Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/pk-mS7PC3keIMGMSxlLedJ7JNRc.cer
File: pk-mS7PC3keIMGMSxlLedJ7JNRc.cer (raw, json)
Hash identifier: mEIpWyArhiCY05AtjePwnLa3okGoaKmACis9mJSM3Ns=
Subject key identifier: A6:4F:A6:4B:B3:C2:DE:47:88:30:63:12:C6:52:DE:74:9E:C9:35:17
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC3B6C8E41CB64F48BCAD3ABF4F30C69A
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/55/427db2-c613-4e84-b38c-90569bc6ca54/1/pk-mS7PC3keIMGMSxlLedJ7JNRc.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/55/427db2-c613-4e84-b38c-90569bc6ca54/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 06:29:45 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 204695
IP: 185.242.100.0/22
IP: 2a0c:c780::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:b6:c8:e4:1c:b6:4f:48:bc:ad:3a:bf:4f:30:c6:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 06:29:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a64fa64bb3c2de4788306312c652de749ec93517
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:14:d6:b7:8a:8e:f0:28:91:18:e4:ec:05:ec:
7c:cb:af:aa:eb:a2:e0:0f:47:81:95:87:d0:43:04:
4c:94:a2:46:86:be:97:b0:0b:c6:4d:09:5f:58:f8:
eb:c9:86:d8:49:71:b7:4e:b5:6a:41:32:bf:a8:b1:
de:25:55:eb:c9:24:f7:36:67:98:c6:6c:b4:fe:4a:
d8:61:3f:f7:e3:9e:81:f8:be:2e:79:13:e0:48:5e:
b7:f7:68:6d:ab:43:e4:78:d7:65:41:e2:83:72:fc:
d8:59:0c:c9:3a:11:32:a2:6f:29:76:e2:b4:11:bc:
11:0e:0b:04:ff:f1:75:54:bb:99:73:77:7f:e0:0e:
40:9a:a3:3f:77:9a:df:76:82:d8:f1:64:88:d3:54:
32:5f:d8:80:09:46:75:0d:40:59:b0:48:e9:43:92:
53:bc:61:4b:57:32:fa:36:9f:c8:20:18:81:6e:06:
1e:23:f7:5d:8d:af:8a:5c:28:68:95:cb:87:38:95:
da:c0:bb:4f:44:76:19:8f:86:d8:42:89:9c:71:13:
91:83:2b:77:bc:9b:dd:f6:47:38:a0:10:e8:0f:79:
9a:e4:aa:f7:8b:55:a8:ca:0b:19:36:e8:db:40:c3:
9c:d0:08:3c:d7:95:40:cd:8f:02:c3:06:82:cd:7d:
8e:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:4F:A6:4B:B3:C2:DE:47:88:30:63:12:C6:52:DE:74:9E:C9:35:17
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/427db2-c613-4e84-b38c-90569bc6ca54/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/427db2-c613-4e84-b38c-90569bc6ca54/1/pk-mS7PC3keIMGMSxlLedJ7JNRc.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.242.100.0/22
IPv6:
2a0c:c780::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
204695
Signature Algorithm: sha256WithRSAEncryption
72:1c:b5:3c:93:ed:bf:44:60:22:5d:c3:98:dd:4e:23:58:5a:
8d:4f:bc:0b:1a:f1:8e:6e:4c:ed:a8:6f:d6:d6:58:d3:fb:20:
69:2f:43:47:e7:07:03:b7:94:37:e1:8f:3c:37:24:a3:6b:f8:
02:50:f6:13:25:13:7e:c2:27:33:e9:8d:36:dd:5f:70:03:c4:
68:59:cd:81:af:5f:18:c7:e4:e3:0a:a6:fb:0c:a7:01:af:2f:
61:06:37:31:b6:b1:2f:d8:af:5b:e2:5a:2d:7f:65:25:4f:fb:
d7:12:64:cc:b6:5e:b4:dc:1b:4b:2f:f7:2e:64:d1:1f:64:33:
61:82:bb:33:35:3b:96:e3:ca:53:e7:33:e9:7c:c8:57:83:19:
ba:0d:f5:74:dc:63:af:b0:0f:76:ef:43:74:94:63:25:bb:c6:
b9:49:ee:b9:50:6e:c0:c4:c0:04:9e:06:3a:61:6d:e8:12:71:
8b:39:1e:e7:f9:f0:e2:09:57:a4:f2:d5:f9:70:c5:70:d1:e5:
03:4f:9a:f6:d0:ba:d4:f2:a8:fb:8b:7a:02:41:06:92:29:11:
ee:08:a2:92:65:f9:f3:22:b8:60:1b:a9:3a:22:b9:9c:7c:0c:
77:83:36:eb:dc:10:15:34:9f:cd:c8:12:25:87:6b:aa:7f:8b:
44:63:00:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 02:30:44 2024 by rpki-client on console-ams.rpki-client.org