Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/r0j2f1P86YkdQVk6yEyuMEq_y88.cer
File: r0j2f1P86YkdQVk6yEyuMEq_y88.cer (raw, json)
Hash identifier: LyxuX9RHqtX+u0f778XijbvtabfHwqOvov7G2xLRTJA=
Subject key identifier: AF:48:F6:7F:53:FC:E9:89:1D:41:59:3A:C8:4C:AE:30:4A:BF:CB:CF
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC56EDD5D1390241967E7621CD047211C
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/6d/e1545b-fc52-44c0-8f57-2884dd8248d6/1/r0j2f1P86YkdQVk6yEyuMEq_y88.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/6d/e1545b-fc52-44c0-8f57-2884dd8248d6/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 14:30:26 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 208034
IP: 185.194.248.0/24
IP: 193.169.106.0/23
IP: 193.169.170.0/23
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:dd:5d:13:90:24:19:67:e7:62:1c:d0:47:21:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 14:30:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=af48f67f53fce9891d41593ac84cae304abfcbcf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:63:96:58:e4:3d:44:09:c5:74:9b:f7:ed:de:
ab:50:0f:cb:ca:22:8f:3a:93:45:f5:72:57:58:99:
bc:d9:10:ba:f5:7b:0f:15:c8:60:d0:06:ba:fb:87:
80:a8:25:94:2d:18:2f:43:3f:f9:a4:ca:ab:86:f6:
5e:00:7e:2d:9d:4b:4d:6a:3c:4f:35:83:b6:d5:07:
cb:86:af:78:dc:59:a6:79:32:41:32:08:74:4e:ba:
6a:47:b7:50:bb:8d:d8:3a:c4:30:3e:ed:03:0d:43:
59:83:92:80:0f:dc:bc:c3:3c:36:88:b5:73:b6:06:
c5:49:d0:be:c0:02:33:0e:5a:12:7a:48:a4:db:14:
71:1d:9e:04:79:21:d2:e7:86:f9:bb:52:87:42:eb:
ae:fe:fa:c1:92:79:02:90:55:05:2a:db:d2:0b:7d:
d7:45:81:e5:b2:bd:ac:19:b5:55:21:10:47:9e:b1:
d9:81:15:65:9e:50:9d:80:67:c2:e4:84:02:66:3a:
5c:c8:24:60:9a:75:c4:54:4f:b3:eb:9c:2e:e9:dc:
cc:2c:b8:7b:81:62:2a:1c:be:ad:f1:0b:2f:d6:48:
48:a2:ce:73:07:3b:05:fb:59:ec:e2:f4:29:4b:ae:
40:b4:4a:32:72:b3:d8:39:f6:1e:bb:0e:4f:16:c4:
5a:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:48:F6:7F:53:FC:E9:89:1D:41:59:3A:C8:4C:AE:30:4A:BF:CB:CF
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/e1545b-fc52-44c0-8f57-2884dd8248d6/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/e1545b-fc52-44c0-8f57-2884dd8248d6/1/r0j2f1P86YkdQVk6yEyuMEq_y88.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.194.248.0/24
193.169.106.0/23
193.169.170.0/23
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
208034
Signature Algorithm: sha256WithRSAEncryption
48:87:5d:de:91:78:ab:57:4e:93:d8:1a:6f:fd:6f:26:a6:87:
de:84:00:77:5e:97:f0:07:be:25:6a:6a:78:4e:d5:f1:c6:77:
6a:be:be:8a:fb:98:8f:c8:1b:db:de:12:bc:e2:67:18:2f:0b:
8f:3f:10:35:bc:cb:55:18:10:12:81:3f:10:42:47:d6:c5:08:
aa:62:3c:78:17:d1:a6:8e:a1:03:e4:0b:8b:d4:53:42:c3:9f:
76:fd:c9:59:5c:21:18:aa:88:6e:71:45:1b:f7:b0:95:32:85:
10:ad:07:6f:eb:7e:35:0b:0f:73:ea:a3:a3:b9:cb:88:66:3c:
3e:a4:c5:df:93:46:ae:3a:2d:f5:b9:df:61:ca:2e:94:59:61:
01:79:26:9e:99:2c:0b:04:0c:85:66:8c:5e:d8:1f:b4:28:90:
5a:f5:af:8c:89:1f:3d:33:5c:bd:10:f7:57:87:c5:f0:d2:ed:
7f:9d:c0:c3:45:99:d3:ee:6b:0c:3c:64:4c:b3:fd:62:89:81:
9b:8a:6d:a2:32:0d:bb:e3:71:4e:a8:94:06:b8:7c:b4:99:82:
77:6f:8e:5a:e4:1e:a6:8f:86:0b:2c:41:54:28:95:4a:bd:b3:
a8:0b:a6:8c:4d:97:3b:f9:9d:a4:36:97:e1:c6:8a:f6:b7:7b:
5f:61:53:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:43:01 2024 by rpki-client on console-ams.rpki-client.org