Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/qsV1yvoAvEHVfElKwfXbz-54My4.cer
File: qsV1yvoAvEHVfElKwfXbz-54My4.cer (raw, json)
Hash identifier: Z5drofRSxdzGOGx512vN86T0C4GWAcySX18QLp40lm8=
Subject key identifier: AA:C5:75:CA:FA:00:BC:41:D5:7C:49:4A:C1:F5:DB:CF:EE:78:33:2E
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC7955FFBF375F923461EC82203200B60
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/f2/35d598-c32c-49a7-b1f6-8f913e2696e5/1/qsV1yvoAvEHVfElKwfXbz-54My4.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/f2/35d598-c32c-49a7-b1f6-8f913e2696e5/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 00:31:44 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 206478
IP: 185.174.32.0/22
IP: 195.225.200.0/22
IP: 2a10:4140::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:95:5f:fb:f3:75:f9:23:46:1e:c8:22:03:20:0b:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 00:31:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=aac575cafa00bc41d57c494ac1f5dbcfee78332e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:fc:f9:e6:e0:de:86:25:36:77:5f:e1:0e:30:
d5:3e:7e:e0:04:b3:92:25:a6:09:71:f8:b6:1e:d9:
b2:3f:c1:18:72:c6:19:00:db:71:72:a3:52:88:19:
8d:f3:81:45:0f:3c:5c:d4:48:fa:4b:d9:33:f9:b1:
11:d5:a5:a6:2e:1d:7c:f8:70:63:34:d8:24:ba:d8:
85:93:5f:63:fa:ad:92:a6:02:ae:6b:6e:30:bd:f4:
68:b1:01:2f:88:7e:6f:26:ad:2a:2e:c1:d8:b7:1d:
6b:52:e7:db:9a:4d:f4:ca:fa:83:cf:eb:0c:54:cf:
01:c1:5a:5e:a6:89:a9:d2:f1:5a:39:c3:a3:01:57:
d8:5e:69:07:08:1a:a5:e0:cc:0c:f5:cd:83:bf:d0:
36:f6:74:d5:16:69:7b:84:03:2e:c6:0b:78:c1:41:
50:f9:40:6a:74:ff:a9:c1:17:2c:e0:74:54:3d:0d:
1a:98:14:b4:42:f7:ab:0d:ff:9f:00:8d:4c:83:7b:
24:10:0b:0e:40:49:44:4d:82:e4:8b:61:23:5a:b4:
e7:7b:5a:31:f3:72:bc:b3:54:dd:b8:5e:43:5c:6d:
6a:be:5b:29:b9:60:44:9b:ed:dc:3b:fd:e8:49:cf:
46:d6:3d:e8:96:4b:27:95:0b:2d:33:80:67:bc:65:
c8:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:C5:75:CA:FA:00:BC:41:D5:7C:49:4A:C1:F5:DB:CF:EE:78:33:2E
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/35d598-c32c-49a7-b1f6-8f913e2696e5/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/35d598-c32c-49a7-b1f6-8f913e2696e5/1/qsV1yvoAvEHVfElKwfXbz-54My4.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.174.32.0/22
195.225.200.0/22
IPv6:
2a10:4140::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
206478
Signature Algorithm: sha256WithRSAEncryption
ab:77:50:c4:5f:f7:18:06:9b:f7:4e:b4:fa:98:9b:7a:2f:bb:
83:96:73:6f:be:81:89:0e:95:db:97:8c:07:a5:bf:62:e4:c7:
88:2a:89:57:08:a4:15:23:d4:aa:6c:9f:47:04:0a:80:08:64:
45:ec:6b:30:f6:ff:09:9f:f3:15:50:8a:1d:5e:bc:a1:65:9e:
e1:0b:68:a2:32:15:55:8e:b3:f5:e7:af:9c:c6:fe:cd:d6:40:
4e:db:0d:2a:68:25:b2:4a:ee:b0:ac:af:e0:76:de:68:2b:d0:
49:5d:24:dc:eb:9d:bd:fb:3c:92:0f:a2:f4:2f:43:2e:b1:d8:
61:6c:4d:e8:c6:c9:ab:3c:34:a1:d1:d2:93:79:06:b3:a6:ec:
c0:91:e0:a3:4c:cb:f1:4b:4d:d2:19:3b:2f:c4:23:f5:1e:c1:
0f:d6:90:c3:fd:ab:ba:1e:c6:cc:aa:c5:26:87:5c:02:ae:eb:
59:b6:b3:bd:bd:2c:c4:8d:99:c5:95:50:d1:76:82:c9:f9:2b:
41:5a:c5:55:08:78:09:d1:5a:55:9b:80:c7:c3:fd:17:f7:79:
7e:ca:ed:3a:ba:a3:1c:08:6c:da:a4:ae:69:4e:c8:15:39:9b:
35:c8:13:8f:82:25:03:ba:f7:76:d0:2d:29:90:cb:1c:a1:b5:
6a:8a:59:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:22:20 2024 by rpki-client on console-fra.rpki-client.org