Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/q06x4MU6aA6qQLjHzT8hzJYEPoo.cer
File: q06x4MU6aA6qQLjHzT8hzJYEPoo.cer (raw, json)
Hash identifier: l+u0lOfVMB55m8PGSRDPzo3aiaz309CZTxM8ZzSQp6E=
Subject key identifier: AB:4E:B1:E0:C5:3A:68:0E:AA:40:B8:C7:CD:3F:21:CC:96:04:3E:8A
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC8DEC9BEFB7C847956470FD8B573CB2C
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/c3/6e02e8-7e05-4fcf-8a6a-37c2342c5c2f/1/q06x4MU6aA6qQLjHzT8hzJYEPoo.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/c3/6e02e8-7e05-4fcf-8a6a-37c2342c5c2f/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 06:31:33 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 201983
IP: 91.132.52.0/22
IP: 185.57.104.0/22
IP: 185.177.164.0/22
IP: 212.237.200.0/21
IP: 2a04:dcc0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:de:c9:be:fb:7c:84:79:56:47:0f:d8:b5:73:cb:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 06:31:33 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ab4eb1e0c53a680eaa40b8c7cd3f21cc96043e8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:a3:70:7e:c2:33:e0:e9:47:12:2f:f2:3d:b4:
a8:a2:9d:be:94:e1:9b:1e:d5:5f:a8:4c:e7:54:e9:
a3:95:19:e4:f8:1b:5a:7a:aa:0c:7d:cb:7b:34:27:
4a:a3:62:32:15:64:95:e3:1e:ef:c5:7c:35:33:e4:
2d:be:8d:7c:90:b3:54:c4:85:ef:f1:59:2b:78:b3:
79:86:f9:2c:4f:91:85:ce:e3:23:da:20:b9:05:0a:
ff:a0:2d:10:f0:cb:ce:6c:8c:ec:56:9c:35:44:a6:
0a:5b:67:28:4c:2c:b8:18:42:5c:c3:14:88:af:25:
41:8f:75:cd:48:f6:88:d8:c7:ca:c3:5c:dc:1d:18:
df:fd:64:ad:9b:41:a8:de:30:e2:9a:fc:85:26:70:
c3:71:67:b8:0d:0b:13:a4:8a:e9:31:21:c7:4a:bf:
33:33:33:53:46:8c:85:15:41:15:b3:62:b4:d5:29:
c1:8a:d0:ea:79:2a:47:73:2b:1a:7d:55:54:eb:d2:
2e:9c:3b:aa:41:21:17:6a:57:17:92:53:e5:da:71:
a9:cd:ee:5e:03:d2:a5:1d:1f:44:eb:c3:35:f0:a7:
df:2c:63:88:2c:1c:8e:48:4e:1c:31:12:e5:15:f3:
ab:28:4f:5a:a0:f1:c3:d9:85:9f:ea:ab:7c:1d:49:
bf:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:4E:B1:E0:C5:3A:68:0E:AA:40:B8:C7:CD:3F:21:CC:96:04:3E:8A
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/6e02e8-7e05-4fcf-8a6a-37c2342c5c2f/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/6e02e8-7e05-4fcf-8a6a-37c2342c5c2f/1/q06x4MU6aA6qQLjHzT8hzJYEPoo.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.132.52.0/22
185.57.104.0/22
185.177.164.0/22
212.237.200.0/21
IPv6:
2a04:dcc0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
201983
Signature Algorithm: sha256WithRSAEncryption
15:fe:e8:fd:cc:29:67:d5:53:bf:1f:6c:e6:6f:d0:52:58:49:
e7:11:6f:df:39:73:ab:0d:ca:29:2e:ea:87:e0:8b:56:b6:c1:
3d:e2:45:39:ee:82:96:82:cd:25:01:2d:5a:90:88:9d:82:d9:
d9:7c:93:38:76:14:80:f2:93:c1:4c:1e:0c:d4:cf:ff:b3:a0:
91:62:01:21:03:e0:e8:95:4f:b9:fe:36:98:40:25:80:19:dd:
25:36:d3:83:50:2c:a8:89:27:53:7a:49:69:d0:4d:82:f0:97:
63:fa:df:f4:4a:4f:ff:aa:df:af:f0:db:54:06:5c:ed:0f:d9:
3a:93:cf:d6:df:b7:69:b8:a5:f5:db:7d:15:9a:d9:b5:92:be:
20:b1:a4:a4:81:ff:43:82:84:6a:47:01:99:10:d8:33:99:41:
71:52:83:e2:33:4d:c4:61:98:9d:45:c8:00:9e:f4:b3:77:d5:
03:82:85:a7:fa:77:80:39:13:6e:09:4c:fd:7b:8c:af:18:e7:
89:4a:bf:b6:a8:1e:33:36:81:2d:1e:b1:2e:68:d0:10:90:27:
fe:2b:12:4a:6d:64:61:a2:f8:91:40:2a:90:59:69:de:2d:c0:
ee:10:0d:75:d6:5c:9f:f4:2d:f9:da:4d:2e:67:be:9d:fb:bd:
bb:78:f0:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:42:52 2024 by rpki-client on console-ams.rpki-client.org