Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/st8A84zO2SGXmTB2yzaFvzK8Xmk.cer
File: st8A84zO2SGXmTB2yzaFvzK8Xmk.cer (raw, json)
Hash identifier: 8fB6Wk5WbD8DM9gPXWsfErRlEpQo3qkGFKVS97bNMTw=
Subject key identifier: B2:DF:00:F3:8C:CE:D9:21:97:99:30:76:CB:36:85:BF:32:BC:5E:69
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01922D6AAC07D97ABC151397B93DBCEB67BB
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/bf/706fa8-52a2-4ed2-a2e1-04e4e4dc5fba/1/st8A84zO2SGXmTB2yzaFvzK8Xmk.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/bf/706fa8-52a2-4ed2-a2e1-04e4e4dc5fba/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 26 Sep 2024 08:20:18 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 28941
AS: 57111
IP: 185.103.112.0/22
IP: 185.199.24.0/22
IP: 185.204.132.0/22
IP: 2a0a:9440::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:2d:6a:ac:07:d9:7a:bc:15:13:97:b9:3d:bc:eb:67:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Sep 26 08:20:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b2df00f38cced92197993076cb3685bf32bc5e69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:a3:07:fa:48:c7:ba:97:e7:0b:05:b4:0f:aa:
8d:c9:95:c6:08:cf:ba:5a:4b:be:97:e0:31:4c:82:
7f:12:4f:ad:c8:aa:eb:58:d3:2d:5b:e1:4c:00:96:
90:35:43:70:5c:5a:8f:77:e4:57:36:cf:13:9d:ba:
61:48:0a:69:9f:fe:da:7e:94:02:45:51:c5:b5:b1:
7b:f1:db:f7:b0:fe:32:f8:c5:45:79:5f:65:42:59:
eb:3a:d3:40:8b:e8:d7:f3:4c:97:07:4e:c5:de:02:
ef:55:d1:2b:12:ba:d0:30:ea:fe:80:ee:b2:2e:16:
38:84:30:17:d1:a1:2c:3a:55:59:d5:86:1b:6c:b5:
84:99:26:7d:b7:39:0f:80:aa:04:83:03:8a:a7:6c:
fa:a8:0c:3a:18:d9:82:39:6a:59:82:79:8d:6b:65:
18:53:44:b0:e7:26:df:4b:2b:88:5d:27:20:45:dc:
52:7c:85:b5:af:88:30:72:00:e2:1e:37:15:10:7a:
70:f5:ab:90:10:cb:72:ae:5d:80:1f:e5:a1:f0:2a:
9d:af:16:31:2a:be:8a:6e:72:ea:18:d3:d5:67:47:
76:84:06:b2:44:b4:e4:30:81:22:ba:7e:08:0f:e9:
63:c5:9c:2f:d9:bb:44:69:19:67:7e:0a:3e:34:53:
58:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:DF:00:F3:8C:CE:D9:21:97:99:30:76:CB:36:85:BF:32:BC:5E:69
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/706fa8-52a2-4ed2-a2e1-04e4e4dc5fba/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/706fa8-52a2-4ed2-a2e1-04e4e4dc5fba/1/st8A84zO2SGXmTB2yzaFvzK8Xmk.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.103.112.0/22
185.199.24.0/22
185.204.132.0/22
IPv6:
2a0a:9440::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
28941
57111
Signature Algorithm: sha256WithRSAEncryption
53:a0:4b:79:74:c9:94:46:9d:13:75:be:b8:77:e1:db:f0:86:
b3:7b:a1:0b:6a:c4:25:05:f2:ab:7b:4f:1c:97:60:ed:d8:80:
1c:01:1a:15:e2:9c:42:21:7d:44:e8:6e:c4:3a:f4:95:ae:fc:
1f:e7:16:13:e5:bc:05:67:4d:e0:af:f7:88:ef:ce:31:17:a7:
98:91:b0:69:79:60:8a:28:e1:b7:7a:f0:14:39:fe:69:df:87:
41:b9:20:fb:f6:a6:c3:f1:46:7f:4c:5a:42:e2:52:ae:03:0b:
7a:c3:18:93:46:8a:56:f2:e6:39:07:c1:39:3e:85:ce:7a:3c:
bb:f2:47:02:95:2e:7d:75:17:ee:6a:57:6a:bf:3d:6a:b5:b8:
06:b3:a5:9c:58:0a:7d:53:f3:5b:6b:8f:2e:5e:00:d7:5c:14:
34:92:74:6d:50:b0:c1:69:88:09:d7:f6:63:1e:9b:50:78:66:
01:a1:d3:d1:6d:de:e7:86:bc:4c:18:fa:1a:5b:8d:b5:7e:0e:
24:cd:d8:19:8e:f4:e5:e1:6f:ad:d7:73:10:e2:04:91:a6:12:
fa:ab:89:3e:b7:1d:db:05:11:31:f4:76:eb:e2:61:9a:01:34:
29:63:9d:8a:b6:18:34:81:8b:de:10:66:00:a6:7d:9a:5e:8b:
b5:d0:2d:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:22:53 2024 by rpki-client on console-fra.rpki-client.org