Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/rFjrfGF1DM4zPNACbHfJPL5GXZg.cer
File: rFjrfGF1DM4zPNACbHfJPL5GXZg.cer (raw, json)
Hash identifier: UiDSYf2w6VAHVVvmzhcs41Yq5n9dGe2Xh+617CP/1lo=
Subject key identifier: AC:58:EB:7C:61:75:0C:CE:33:3C:D0:02:6C:77:C9:3C:BE:46:5D:98
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC79330866F315354520730002852295D
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/4d/ebd0c9-7a36-4036-8658-1de00bd8912c/1/rFjrfGF1DM4zPNACbHfJPL5GXZg.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/4d/ebd0c9-7a36-4036-8658-1de00bd8912c/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 00:29:21 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 205449
IP: 185.218.88.0/22
IP: 2a0c:f400::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:93:30:86:6f:31:53:54:52:07:30:00:28:52:29:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 00:29:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ac58eb7c61750cce333cd0026c77c93cbe465d98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:2e:70:37:3e:2c:0f:68:76:d5:94:42:89:48:
63:63:45:ee:ad:77:95:4c:a3:8f:46:43:f8:82:dd:
f0:0c:a9:b2:0d:53:56:47:04:e3:7f:da:86:1a:c6:
4d:05:2f:fd:98:1d:71:9f:fe:72:2f:5e:9a:e9:c1:
58:55:e8:8f:ed:18:1d:09:b2:88:c0:3e:79:1f:1f:
fa:fb:b1:48:c0:2c:a6:08:ba:38:a2:47:63:2e:2c:
6c:2b:ee:54:65:d2:16:7b:29:7d:fe:c5:5e:3b:fd:
f7:dd:b2:18:b5:01:7f:f4:58:0a:c8:33:a3:54:a6:
c2:79:ed:67:74:f4:bd:29:30:8f:08:d1:01:3e:39:
77:a5:d3:0b:a9:eb:82:44:3c:ff:0a:96:99:1e:76:
32:a6:bd:c0:37:e0:57:44:fc:59:df:13:43:ae:ae:
51:c2:5a:10:5d:28:bf:1c:ec:be:ae:82:69:1b:0e:
f1:a0:23:ed:14:57:64:70:fa:73:2b:8b:49:59:b6:
ab:cb:73:fb:da:cf:cf:ca:27:28:80:c4:ae:d1:c0:
8a:12:d3:b3:ee:e4:e2:85:66:89:6a:27:0f:7c:49:
31:73:96:f0:f4:f6:af:d1:b4:b3:9b:52:e0:76:74:
1b:11:54:45:8d:42:d1:02:f7:37:24:db:26:40:08:
e6:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:58:EB:7C:61:75:0C:CE:33:3C:D0:02:6C:77:C9:3C:BE:46:5D:98
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/ebd0c9-7a36-4036-8658-1de00bd8912c/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/ebd0c9-7a36-4036-8658-1de00bd8912c/1/rFjrfGF1DM4zPNACbHfJPL5GXZg.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.218.88.0/22
IPv6:
2a0c:f400::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
205449
Signature Algorithm: sha256WithRSAEncryption
12:34:82:0a:2b:f6:c6:30:71:82:74:d8:af:73:48:a8:9a:ff:
99:9a:05:40:ab:27:03:dd:b7:9f:c5:d6:6a:f6:85:c2:02:b3:
ee:ad:55:18:2b:99:c9:b4:7e:bd:ef:5f:17:49:70:3f:a4:c1:
ee:b6:ca:e0:5d:b5:05:a4:0d:37:04:65:e7:38:6a:bf:8d:56:
66:f5:65:1c:1c:52:17:62:3e:d5:a4:dc:66:f7:74:57:8d:ea:
af:36:a4:4a:e1:e6:27:78:15:6b:69:eb:c4:e6:67:ed:a8:64:
d3:b5:59:81:90:cd:45:ec:48:ca:fa:fa:2b:1e:9f:a6:c8:21:
3c:ea:26:b7:10:9d:31:13:de:61:e3:e5:2d:6b:df:2c:f2:83:
3e:09:1c:dc:14:35:82:1f:b8:ff:55:ba:4b:4d:dc:e1:8b:14:
f7:e7:7d:d6:b1:28:11:f4:16:70:31:e8:35:b3:60:64:df:aa:
eb:38:32:9a:9b:22:cc:54:54:ce:57:8d:ac:f1:ac:a1:d2:92:
9a:0d:02:d9:f6:3e:cb:6a:68:64:e4:2f:a0:12:c6:45:ba:68:
78:85:9f:a6:f1:44:0e:5b:1d:17:41:ff:4a:7e:7c:e8:5a:15:
66:c6:1a:44:5a:7c:17:d7:ea:92:a5:ad:ae:6e:d1:da:84:19:
52:ce:2c:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 11:04:20 2024 by rpki-client on console-ams.rpki-client.org