Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/pDOBaM2dWvBgQBP8QnQSb8WB88s.cer
File: pDOBaM2dWvBgQBP8QnQSb8WB88s.cer (raw, json)
Hash identifier: w6kaPhWZiviOBOAEoLAJCm3G/03bJ6BiKCBXFd7DSoE=
Subject key identifier: A4:33:81:68:CD:9D:5A:F0:60:40:13:FC:42:74:12:6F:C5:81:F3:CB
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC56E2595C08F58DE73980723A565CB6E
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/08/176f7d-6f0f-45e5-97f2-c9db981a2a2f/1/pDOBaM2dWvBgQBP8QnQSb8WB88s.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/08/176f7d-6f0f-45e5-97f2-c9db981a2a2f/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 14:29:39 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 211833
IP: 185.44.82.0/23
IP: 194.76.231.0/24
IP: 2a12:f340::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:25:95:c0:8f:58:de:73:98:07:23:a5:65:cb:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 14:29:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a4338168cd9d5af0604013fc4274126fc581f3cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:b1:58:50:71:8a:38:0c:25:30:e0:f0:3a:27:
5c:80:30:35:4e:34:5c:a9:98:57:46:67:b9:16:05:
68:21:d5:4a:1c:93:06:a9:8b:ac:f5:f4:b1:a2:36:
e2:6c:3d:84:f9:52:5e:97:b4:84:98:9e:f0:93:a9:
bc:ab:8b:59:62:1c:28:31:c8:c3:f9:48:14:6d:ac:
41:28:63:e8:ab:5e:02:d4:e7:f5:28:ca:b3:48:ba:
98:79:f9:7a:d4:2e:f9:14:49:81:ab:2b:72:a3:fe:
b0:d8:60:92:7a:ec:26:33:ae:db:a7:48:44:5c:32:
c1:22:5f:96:72:3f:60:05:9b:0e:16:00:33:e5:1b:
b2:de:13:3e:ba:5c:e3:54:4f:2e:ab:21:5e:1f:a1:
55:8c:95:51:d7:f1:d6:b3:d8:02:c9:56:05:56:45:
9d:3a:c3:95:f5:56:71:4f:fa:a1:04:ea:48:e5:b1:
69:97:72:1d:38:63:fa:d1:9c:3c:f6:9a:e1:1c:91:
f9:ee:ea:cd:4b:9f:04:76:cb:ac:c0:ca:ca:8b:e7:
be:2c:5b:c9:0f:4b:1f:95:0d:f9:d5:ad:04:97:98:
f0:41:c2:72:c3:f6:5a:d1:ad:cb:a1:2d:74:93:3b:
3f:4d:1a:13:7a:d8:13:c2:23:95:41:13:78:4d:5c:
59:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:33:81:68:CD:9D:5A:F0:60:40:13:FC:42:74:12:6F:C5:81:F3:CB
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/176f7d-6f0f-45e5-97f2-c9db981a2a2f/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/176f7d-6f0f-45e5-97f2-c9db981a2a2f/1/pDOBaM2dWvBgQBP8QnQSb8WB88s.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.44.82.0/23
194.76.231.0/24
IPv6:
2a12:f340::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
211833
Signature Algorithm: sha256WithRSAEncryption
09:3b:8d:07:38:22:fb:ac:f3:ef:73:66:c0:30:b1:c3:2d:34:
1c:e7:37:29:ba:37:1a:ef:aa:38:81:ac:5c:4d:25:78:0e:05:
9b:c5:e9:7a:6d:2b:7e:78:c2:02:01:d5:f6:e3:bc:33:59:38:
af:f6:48:c7:bb:6f:17:52:3f:e1:c2:54:0e:cc:24:ac:21:f5:
02:22:7c:c2:a9:a4:4b:da:48:3d:f2:78:99:e1:69:cb:8d:93:
be:ce:80:5e:4d:09:b0:da:e9:55:2f:1f:6c:a1:ae:85:f3:7a:
27:ac:b8:56:f7:21:13:ce:76:78:29:b5:3f:5c:0c:85:9a:60:
a8:10:68:b5:76:d4:56:81:72:68:b0:a1:45:7f:f0:63:c4:66:
ec:21:ac:fb:5c:4a:70:50:8b:1a:f3:14:7a:b1:50:95:83:50:
6c:bf:03:89:22:3e:6e:5b:74:97:31:b0:6b:64:ce:22:47:45:
d9:49:9b:f0:e0:95:55:b2:a4:28:c1:60:df:97:e5:11:eb:b5:
ee:d6:1a:d8:2d:e7:d0:dd:98:1b:e2:71:8b:af:e4:15:17:cd:
36:1d:00:d9:03:de:83:d5:99:98:06:3c:45:92:02:a8:96:26:
5a:24:50:49:d9:c5:69:45:d1:08:d6:72:be:a1:27:de:66:8c:
52:4f:49:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 15:05:34 2024 by rpki-client on console-ams.rpki-client.org