Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/qSskQKfHot_PLkIW2oo73mi5uJg.cer
File: qSskQKfHot_PLkIW2oo73mi5uJg.cer (raw, json)
Hash identifier: llFfQnZvzJX9CviSXvhovhW8RDRVQmXpj7hUh0sL9Nc=
Subject key identifier: A9:2B:24:40:A7:C7:A2:DF:CF:2E:42:16:DA:8A:3B:DE:68:B9:B8:98
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC348C190C7575AF3FD85E064E5245D51
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/7a/892193-9ed9-4447-8402-f2c67eca3e5b/1/qSskQKfHot_PLkIW2oo73mi5uJg.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/7a/892193-9ed9-4447-8402-f2c67eca3e5b/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 04:29:34 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: IP: 91.213.13.0/24
IP: 193.108.238.0/24
IP: 2001:67c:1064::/48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:48:c1:90:c7:57:5a:f3:fd:85:e0:64:e5:24:5d:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 04:29:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a92b2440a7c7a2dfcf2e4216da8a3bde68b9b898
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:24:c5:40:be:9a:9e:a4:4a:5f:cd:47:e9:b1:
00:d5:3b:20:91:4b:36:71:c3:a2:5f:86:40:e9:81:
c9:23:c1:fc:11:b4:0a:82:00:27:53:97:3d:4b:42:
b4:79:49:99:4e:83:fb:1a:27:6a:e2:e1:46:2f:50:
b6:3a:8d:17:54:75:9f:1e:fc:26:bf:22:4c:34:f7:
28:3f:d5:74:b9:cb:ce:59:c7:f0:10:00:e1:8c:5d:
32:c4:73:4c:f7:04:b5:8b:8c:bc:d7:a2:4e:42:d0:
aa:08:ef:c2:53:fa:51:e7:9f:e6:f6:d3:ac:6e:8d:
5e:01:b7:d2:a7:ee:09:da:28:1e:38:b0:76:d9:13:
74:e8:79:68:17:e9:fc:b2:48:47:ad:e1:0c:32:fe:
ba:67:5a:5e:d1:5b:34:ff:af:28:56:2c:fa:f5:af:
ad:b5:8c:1c:eb:8c:62:de:99:7c:11:b1:3b:7c:98:
67:66:fa:95:d5:1c:81:37:be:f5:b8:5d:63:0d:60:
e3:4e:63:5b:5c:f6:21:f1:33:5d:dd:4b:e1:2f:62:
f5:cc:af:ba:e4:98:0d:7b:5d:c3:de:72:75:c7:0e:
95:d8:cc:c2:41:b3:35:91:fe:ca:77:0e:12:84:e8:
c5:87:19:94:35:a3:d6:e5:41:8b:34:9e:96:5f:19:
4e:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:2B:24:40:A7:C7:A2:DF:CF:2E:42:16:DA:8A:3B:DE:68:B9:B8:98
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/892193-9ed9-4447-8402-f2c67eca3e5b/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/892193-9ed9-4447-8402-f2c67eca3e5b/1/qSskQKfHot_PLkIW2oo73mi5uJg.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.213.13.0/24
193.108.238.0/24
IPv6:
2001:67c:1064::/48
Signature Algorithm: sha256WithRSAEncryption
18:68:b5:9c:47:0a:63:96:61:7b:18:7b:24:90:94:cc:df:2f:
60:65:83:a6:0d:04:5a:ed:8e:75:ae:ab:3a:97:fe:b6:c8:3c:
ba:3d:db:ac:5e:3d:d8:fa:6c:9f:01:6a:5e:38:85:d5:c7:ef:
a3:39:93:5e:0c:e2:81:9b:90:dc:21:38:b3:80:7e:36:41:1e:
1d:67:21:d1:69:a7:fb:ad:3c:c3:9f:e5:bc:ae:40:6c:26:68:
03:aa:81:b2:96:8d:d3:db:3a:5d:62:13:32:b3:fe:3b:60:ec:
4f:37:71:93:4a:68:9b:5a:97:6d:0e:e6:ed:4d:65:d9:65:cd:
a6:cb:9d:19:d7:76:08:f2:10:08:12:3b:66:3e:a4:b7:cd:49:
da:72:0e:c6:62:f9:36:e3:56:b2:7d:af:ad:11:d2:c4:e1:01:
91:42:8a:14:89:65:3f:26:97:f3:f0:54:8b:ee:48:dd:93:00:
b8:f6:14:a8:b5:b4:1c:47:ec:70:99:1d:67:b9:85:e7:56:5b:
18:7c:2c:94:40:98:10:3f:86:0f:e0:f4:36:8d:d8:28:0a:f0:
47:42:aa:9e:dd:2d:3f:7c:c3:61:9a:81:b8:b8:f8:6a:59:fe:
e7:df:29:ce:dc:fa:3c:48:20:35:43:dc:f8:e5:3b:c8:52:63:
16:52:ef:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 02:30:54 2024 by rpki-client on console-ams.rpki-client.org