Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.cer
File: p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.cer (raw, json)
Hash identifier: SZ9gyZS2UC4KxrROvMi5IdF/Y4nTy3bFr+VCywSydH4=
Subject key identifier: A7:96:7D:76:C2:D4:67:20:D4:CF:AC:04:59:FA:3C:3D:22:00:50:44
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC8DF2F0ADE0F200D6545018C7B3E3D4F
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/21/87b768-1545-494a-84f9-1cf50a536026/1/p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/21/87b768-1545-494a-84f9-1cf50a536026/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 06:31:58 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 39422
IP: 176.108.232.0/21
IP: 195.182.202.0/23
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:df:2f:0a:de:0f:20:0d:65:45:01:8c:7b:3e:3d:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 06:31:58 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a7967d76c2d46720d4cfac0459fa3c3d22005044
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:c8:50:4e:1a:d8:09:23:7b:24:c3:2d:32:2f:
06:fe:dc:ed:fe:0e:e6:18:19:7e:d2:75:d1:f7:65:
f3:6c:05:6b:da:65:74:fa:74:61:8d:b3:da:20:05:
52:74:91:79:c6:f2:be:79:39:cf:d7:71:97:26:bf:
a2:a3:e0:9a:03:6b:39:d7:82:f6:cc:1a:ac:d4:6a:
ea:a4:ea:c9:f5:d7:a2:7b:e1:a0:70:b6:52:6d:27:
7c:60:96:18:d6:29:1c:86:78:65:39:ec:3b:d7:38:
9a:5f:7d:ce:0c:cc:af:0e:19:2d:c7:3e:41:98:c5:
3f:c7:b8:3e:7e:27:f6:de:54:16:85:4d:a7:c1:cf:
ff:4f:e7:22:03:7c:fc:e5:fd:ba:ec:f1:81:78:87:
74:ed:23:77:0e:29:39:c9:44:b7:36:29:29:26:52:
1b:8b:52:db:3b:ae:e7:32:6e:36:94:0c:c1:c7:cd:
03:07:c7:2d:55:ee:5c:8b:4e:2c:16:a1:a1:5b:11:
d2:b6:66:c4:0c:9f:24:cd:77:dd:31:31:8e:e3:e8:
d8:6f:77:ac:30:11:d9:23:49:91:7a:50:6d:47:be:
f8:08:db:4d:d5:39:dc:68:e5:38:56:5a:a8:96:6e:
81:c4:d5:64:3a:a5:8b:d8:6b:8b:c2:aa:b4:93:5c:
c7:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:96:7D:76:C2:D4:67:20:D4:CF:AC:04:59:FA:3C:3D:22:00:50:44
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/87b768-1545-494a-84f9-1cf50a536026/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/87b768-1545-494a-84f9-1cf50a536026/1/p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.108.232.0/21
195.182.202.0/23
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
39422
Signature Algorithm: sha256WithRSAEncryption
54:a7:95:c4:65:18:e3:12:f6:80:a3:fd:14:b1:84:e9:76:ea:
eb:ac:65:e0:e5:0f:96:9b:92:f7:a3:9c:06:75:f6:2e:9b:54:
13:33:b3:d0:c6:8c:f4:70:a3:61:be:1e:6c:30:88:a6:6f:3f:
7a:ed:9a:6e:d0:d0:fe:b8:5d:39:af:e5:2a:0c:e5:02:e8:59:
b8:ce:ac:8f:a3:02:8b:49:c6:73:22:a2:35:32:8f:b5:68:ac:
6d:50:98:8a:6c:d5:9b:b2:3d:53:78:ae:2a:e6:cb:b8:85:ba:
d5:35:8e:79:c9:6c:be:1e:b1:9a:89:1f:7a:1f:49:e9:43:10:
57:6e:7c:ae:03:02:d0:c9:40:0a:48:c9:fc:b2:98:f5:ec:40:
0a:28:68:13:44:76:14:b9:5d:c5:a1:39:69:bb:14:12:d4:a9:
b8:87:5d:ea:f9:b4:6b:7b:7b:e6:2f:77:fa:f7:e4:25:dd:04:
43:1c:3c:b5:cc:f6:9a:7a:d8:ce:89:dd:fe:23:8f:0e:43:c7:
27:dd:af:67:44:07:52:fe:a8:d6:73:09:0b:66:1c:7e:bd:42:
1f:de:e0:81:37:b5:4d:c6:92:74:44:af:22:06:86:3a:9d:ab:
0d:55:c3:70:1a:bd:40:9d:82:9d:3f:35:68:07:54:fc:74:a7:
8a:8d:d7:31
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sat Nov 23 10:21:53 2024 by rpki-client on console-fra.rpki-client.org