Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/pN15cHEksgZy5pw44Xtma3-ufB0.cer
File: pN15cHEksgZy5pw44Xtma3-ufB0.cer (raw, json)
Hash identifier: oPysV606mWaBAjROQdlpcDJjEcqZixSJRRYJnqsmCy8=
Subject key identifier: A4:DD:79:70:71:24:B2:06:72:E6:9C:38:E1:7B:66:6B:7F:AE:7C:1D
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018EF74B119F5C77B609AB46C12DD96FD365
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/e2/8d1cea-4d9d-4906-98d7-7188d91a6ca9/1/pN15cHEksgZy5pw44Xtma3-ufB0.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/e2/8d1cea-4d9d-4906-98d7-7188d91a6ca9/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Fri 19 Apr 2024 16:57:55 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 51933
IP: 46.183.32.0/21
IP: 194.125.228.0/22
IP: 2a0b:2a00::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:f7:4b:11:9f:5c:77:b6:09:ab:46:c1:2d:d9:6f:d3:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Apr 19 16:57:55 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a4dd79707124b20672e69c38e17b666b7fae7c1d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:51:d0:eb:e9:c7:8f:7b:c0:66:2e:e4:ec:7c:
6c:4d:36:1a:71:9f:3d:6b:eb:e6:ee:5e:b4:1d:8f:
86:cb:49:7d:bf:7c:8e:10:18:f7:c6:f3:e7:ad:76:
09:6b:c3:a6:e7:b5:cb:a4:8e:13:6c:2f:80:85:34:
4f:59:ae:f5:d2:ee:b3:b8:bd:79:ca:98:08:0c:e5:
04:bd:a9:f8:71:ac:13:63:44:d0:f3:77:0f:9e:8d:
e6:d4:77:d4:bb:67:ac:99:13:20:ba:16:e9:79:1f:
7c:27:cf:f6:8e:80:b9:35:50:98:ea:77:27:72:4e:
50:83:86:51:05:63:e6:fb:60:ef:ca:85:bb:19:a6:
6a:82:c1:1b:7f:42:2a:53:71:89:46:50:88:56:2c:
7a:51:88:6d:c9:04:0e:b3:8c:a2:20:f2:6a:c2:c4:
71:c3:1c:9e:52:23:1e:01:58:50:06:d0:ad:ff:f7:
46:d1:36:02:18:5d:43:75:db:68:cb:b1:e4:ba:66:
15:5a:de:1a:69:41:6d:fe:84:16:06:95:35:e4:75:
c5:51:9d:bb:04:08:fc:28:1a:f3:58:68:34:27:d6:
34:f2:12:33:c2:b9:75:fc:07:bd:c1:1e:60:20:33:
71:24:1d:9e:4e:4e:b6:39:0d:91:c6:05:7f:23:69:
7d:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:DD:79:70:71:24:B2:06:72:E6:9C:38:E1:7B:66:6B:7F:AE:7C:1D
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/8d1cea-4d9d-4906-98d7-7188d91a6ca9/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/8d1cea-4d9d-4906-98d7-7188d91a6ca9/1/pN15cHEksgZy5pw44Xtma3-ufB0.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.183.32.0/21
194.125.228.0/22
IPv6:
2a0b:2a00::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
51933
Signature Algorithm: sha256WithRSAEncryption
13:4e:ae:fe:dc:db:2e:dc:b3:ac:45:f7:fe:05:79:b5:aa:75:
05:88:c5:f0:48:35:7c:28:11:f4:e6:c3:58:cc:de:50:f9:05:
17:0f:49:dc:7c:45:a4:de:ba:5f:23:05:16:ad:b7:dd:f3:4e:
e6:12:47:6a:24:96:e5:25:e6:2f:76:46:76:3a:17:2d:73:42:
22:1f:f2:18:a1:69:9d:d0:dc:26:0b:c3:11:b3:23:be:47:f2:
c4:36:ff:7c:4c:dd:da:3f:53:90:fc:f5:6e:32:dd:4c:d9:69:
fb:7b:6d:de:ad:48:30:74:79:8f:c9:4a:de:81:c0:19:f9:fc:
79:55:8d:45:b5:c3:49:74:82:8e:0d:81:b8:f6:3c:44:8e:ea:
5e:33:20:a9:a6:0c:dc:ea:ea:e0:94:85:46:e3:00:b7:aa:4b:
27:ec:62:4e:8b:1f:d2:67:81:e7:8e:c4:09:dc:f6:c5:85:43:
26:4e:35:1b:39:2e:8f:7e:59:24:cc:a7:56:d5:dc:c1:14:26:
91:a5:3b:2d:7e:03:00:ed:53:2a:ab:64:5a:10:27:61:f3:9e:
fa:35:1f:72:3f:fa:04:c3:8d:3a:3f:f5:d2:42:e6:dc:9a:a9:
06:83:b3:6a:17:cb:3d:88:e9:66:43:87:10:62:cc:95:3e:12:
9d:9a:1b:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 01:06:49 2024 by rpki-client on console-fra.rpki-client.org