Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/sMmblRxqb2rcyGjYhalArfAFGhk.cer
File: sMmblRxqb2rcyGjYhalArfAFGhk.cer (raw, json)
Hash identifier: qkJ4lDZJSkiGSBt/TIczkJyIR1EAnm4exmX0O/jJoyk=
Subject key identifier: B0:C9:9B:95:1C:6A:6F:6A:DC:C8:68:D8:85:A9:40:AD:F0:05:1A:19
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC56E3B577E6A6A9E54DA756A40DC60E9
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/62/0a7bbf-bf20-4114-972c-3e6956ed2c6a/1/sMmblRxqb2rcyGjYhalArfAFGhk.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/62/0a7bbf-bf20-4114-972c-3e6956ed2c6a/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 14:29:44 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 205565
IP: 185.213.244.0/22
IP: 2a0b:90c0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:3b:57:7e:6a:6a:9e:54:da:75:6a:40:dc:60:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 14:29:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b0c99b951c6a6f6adcc868d885a940adf0051a19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:0e:eb:53:7c:92:ee:e6:e7:d8:b0:ba:05:b4:
8e:36:25:2c:0a:5b:50:8a:6b:c3:95:c4:91:de:da:
04:39:25:bf:bd:9d:60:0b:fd:3f:07:89:95:bb:bc:
c9:00:9a:06:01:5a:2f:2d:40:1c:49:0d:27:1f:ed:
65:f9:b2:04:0f:69:8a:54:c2:25:86:04:47:d7:3a:
0a:a9:63:82:a0:e7:79:77:76:82:6a:f7:d3:ab:48:
7a:a1:22:89:2e:cc:56:49:5e:be:79:f9:c3:27:1a:
9a:51:9a:36:4e:50:43:ee:d3:37:80:eb:94:5c:3b:
04:fa:8c:3a:71:77:4a:07:a3:ce:df:0b:7f:03:49:
99:e2:89:b4:01:92:5c:1f:88:26:8b:4a:6d:d1:35:
c3:2e:d3:e4:7b:3a:31:bd:81:fd:f9:5c:15:22:de:
53:6d:81:f8:98:39:ea:ab:60:e0:ba:6d:e1:4c:30:
85:f7:ac:f7:90:44:5e:47:c2:16:40:fc:04:60:34:
b3:fc:19:b4:e6:95:1b:8c:dc:62:2f:04:b4:99:cf:
b8:14:9e:68:10:8f:2c:f9:cb:c4:64:d5:32:a3:57:
36:ed:c4:cc:98:11:87:2a:27:99:6e:c7:82:e1:24:
02:1e:33:06:de:d4:4f:3b:68:44:97:a0:e9:18:68:
67:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:C9:9B:95:1C:6A:6F:6A:DC:C8:68:D8:85:A9:40:AD:F0:05:1A:19
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/0a7bbf-bf20-4114-972c-3e6956ed2c6a/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/0a7bbf-bf20-4114-972c-3e6956ed2c6a/1/sMmblRxqb2rcyGjYhalArfAFGhk.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.213.244.0/22
IPv6:
2a0b:90c0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
205565
Signature Algorithm: sha256WithRSAEncryption
04:79:92:ca:c2:86:c8:e3:ed:06:b6:fc:c2:e2:28:17:1f:1a:
33:45:54:0f:18:af:3e:00:9d:d5:ef:75:b3:a5:6f:ac:0f:36:
08:f8:8c:bb:c0:c5:27:ea:8c:fe:dc:83:c4:89:0b:bb:3d:dd:
54:1a:af:b0:48:66:05:4a:d6:b0:3c:50:5a:eb:1c:91:c7:8b:
3a:bb:5f:83:75:d4:91:12:a0:83:70:67:81:8d:05:9b:c1:89:
5b:80:b2:d8:61:f5:49:28:29:29:fc:79:22:ae:fc:ca:59:81:
48:1b:c1:55:68:c8:24:28:90:ff:d7:4e:33:cb:36:c6:74:c6:
f7:36:47:7f:1a:b6:0b:1d:e6:9a:a7:d1:a2:ac:38:50:1b:02:
2a:76:1d:df:ac:77:f8:24:1a:3d:8d:f3:37:86:b1:34:17:50:
f7:ad:60:1a:22:a3:4e:09:ea:84:46:b1:2a:11:4c:04:2b:6f:
34:be:97:10:12:ef:7d:52:da:39:d5:0a:a4:27:c5:62:b5:e0:
3c:2e:56:86:dd:bc:ce:1c:cf:9b:55:5a:10:48:1e:58:a6:fc:
6a:ae:c6:b0:5d:5c:57:74:1e:39:c6:fe:30:c7:65:6e:4d:76:
49:17:c6:97:a2:76:61:76:d6:06:d1:dd:1a:f7:8f:4a:b7:44:
66:bd:ff:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 11:04:28 2024 by rpki-client on console-ams.rpki-client.org