Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/pMk6s2TIeDLnd2Im7ubBMdvhU7s.cer
File: pMk6s2TIeDLnd2Im7ubBMdvhU7s.cer (raw, json)
Hash identifier: X3W99YVAeV0bXdVXKp9mMrRpXL3eJxjc9TToekiztG8=
Subject key identifier: A4:C9:3A:B3:64:C8:78:32:E7:77:62:26:EE:E6:C1:31:DB:E1:53:BB
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC500BD75D26D3EA2CFB462BB53743F83
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/e7/49dfea-c789-4401-a251-e2533cdd25af/1/pMk6s2TIeDLnd2Im7ubBMdvhU7s.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/e7/49dfea-c789-4401-a251-e2533cdd25af/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 12:30:09 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 197830
IP: 5.44.32.0/21
IP: 176.28.80.0/21
IP: 185.52.128.0/22
IP: 2a04:c840::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:00:bd:75:d2:6d:3e:a2:cf:b4:62:bb:53:74:3f:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 12:30:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a4c93ab364c87832e7776226eee6c131dbe153bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:c6:9c:d6:79:c9:07:7e:dc:64:73:bf:18:ca:
df:e0:25:d9:76:67:cd:a6:93:a3:76:a1:10:2d:f7:
fb:68:9a:3b:55:08:33:50:e4:75:50:67:2f:9d:14:
77:d7:fc:af:0e:43:13:6e:ea:23:23:37:0d:12:b3:
3e:48:8c:b9:70:1c:74:90:7b:8b:d2:5e:6f:32:30:
b1:91:e7:a0:b9:5f:10:e4:18:7d:a0:bc:7f:d8:60:
75:46:9e:e7:07:9e:ab:cc:5d:da:e1:59:08:f7:7f:
b5:38:cf:d0:f1:9f:af:f0:7d:04:b3:de:31:8c:6b:
ed:5b:5f:e0:11:84:f8:91:e2:ad:c1:c8:21:38:f3:
5e:58:e6:a8:ce:76:56:9c:7a:d4:58:82:ca:8c:4a:
70:2f:b4:b7:9f:02:a6:f2:e7:3b:4d:d0:26:20:22:
67:37:05:24:c3:3c:9d:63:d1:14:9e:b8:28:51:f7:
fb:7a:bf:8f:40:b2:e3:cc:b0:c7:e4:d8:62:aa:ce:
df:f0:9e:d4:e4:50:1e:ae:74:f4:3d:69:28:6e:5a:
95:f7:b1:8f:ff:30:de:c8:2c:f9:9c:8c:9f:64:02:
b3:5c:17:4d:3c:0e:38:f3:b7:29:e7:84:7c:ed:58:
50:ee:c9:4a:99:70:c4:98:06:b4:29:6c:a8:70:41:
13:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:C9:3A:B3:64:C8:78:32:E7:77:62:26:EE:E6:C1:31:DB:E1:53:BB
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/49dfea-c789-4401-a251-e2533cdd25af/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/49dfea-c789-4401-a251-e2533cdd25af/1/pMk6s2TIeDLnd2Im7ubBMdvhU7s.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.44.32.0/21
176.28.80.0/21
185.52.128.0/22
IPv6:
2a04:c840::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
197830
Signature Algorithm: sha256WithRSAEncryption
4e:e1:ee:93:c6:53:a3:d6:83:9f:7c:e3:19:67:db:4a:d5:0f:
07:76:3a:de:5a:39:d7:98:2d:b6:13:c9:e0:40:fb:6a:66:37:
11:d9:0e:da:65:39:4e:fd:ba:d6:6c:cc:1d:c0:6e:67:e6:6e:
a6:2e:86:01:be:96:f8:e0:4d:07:9e:8b:5a:26:28:a9:61:f8:
e9:74:bc:86:ac:d5:4f:e7:c3:46:80:c7:9c:92:f8:86:4c:d7:
eb:0c:f1:9e:a1:ec:70:50:68:d6:2c:04:38:b9:55:1a:69:d2:
18:20:b4:16:00:94:b8:32:45:7a:3c:15:6f:e3:7d:6d:80:0b:
77:45:3d:f3:c6:15:78:df:06:c0:46:8d:58:40:81:f2:65:a3:
99:66:05:53:05:96:7f:03:9b:a3:6b:3e:17:a7:15:6c:33:fd:
4e:78:84:96:9f:bf:e1:b0:ed:77:59:6b:fd:5f:e8:58:9c:9d:
ec:77:e8:7c:cb:7e:87:93:9d:f2:b3:8d:f5:fe:d6:80:b9:71:
62:a9:10:86:18:0a:e8:eb:e3:79:de:94:54:5c:3b:0d:fd:06:
87:66:33:ea:1c:72:1b:fa:7f:3d:cc:1f:2b:0a:6b:40:99:69:
33:b4:53:17:b8:29:cc:e3:b7:1a:25:55:45:7b:59:6f:18:a0:
cb:67:a4:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 01:06:48 2024 by rpki-client on console-fra.rpki-client.org