Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/qs5nJaCg3dFoBICoN4XSzVe_arA.cer
File: qs5nJaCg3dFoBICoN4XSzVe_arA.cer (raw, json)
Hash identifier: f/YvRk7nTh2/K8M28X2jxNd9Y1B8FyLYkuW0ekKbM5g=
Subject key identifier: AA:CE:67:25:A0:A0:DD:D1:68:04:80:A8:37:85:D2:CD:57:BF:6A:B0
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019266478E2D573C44581C7D0DFA976B3658
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/c5/8112ff-b216-406f-8f59-72a082cdb182/1/qs5nJaCg3dFoBICoN4XSzVe_arA.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/c5/8112ff-b216-406f-8f59-72a082cdb182/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 07 Oct 2024 09:20:18 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 200443
IP: 31.24.82.0/24
IP: 46.28.236.0/24
IP: 91.247.164.0/24
IP: 185.228.207.0/24
IP: 2a13:5f40::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:66:47:8e:2d:57:3c:44:58:1c:7d:0d:fa:97:6b:36:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Oct 7 09:20:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=aace6725a0a0ddd1680480a83785d2cd57bf6ab0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:8e:94:42:54:c7:97:91:af:91:d0:fc:a5:95:
4f:bf:d2:ca:d7:24:13:11:3d:f4:0e:5d:dd:ae:33:
3a:b9:80:8d:eb:70:c3:b2:1f:4c:00:1c:c7:dc:09:
4d:ae:73:91:0c:5c:36:6b:c5:ce:75:d0:ff:5b:04:
c0:ec:6d:6f:05:f9:ce:27:b3:7c:11:03:fe:34:c5:
c4:87:ca:38:89:95:9d:b8:b6:9f:87:ba:e7:52:90:
84:f7:a6:fb:56:91:42:d3:82:dc:81:3c:fc:8e:97:
d0:3b:c8:85:56:07:ed:19:4e:dd:f3:9e:4c:56:f2:
fb:c2:d6:6a:21:5b:c4:f8:d7:2d:88:15:98:0b:9a:
3b:26:8e:48:4c:3c:7a:32:e6:ee:7f:ab:b9:a5:d8:
b7:71:35:03:42:d9:a0:06:cb:4e:db:1d:25:eb:83:
9b:06:63:cd:62:75:47:de:4a:2b:2b:2b:d3:0a:07:
96:45:05:7c:d1:d8:05:67:ce:95:c1:ce:a9:9f:bc:
95:9f:18:d9:ca:85:7e:e7:b4:08:9f:0d:57:67:ea:
a9:9e:e5:e2:5f:d6:e8:d7:53:45:55:5b:a5:77:89:
4a:86:f1:5f:e1:d3:74:6e:00:c7:50:81:21:61:88:
d1:36:30:3f:65:bd:47:40:bb:e8:4c:74:16:bc:a2:
f1:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:CE:67:25:A0:A0:DD:D1:68:04:80:A8:37:85:D2:CD:57:BF:6A:B0
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8112ff-b216-406f-8f59-72a082cdb182/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8112ff-b216-406f-8f59-72a082cdb182/1/qs5nJaCg3dFoBICoN4XSzVe_arA.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.24.82.0/24
46.28.236.0/24
91.247.164.0/24
185.228.207.0/24
IPv6:
2a13:5f40::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
200443
Signature Algorithm: sha256WithRSAEncryption
46:63:02:fd:34:09:c8:b5:4d:55:cf:2a:2f:bc:f8:64:60:06:
f9:3e:87:c6:d2:81:d0:1b:64:ff:be:94:35:c8:54:44:19:c3:
e5:69:39:53:61:4b:52:b5:68:ce:92:05:66:52:6b:58:85:71:
e4:db:36:96:f7:82:05:e6:d0:2b:f7:47:e4:df:45:f4:e8:c5:
41:d2:81:ed:dd:50:d2:8b:b4:58:a5:c4:26:41:c5:3a:4d:ac:
16:1a:c4:5b:24:4a:fc:cb:db:8d:41:4d:3f:14:92:33:54:13:
42:e4:c5:52:49:17:91:12:5d:a5:ac:86:30:83:e2:d3:22:0a:
59:61:86:f1:7b:e0:3b:e0:31:7b:08:de:e3:65:52:02:a6:4d:
5c:22:8b:58:2e:bd:33:2c:c3:35:e7:6a:92:c7:10:fd:da:73:
9a:66:5c:45:50:2d:90:fe:91:83:f2:a0:48:bb:eb:9e:72:8d:
ff:30:d3:01:d0:43:b0:04:a0:b3:8c:ee:1b:7e:f0:36:33:0f:
a4:47:5e:ff:00:e5:2b:16:17:24:f7:17:c8:11:bc:0e:ba:2f:
03:93:1b:cc:4e:c7:bb:85:c8:18:0c:2d:e9:56:b4:e2:44:0b:
0f:37:87:42:57:b8:ac:42:0e:a9:6f:f8:9c:17:ed:5f:e9:ce:
17:1e:46:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 10:14:13 2024 by rpki-client on console-ams.rpki-client.org