Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/pqqcrek75rp8irsyODGAdjF9YH0.cer
File: pqqcrek75rp8irsyODGAdjF9YH0.cer (raw, json)
Hash identifier: 3314C4b1pofBBADVjX9dER5HDBtizo9g1XQe0Qtn+Ho=
Subject key identifier: A6:AA:9C:AD:E9:3B:E6:BA:7C:8A:BB:32:38:31:80:76:31:7D:60:7D
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC56E2766D30CAACDB401FEC8EAAFA84A
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/ed/a970c6-c118-452e-a56f-ec467fa8636e/1/pqqcrek75rp8irsyODGAdjF9YH0.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/ed/a970c6-c118-452e-a56f-ec467fa8636e/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 14:29:39 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 203497
AS: 207668
AS: 209423
IP: 45.66.20.0/22
IP: 45.144.120.0/22
IP: 91.211.224.0/22
IP: 194.53.192.0/22
IP: 2a09:60c0::/29
IP: 2a0c:7240::/29
IP: 2a0d:8840::/29
IP: 2a0e:ed40::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:27:66:d3:0c:aa:cd:b4:01:fe:c8:ea:af:a8:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 14:29:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a6aa9cade93be6ba7c8abb3238318076317d607d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:75:a1:0a:72:d3:2f:b8:0c:97:4a:14:c0:40:
b0:d2:16:78:35:4e:71:ef:2c:d4:a6:d0:40:b0:fc:
84:9f:9f:a9:4f:17:d5:cb:f4:d6:fd:02:c7:f2:ae:
a9:9f:dc:f7:54:64:0a:66:4d:2a:0c:26:2e:aa:e6:
59:b5:e4:69:89:2c:87:c5:6e:1c:51:ef:d3:35:3f:
49:f9:43:2b:75:7e:1c:44:d6:85:04:dd:8f:1e:a4:
db:44:84:63:73:e6:1e:4c:13:3a:82:71:6a:62:1c:
9a:45:a0:e8:c3:85:86:d0:2a:c4:0f:0f:d1:62:c9:
03:4a:4a:de:15:bd:86:db:44:a4:fc:99:5b:df:8f:
9e:16:8c:2b:85:14:6b:98:65:97:84:8a:3d:48:ef:
46:4c:f3:d0:17:d4:0c:89:68:0d:d7:74:55:e3:e8:
cb:e5:c1:2a:96:28:37:71:2c:e8:97:fd:9a:df:8e:
2c:63:77:23:16:b7:cb:6c:1d:6a:06:80:d5:4a:bc:
d3:4b:40:af:10:39:a7:42:93:0b:80:4f:92:8e:7b:
b1:b5:07:f4:d3:d3:ef:fb:bb:79:a2:88:85:c0:06:
54:f2:fe:cc:3a:c3:ca:3e:a2:02:5d:22:28:9e:13:
b4:82:5f:ae:02:80:bb:24:bc:af:94:37:25:6d:df:
89:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:AA:9C:AD:E9:3B:E6:BA:7C:8A:BB:32:38:31:80:76:31:7D:60:7D
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/a970c6-c118-452e-a56f-ec467fa8636e/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/a970c6-c118-452e-a56f-ec467fa8636e/1/pqqcrek75rp8irsyODGAdjF9YH0.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.66.20.0/22
45.144.120.0/22
91.211.224.0/22
194.53.192.0/22
IPv6:
2a09:60c0::/29
2a0c:7240::/29
2a0d:8840::/29
2a0e:ed40::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
203497
207668
209423
Signature Algorithm: sha256WithRSAEncryption
96:79:1a:c1:36:64:69:9d:ef:d5:c9:3f:70:da:9c:ec:a0:cf:
d4:90:68:a5:80:84:6f:9b:c9:21:2c:4e:30:70:b1:74:76:b6:
53:a8:93:d8:cf:6a:a2:d1:60:76:d0:b4:a9:4d:e5:cd:1f:b1:
61:c8:31:29:a1:92:76:8b:d5:95:30:db:80:00:3d:7f:fd:c6:
5e:ed:f3:6e:a7:2e:83:6c:36:29:f6:bd:3f:df:8e:83:d8:40:
bf:b8:53:bc:8f:ec:d6:ec:a8:25:9e:a9:57:b6:b8:63:01:97:
15:65:02:85:a9:50:83:55:09:7a:d0:c1:a3:25:8d:4a:9a:34:
a3:1a:8b:fb:1b:e1:18:6a:ca:f0:35:0d:ee:d2:45:4c:bc:8d:
7b:46:2d:ee:92:19:d0:b7:72:53:75:5c:9f:1f:4b:33:6d:d8:
73:8d:4f:92:5a:d5:0a:aa:fa:95:4e:f6:60:89:5a:03:e9:88:
e0:8a:2d:7f:85:f7:97:d1:7e:c6:2b:d0:60:4f:99:01:de:2f:
87:be:40:90:41:43:b5:99:01:e9:a4:ea:4e:01:86:d1:a4:04:
9d:ce:a7:cc:1e:bd:15:50:48:c2:f7:1e:9b:5b:02:16:a3:4a:
1c:55:7c:b4:cc:06:83:5a:9f:5c:2b:c8:ec:de:77:de:e3:45:
bb:86:cd:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 02:30:45 2024 by rpki-client on console-ams.rpki-client.org