqeEb-9rthKqNOqzaKYifk.cer
File: p2i77FqeEb-9rthKqNOqzaKYifk.cer (raw, json)
Hash identifier: 39lvGuHRv5HmxdSuTFf7TgvaGLIniyy+ZqXs2hpyh2w=
Subject key identifier: A7:68:BB:EC:5A:9E:11:BF:BD:AE:D8:4A:A8:D3:AA:CD:A2:98:89:F9
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC3B6FCF9C0DA86DCEFA2756BB02E7E21
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/bc/eac1f4-ace1-4ce1-a181-cfcabb19f989/1/p2i77FqeEb-9rthKqNOqzaKYifk.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/bc/eac1f4-ace1-4ce1-a181-cfcabb19f989/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 06:29:58 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 197731
IP: 31.3.104.0/21
IP: 185.119.28.0/22
IP: 2a03:7900::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:b6:fc:f9:c0:da:86:dc:ef:a2:75:6b:b0:2e:7e:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 06:29:58 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a768bbec5a9e11bfbdaed84aa8d3aacda29889f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:6c:e1:89:1e:a2:8d:0c:f5:4a:bb:f8:c8:dd:
2c:59:82:a3:a7:24:b3:10:4b:6c:3d:f3:7a:c6:14:
53:63:4e:c2:c8:32:66:1b:51:69:49:48:3f:28:33:
8e:d3:cd:ae:ab:06:12:a3:c6:34:b8:62:40:cf:da:
9c:fb:a4:b1:21:1f:e4:d0:a9:f4:c8:23:3d:55:5b:
1a:10:1e:87:02:7c:64:2e:b6:1c:f5:58:e9:5d:3d:
1c:52:51:92:c5:cd:51:fc:f7:0c:3e:6d:c2:36:8e:
9e:e5:7f:65:7c:1e:6a:da:d5:56:3c:9c:7d:02:b5:
4e:fc:92:ed:31:71:1e:dd:57:36:07:d2:ff:ae:90:
60:c7:c6:09:49:df:7e:88:e9:36:68:28:05:55:22:
35:cf:0f:3c:69:77:84:9c:25:fd:b3:45:57:41:9d:
2e:a2:c3:75:98:06:ec:18:48:cd:76:a7:fd:2d:51:
fa:f8:c9:4f:08:6f:4d:50:4a:22:b0:3c:20:ec:37:
12:ad:65:e7:d5:51:7a:e5:33:7f:9e:09:04:e0:cc:
75:27:0c:a4:70:51:05:34:86:bb:d0:22:cd:13:1b:
db:e0:31:c1:ec:e0:86:b3:1d:57:27:63:ce:30:bf:
3b:c8:65:56:07:e6:38:f3:37:9a:7c:82:32:51:cd:
dc:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:68:BB:EC:5A:9E:11:BF:BD:AE:D8:4A:A8:D3:AA:CD:A2:98:89:F9
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/eac1f4-ace1-4ce1-a181-cfcabb19f989/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/eac1f4-ace1-4ce1-a181-cfcabb19f989/1/p2i77FqeEb-9rthKqNOqzaKYifk.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.3.104.0/21
185.119.28.0/22
IPv6:
2a03:7900::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
197731
Signature Algorithm: sha256WithRSAEncryption
65:af:0c:e0:1c:07:d2:75:11:99:ed:d4:86:3f:b0:12:e0:07:
16:d3:2f:df:42:e6:b1:fd:14:90:db:85:28:ae:bf:04:ca:9a:
b0:93:c6:23:08:6f:15:0a:6b:2b:5c:7c:77:ac:2d:46:86:04:
cc:b6:88:1b:e1:f4:f1:91:e3:b0:75:5c:00:bd:4e:0b:7c:27:
b4:c0:8d:5d:5a:01:b4:db:64:95:20:64:a6:5a:f2:4f:78:27:
48:dd:49:26:c9:17:0f:aa:ca:2f:1b:35:f0:6d:ee:b0:5f:c4:
cd:3a:d9:7e:1d:45:31:67:19:40:5a:ad:f8:32:1c:76:fb:1e:
7a:1c:ff:e9:e6:93:f3:69:11:fa:ce:de:f2:d1:e7:31:ef:76:
2c:db:28:26:01:f1:59:2e:98:c7:5e:4b:b4:cd:59:ab:ea:c2:
15:3a:38:9f:5f:e4:77:60:33:61:89:58:a3:33:c0:33:98:51:
ec:a6:fa:6d:9d:1e:99:a5:26:2c:73:6f:7a:27:4e:a2:87:90:
ef:0b:07:2b:44:f2:79:03:73:34:68:9e:c6:12:90:53:33:5f:
06:a3:06:37:0a:57:9b:3f:ca:f3:1d:14:a0:c0:44:94:02:ac:
28:f7:a7:a2:cc:58:3c:75:10:8c:dc:f4:03:cf:a0:fc:0a:b6:
e7:1f:99:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 02:30:34 2024 by rpki-client on console-ams.rpki-client.org