Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/sffQCUrcmNmwMnIOgePbWqdYHHQ.cer
File: sffQCUrcmNmwMnIOgePbWqdYHHQ.cer (raw, json)
Hash identifier: JySaFPkswoHhA1TjrkGlA0smELavyLuMEhyJjWdM/mY=
Subject key identifier: B1:F7:D0:09:4A:DC:98:D9:B0:32:72:0E:81:E3:DB:5A:A7:58:1C:74
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC8DE6B01DC0DAE4F7F6FE1FFD73958A8
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/b8/e8dd6b-4627-4a3c-ba73-a54b869dcd27/1/sffQCUrcmNmwMnIOgePbWqdYHHQ.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/b8/e8dd6b-4627-4a3c-ba73-a54b869dcd27/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 06:31:08 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 205313
IP: 185.222.72.0/22
IP: 2a0c:e00::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:de:6b:01:dc:0d:ae:4f:7f:6f:e1:ff:d7:39:58:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 06:31:08 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b1f7d0094adc98d9b032720e81e3db5aa7581c74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:f0:27:1d:c9:3d:d0:a9:c7:00:b6:2f:18:a6:
0b:3f:17:0d:2c:d3:57:76:c5:4c:c6:1e:cb:45:31:
70:54:74:55:ae:ba:84:80:3e:67:ff:c9:c9:ff:6d:
76:68:79:bd:3c:7e:d9:d4:07:19:63:4b:f8:3d:4b:
da:f7:3b:8a:7d:a3:67:3b:30:7c:d6:7b:78:03:8e:
d4:d0:44:a3:6d:20:c1:8b:4d:8c:d2:3d:33:0b:9a:
35:04:b2:a1:0a:b7:7c:b9:eb:eb:bb:33:5a:16:fe:
ff:09:4a:5b:e2:8f:6a:6c:24:b0:4e:07:96:3d:5e:
f3:47:61:dd:d9:27:db:9f:3d:f3:95:90:ad:7e:54:
f4:50:8c:19:b5:ef:c0:9d:b6:73:35:f5:d8:96:9f:
fd:45:69:63:86:07:89:b8:02:ef:61:53:86:09:49:
87:3e:78:1a:56:20:3a:cd:b5:56:15:d6:27:59:33:
f1:53:40:b8:49:c0:53:6d:5b:24:c7:df:50:a3:9a:
63:fb:bd:38:ad:dd:15:74:85:99:3e:5f:7d:38:67:
24:88:0c:59:25:51:36:86:24:d9:d6:bc:ef:74:1f:
e0:ff:95:c1:7a:6a:00:b3:82:2a:12:4e:2c:80:9e:
9b:a7:ae:a6:d9:69:3b:7d:ee:5d:db:2d:28:01:e6:
c3:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:F7:D0:09:4A:DC:98:D9:B0:32:72:0E:81:E3:DB:5A:A7:58:1C:74
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/e8dd6b-4627-4a3c-ba73-a54b869dcd27/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/e8dd6b-4627-4a3c-ba73-a54b869dcd27/1/sffQCUrcmNmwMnIOgePbWqdYHHQ.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.222.72.0/22
IPv6:
2a0c:e00::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
205313
Signature Algorithm: sha256WithRSAEncryption
51:08:5e:51:8e:54:cb:74:9c:2c:ad:36:93:f6:49:6c:06:1f:
a1:7e:cb:1e:24:cc:7c:bf:34:f3:3c:3f:e7:cf:30:1e:ca:91:
28:0d:a9:c2:46:e6:0a:57:a6:5c:f1:02:93:ce:be:8a:c1:45:
ed:3f:82:48:76:dd:dd:02:ba:29:cd:9e:b5:ac:49:b4:37:36:
4f:51:0b:cd:97:88:b7:28:a9:39:91:68:c1:d6:d9:70:f3:49:
bd:58:fa:1d:db:f9:42:9f:6b:d9:6e:db:73:dc:60:10:82:d2:
aa:f1:75:3a:46:06:e7:b3:96:1d:fe:0e:f4:f1:e6:6f:a8:c4:
92:2b:69:1e:03:04:40:34:39:98:78:63:79:17:de:2b:18:2b:
28:26:f1:03:88:9c:06:a0:c1:2e:d2:f6:93:52:a6:48:80:f4:
54:11:dd:98:16:29:f3:6d:fe:08:b7:74:cf:23:27:33:cb:09:
12:7f:4d:be:eb:d3:56:22:df:e9:bb:6a:b0:f3:85:b7:86:dc:
38:15:d0:16:9f:74:d8:10:2e:42:ee:76:4b:d1:8e:18:4e:71:
2f:6e:0b:2c:02:f4:a8:be:f8:ac:7c:28:15:9a:6c:0e:48:08:
c3:2c:3a:9e:33:dc:b8:78:e3:06:97:1c:2e:77:a9:ed:01:75:
f7:65:ed:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 01:07:44 2024 by rpki-client on console-fra.rpki-client.org