Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/p_xcZck6dAQIaxelTn4NqWCpspM.cer
File: p_xcZck6dAQIaxelTn4NqWCpspM.cer (raw, json)
Hash identifier: 71BCq47+EYRc40nheiTtgvPamk0zGZkhBpsb3wyZp5w=
Subject key identifier: A7:FC:5C:65:C9:3A:74:04:08:6B:17:A5:4E:7E:0D:A9:60:A9:B2:93
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC86F15F21338C1702EA657208A94787C
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/91/8fcb12-ae4e-4353-a3b9-f0ad375a8086/1/p_xcZck6dAQIaxelTn4NqWCpspM.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/91/8fcb12-ae4e-4353-a3b9-f0ad375a8086/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 04:29:32 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 49554
IP: 91.225.112.0/22
IP: 2001:678:c00::/48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:15:f2:13:38:c1:70:2e:a6:57:20:8a:94:78:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 04:29:32 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a7fc5c65c93a7404086b17a54e7e0da960a9b293
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:f3:54:f4:70:1f:62:04:4d:9b:99:5d:83:b2:
c2:db:5c:1b:7e:8e:aa:9a:a3:df:08:d9:65:8a:f2:
3a:5e:bc:be:23:b9:28:d3:a7:87:ee:fe:a1:77:aa:
71:06:68:77:81:7e:e7:40:32:ab:3d:1a:80:00:c0:
87:bb:64:8d:3c:a0:58:dd:b0:e3:b1:dd:13:e5:25:
46:ec:8a:ad:81:6a:04:8a:48:2e:32:ca:7f:63:4b:
04:9c:d6:d8:48:2e:e6:a4:3b:e1:62:03:93:cd:e7:
e6:2f:7f:9d:f0:b8:f5:19:b5:70:9f:4e:64:20:43:
d7:1b:52:8a:8f:fb:40:36:0c:6c:18:00:4a:dc:3a:
e6:6a:1d:be:3e:3b:eb:65:73:22:16:13:d4:1a:c1:
fa:c9:02:c8:5c:8d:56:6b:68:44:47:0f:c3:d9:bf:
82:64:16:81:f9:aa:2a:80:3a:2c:d6:e7:f8:fc:6f:
5f:4b:da:54:5f:fd:a6:f0:e1:98:84:a2:a1:a8:66:
bc:5e:d3:07:64:0d:37:47:4b:eb:e5:43:2f:6f:1e:
cb:cf:a8:fd:91:ce:01:bb:e9:03:9b:ed:eb:7e:81:
ee:1b:c4:f4:6e:ac:11:1f:05:85:3b:3e:d3:9d:0f:
cf:68:c9:e1:01:ab:2d:82:05:38:f5:01:df:1a:42:
9e:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:FC:5C:65:C9:3A:74:04:08:6B:17:A5:4E:7E:0D:A9:60:A9:B2:93
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/8fcb12-ae4e-4353-a3b9-f0ad375a8086/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/8fcb12-ae4e-4353-a3b9-f0ad375a8086/1/p_xcZck6dAQIaxelTn4NqWCpspM.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.225.112.0/22
IPv6:
2001:678:c00::/48
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
49554
Signature Algorithm: sha256WithRSAEncryption
93:ac:e4:25:b7:80:7f:24:01:eb:c9:96:61:a5:37:1e:c1:af:
08:4b:ae:f5:f9:13:19:34:f4:b5:ee:b9:64:5b:d1:1f:aa:40:
a0:ae:99:6d:9d:85:e2:51:58:e6:af:83:5d:ff:79:ad:ad:c4:
b6:0c:8e:15:df:3b:4a:8c:9c:a8:e8:a7:ca:1d:9c:c9:e4:c1:
8e:06:02:8f:b9:ba:14:14:66:83:22:d3:eb:5c:aa:f3:20:60:
60:8f:94:20:cd:61:e9:96:3f:15:32:39:4b:76:60:6b:6f:f2:
e0:93:04:89:d1:bd:38:a4:f3:9b:60:8a:3a:07:a7:b9:c9:b2:
c9:57:31:38:07:24:a9:63:39:ac:dc:42:ca:13:3e:1e:e7:52:
ea:10:ce:ca:f2:ed:e9:c1:f8:af:0e:84:b5:e5:53:0c:05:39:
2d:ac:17:7e:98:bd:f3:e5:2d:1a:e4:46:25:99:82:6b:47:c8:
2b:61:43:de:1c:71:9f:e2:12:e2:9a:df:5f:5b:c0:ef:c7:5d:
6d:29:6a:2d:c6:25:52:34:08:73:2b:a2:d6:c7:c8:e0:9b:fa:
b1:65:3f:9f:6a:90:ce:eb:9b:49:cf:00:59:1f:e1:26:d0:e8:
ae:9b:c1:3a:19:45:d2:1f:df:d9:f4:50:8a:ba:6a:64:54:e9:
13:c8:e2:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 11:04:08 2024 by rpki-client on console-ams.rpki-client.org