Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/q5ddtDeN_KfClTuG07GNyLIY7Gs.cer
File: q5ddtDeN_KfClTuG07GNyLIY7Gs.cer (raw, json)
Hash identifier: qCyJAP7gsMx3XnNSj+qZpgAjfBWQqpHUXAQBiAQxq28=
Subject key identifier: AB:97:5D:B4:37:8D:FC:A7:C2:95:3B:86:D3:B1:8D:C8:B2:18:EC:6B
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CCA2BE88075E48F41F14561E3CBC7C4F8
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/6c/1c8605-163e-4245-af12-cdbd556e1749/1/q5ddtDeN_KfClTuG07GNyLIY7Gs.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/6c/1c8605-163e-4245-af12-cdbd556e1749/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 12:35:24 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 208283
AS: 208338
IP: 45.144.4.0/22
IP: 2a0e:e740::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:2b:e8:80:75:e4:8f:41:f1:45:61:e3:cb:c7:c4:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 12:35:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ab975db4378dfca7c2953b86d3b18dc8b218ec6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:8b:a2:43:7c:44:26:b4:dc:19:3c:49:0b:26:
38:f2:af:3e:ea:b7:a1:3d:be:70:52:e4:9f:18:a5:
48:bd:27:37:2f:f2:de:ae:4c:af:e1:95:56:7b:6e:
3c:34:46:7e:0d:d5:ea:57:f2:08:da:75:22:50:9f:
52:78:83:f9:1f:f3:0c:60:ff:a2:45:3c:9d:96:ad:
fc:b0:56:ae:23:ce:08:a6:fa:b4:97:1d:c3:89:5f:
d0:59:e8:25:51:39:0a:da:3d:26:1b:6a:33:dd:d7:
df:26:f2:5b:a3:d7:5c:79:7a:16:cc:bd:c0:61:99:
6f:09:44:aa:f9:42:bd:f6:a9:6e:18:4e:df:c4:64:
5f:68:d1:b8:6a:20:a2:b0:d2:a0:14:f1:0a:ad:51:
54:71:b0:45:a7:12:b1:54:b9:a9:dc:a7:16:a1:80:
46:01:b8:16:ae:0c:2a:39:a2:cd:50:eb:50:58:f5:
69:71:4e:7a:f6:03:21:3d:d2:d6:ab:f6:cc:a5:78:
d7:17:c9:e5:f2:90:07:58:ab:5f:77:eb:a8:31:b5:
a6:b3:f7:0f:73:4b:f7:83:27:c4:05:83:d7:9a:9d:
70:91:e7:b2:fd:98:52:8c:f8:14:32:df:28:e6:b9:
e8:3a:21:a9:53:c7:78:54:3a:fc:01:9c:da:9a:24:
52:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:97:5D:B4:37:8D:FC:A7:C2:95:3B:86:D3:B1:8D:C8:B2:18:EC:6B
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/1c8605-163e-4245-af12-cdbd556e1749/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/1c8605-163e-4245-af12-cdbd556e1749/1/q5ddtDeN_KfClTuG07GNyLIY7Gs.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.144.4.0/22
IPv6:
2a0e:e740::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
208283
208338
Signature Algorithm: sha256WithRSAEncryption
6d:cd:6e:5c:6e:07:be:06:77:89:2d:ad:ff:6d:5d:92:22:52:
e4:78:18:16:bc:87:bf:e7:ec:58:c0:08:39:87:5f:ad:9c:2b:
90:8a:d8:d3:3c:76:23:62:7f:0b:b5:74:16:6c:99:08:52:fb:
84:d2:d1:08:38:e8:97:df:cd:0d:f0:19:5f:51:66:d3:55:79:
70:95:b0:aa:67:87:de:4c:79:97:7c:fe:75:d3:1c:c0:2b:fa:
d6:1e:1b:fb:fc:32:ba:50:1b:e4:cd:2e:32:e3:c3:37:c1:7c:
c0:26:f3:85:58:bf:d4:c5:06:38:83:04:f4:eb:b2:8a:18:02:
49:4b:d2:a5:03:bf:7c:0b:9f:d0:a1:c1:9f:d9:0f:07:bf:90:
fc:2e:97:46:0f:62:08:d0:9d:82:f7:c8:c2:bd:f6:33:95:2e:
04:e0:19:23:1b:a7:fc:47:5e:fa:30:98:59:fc:8e:7b:fe:3d:
07:43:c1:97:74:d9:ab:a9:a8:6c:16:99:49:7d:0c:21:02:93:
3c:47:48:bf:5f:be:ad:66:07:ad:74:39:13:23:0d:d0:e9:98:
7a:03:5f:40:7a:64:2b:24:ab:c9:d5:68:d2:2f:02:dd:86:9c:
1c:87:fb:5f:66:ce:fb:e4:1f:bf:90:5e:d9:d8:96:25:34:0d:
cf:f6:06:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 07:53:35 2024 by rpki-client on console-ams.rpki-client.org