Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/sWrUSceuS9Isau5fvcCCMEL_-Pw.cer
File: sWrUSceuS9Isau5fvcCCMEL_-Pw.cer (raw, json)
Hash identifier: T1QHB+UUGGJFtbfAlaDJvVsu74/I0ajdCOum2N2mWOY=
Subject key identifier: B1:6A:D4:49:C7:AE:4B:D2:2C:6A:EE:5F:BD:C0:82:30:42:FF:F8:FC
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC3B73CDD3DA3992D6AE7B209771CA97D
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/68/05126d-4ab7-4f99-a012-2b788312151d/1/sWrUSceuS9Isau5fvcCCMEL_-Pw.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/68/05126d-4ab7-4f99-a012-2b788312151d/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 06:30:14 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 49046
IP: 95.130.40.0/21
IP: 2a04:91c0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:b7:3c:dd:3d:a3:99:2d:6a:e7:b2:09:77:1c:a9:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 06:30:14 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b16ad449c7ae4bd22c6aee5fbdc0823042fff8fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:d3:72:95:ad:cc:65:5b:02:0b:93:f7:c7:b4:
11:63:3f:98:0b:ac:b3:4a:d7:13:93:67:c9:a0:9d:
2e:d9:e3:90:b9:4e:d0:20:14:a2:78:83:58:22:17:
30:84:cd:a1:b0:2e:ec:45:c9:09:1f:92:ca:84:b1:
74:0b:b5:fe:50:c1:20:34:1f:4c:42:f4:b0:a7:5a:
fe:58:67:60:64:45:05:3b:9c:cf:ec:0d:8c:1f:49:
25:fe:32:fa:3a:c0:72:b5:13:22:cc:b5:9f:6a:aa:
7f:6d:13:31:b3:4a:7f:a2:17:45:7a:49:23:e2:0a:
55:7f:0c:da:21:7c:d6:8d:7f:64:33:c0:18:e9:d3:
7a:5d:5a:f0:65:49:8a:a2:8d:fe:f1:29:88:16:ff:
c3:d0:87:d2:32:c1:df:e4:bd:52:77:3a:95:de:13:
72:da:1f:f5:7d:c3:4f:9b:31:83:77:c9:0f:c7:db:
1a:53:19:ca:f6:19:1a:75:95:0e:3c:4d:62:34:33:
65:3f:b3:93:b8:77:dd:b1:67:51:1c:c9:2c:53:15:
41:6a:4b:53:5c:4a:16:20:f1:7e:a6:db:e4:b6:84:
77:aa:51:21:09:e9:d8:b0:4c:7d:00:48:83:76:4e:
08:07:c7:9a:54:df:f6:f9:b4:ba:56:1b:41:be:13:
1d:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:6A:D4:49:C7:AE:4B:D2:2C:6A:EE:5F:BD:C0:82:30:42:FF:F8:FC
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/05126d-4ab7-4f99-a012-2b788312151d/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/05126d-4ab7-4f99-a012-2b788312151d/1/sWrUSceuS9Isau5fvcCCMEL_-Pw.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.130.40.0/21
IPv6:
2a04:91c0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
49046
Signature Algorithm: sha256WithRSAEncryption
09:72:82:f6:d0:a5:8c:7f:e2:11:f6:e9:14:68:9e:be:5f:be:
36:f7:e9:09:8f:4f:5d:1f:ed:db:1d:b0:b2:2d:f2:fa:9c:07:
d7:4a:b3:60:2a:e8:47:ff:e5:6c:d0:2f:19:bc:a0:0c:93:34:
4d:11:f3:29:f5:20:36:cc:7a:91:ac:d9:ae:4c:d3:10:ae:9f:
d6:30:d9:f5:5a:c9:05:5b:21:9e:70:d8:c5:ea:1b:e7:31:60:
9c:b2:75:f5:e7:6a:f2:44:1b:b6:12:71:81:e5:6c:06:7a:2c:
41:1c:cb:97:53:23:27:66:c8:05:d8:ad:f7:35:e6:f4:5d:66:
18:5c:e9:91:a4:a4:96:cc:b2:69:8b:64:89:c0:cc:0d:73:d1:
dc:7a:e0:53:be:d5:6c:4c:02:1e:fb:a1:6d:a9:67:38:db:71:
9f:21:1b:fc:4b:47:36:92:02:23:f9:c1:a2:7d:2b:f1:0f:bc:
49:73:9d:95:7b:f4:2d:ad:39:3a:1e:f9:ba:73:79:61:3b:d0:
da:7c:aa:53:ee:24:52:33:e4:8f:8b:76:5f:5a:49:cb:9f:03:
d4:32:60:32:35:ee:de:42:17:ed:14:d3:99:46:f2:a8:51:d5:
fc:0d:0e:06:ac:5a:5e:97:4c:3d:51:f2:8e:24:b5:2e:ab:78:
c7:ac:38:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 11:04:30 2024 by rpki-client on console-ams.rpki-client.org