Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/pkDHUev7SAfYRiLoBss9C53YEGk.cer
File: pkDHUev7SAfYRiLoBss9C53YEGk.cer (raw, json)
Hash identifier: L2sf9DO3Uojfu+ZWeqcKe3i6eiICM7FSwzBeRcxN6dg=
Subject key identifier: A6:40:C7:51:EB:FB:48:07:D8:46:22:E8:06:CB:3D:0B:9D:D8:10:69
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC424EBA99D570FA2D1B9794CB01AEE04
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/4d/8a5a2e-4d33-4a2c-adf3-026b8cf691ba/1/pkDHUev7SAfYRiLoBss9C53YEGk.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/4d/8a5a2e-4d33-4a2c-adf3-026b8cf691ba/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 08:30:03 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 21436
AS: 212801
IP: 193.108.164.0/23
IP: 2001:67c:58c::/48
IP: 2001:67c:17b0::/48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:24:eb:a9:9d:57:0f:a2:d1:b9:79:4c:b0:1a:ee:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 08:30:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a640c751ebfb4807d84622e806cb3d0b9dd81069
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:b0:5d:36:97:a3:d8:59:67:4f:15:f8:ba:c7:
0c:ef:e7:6b:88:48:81:6c:19:2d:2e:82:1d:40:30:
39:69:78:f5:c5:89:ef:8a:c0:02:01:46:31:f7:cb:
ac:18:97:ac:b4:38:26:2f:b0:b5:83:9b:a8:f2:da:
78:ba:68:2f:66:f4:fc:7c:01:5e:40:a9:e5:7d:35:
a3:fa:69:08:54:2d:90:d4:a9:e9:f5:29:bf:fa:c8:
99:05:92:27:57:aa:0a:bc:a8:af:21:d6:f5:af:a5:
6a:be:fe:81:bb:de:63:2d:d3:e0:55:f9:59:f2:f8:
97:e8:d8:9b:1e:e0:dd:5a:e5:5d:a4:d1:78:38:a2:
b8:42:b6:67:44:62:a7:d9:56:0b:65:29:99:02:49:
28:14:70:eb:99:b8:e0:20:a5:ba:4a:e4:68:33:00:
b4:25:cd:b2:ad:9a:54:92:9e:2b:f9:11:02:03:83:
5e:eb:da:cd:90:c2:34:42:b3:97:36:53:63:e3:92:
c6:f9:20:2e:e5:f9:c3:c9:bc:16:d6:d3:b3:8c:6e:
b1:6a:75:0f:11:f2:16:a3:00:67:ae:d2:f9:74:ea:
77:0b:ac:01:f7:8f:5a:f9:af:7e:8a:80:c7:1a:2b:
11:d8:5f:31:d9:57:55:da:6b:6b:ca:89:92:f0:ac:
bf:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:40:C7:51:EB:FB:48:07:D8:46:22:E8:06:CB:3D:0B:9D:D8:10:69
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/8a5a2e-4d33-4a2c-adf3-026b8cf691ba/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/8a5a2e-4d33-4a2c-adf3-026b8cf691ba/1/pkDHUev7SAfYRiLoBss9C53YEGk.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.108.164.0/23
IPv6:
2001:67c:58c::/48
2001:67c:17b0::/48
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
21436
212801
Signature Algorithm: sha256WithRSAEncryption
7b:9c:fe:33:42:3f:a4:44:9f:a0:af:d2:4a:6a:63:6f:6a:27:
f8:2b:63:2c:e4:27:61:0f:74:4a:1e:d9:d5:d1:00:90:a0:77:
42:12:02:b6:ca:55:56:b5:02:cc:ef:0e:35:32:d4:cd:67:02:
56:88:ab:99:99:82:65:bb:ee:97:64:8a:de:ae:a7:7c:c8:4a:
27:2a:d1:52:f7:67:23:82:26:12:cb:71:05:28:11:fc:ad:aa:
cf:df:e7:d9:77:7c:62:8e:81:84:b8:bb:4b:c2:56:ef:31:cc:
96:88:6d:ec:bd:2a:ce:f8:3a:57:e1:bb:2f:1c:fb:05:35:90:
ff:25:78:fc:37:0f:e1:7e:81:6b:dd:b8:ca:ed:37:7c:a4:fe:
9c:86:11:f9:58:fc:6e:9f:d8:de:bb:4d:c9:c7:01:3a:eb:81:
09:22:63:79:41:11:91:cb:67:65:25:0f:9b:29:f5:72:66:25:
8a:86:58:18:0f:14:16:14:b4:6c:8b:19:93:c9:55:be:e0:7f:
be:da:44:b3:a2:00:9d:2c:e7:80:30:2f:2d:25:e5:6d:d5:fc:
7c:b4:a0:0c:41:87:27:cd:af:aa:75:5c:66:35:a6:a5:80:a7:
1d:ef:fc:ca:8e:9c:55:dd:da:f4:9d:c8:b3:5a:ca:f8:56:9c:
64:c2:fc:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 11:04:09 2024 by rpki-client on console-ams.rpki-client.org