Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/syj-JYobm_YUimzg6KcS8YhAkEw.cer
File: syj-JYobm_YUimzg6KcS8YhAkEw.cer (raw, json)
Hash identifier: FqthzN3R+xFg+COLLi8bwtl+m6jdlt+2P2ivfPzHf5E=
Subject key identifier: B3:28:FE:25:8A:1B:9B:F6:14:8A:6C:E0:E8:A7:12:F1:88:40:90:4C
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018FBA156A39262666E885C4C0CD7AF54328
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/7d/a188bc-deee-42ec-8289-ed84a0058a9f/1/syj-JYobm_YUimzg6KcS8YhAkEw.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/7d/a188bc-deee-42ec-8289-ed84a0058a9f/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 27 May 2024 12:45:16 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: IP: 83.172.128.0 -- 83.172.136.255
IP: 83.172.138.0/23
IP: 83.172.150.0/23
IP: 83.172.153.0/24
IP: 83.172.159.0 -- 83.172.165.255
IP: 83.172.169.0/24
IP: 83.172.180.0/22
IP: 83.172.188.0/23
IP: 2a02:cec0::/30
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:ba:15:6a:39:26:26:66:e8:85:c4:c0:cd:7a:f5:43:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: May 27 12:45:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b328fe258a1b9bf6148a6ce0e8a712f18840904c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:22:c1:de:5c:3a:2b:32:40:20:d9:b6:22:2b:
29:61:9f:c8:03:f0:50:69:95:42:07:de:a5:32:17:
7d:eb:d7:a0:ab:8a:24:de:27:36:07:3f:ab:dd:e3:
d0:ab:2d:d2:98:39:d8:be:ca:69:6e:ef:73:27:b9:
cb:32:c3:09:a9:de:2e:82:a3:5f:b3:58:bc:6f:dd:
0f:8f:50:de:c4:ce:ad:69:34:e9:31:51:01:2e:ec:
01:4f:7a:76:f9:f6:f6:1a:fc:0d:00:e5:c9:bd:0a:
12:8f:06:9c:60:eb:cc:9d:56:50:9c:5a:31:64:e5:
9d:96:c9:bd:f9:91:4a:58:31:29:73:75:e1:e1:76:
a2:30:d2:c9:5c:be:9e:c5:26:7f:28:9c:b4:7b:6b:
dc:03:6f:e2:04:0b:a0:44:73:9f:87:cc:8c:30:57:
e4:bd:50:69:3e:a6:4f:9a:46:94:e9:75:ac:35:fd:
ab:16:da:b6:c8:f0:c5:4e:46:24:ea:16:ae:68:76:
42:02:e3:28:8c:51:5a:e3:da:fe:ba:3b:f4:b9:d2:
cd:95:fb:16:cd:74:bf:03:4c:a0:84:3e:75:11:26:
bc:2e:49:3d:6f:10:60:ec:3e:80:4a:b7:97:ad:02:
8d:71:03:69:21:fc:19:f5:da:2c:b3:60:59:01:da:
fb:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:28:FE:25:8A:1B:9B:F6:14:8A:6C:E0:E8:A7:12:F1:88:40:90:4C
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/a188bc-deee-42ec-8289-ed84a0058a9f/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/a188bc-deee-42ec-8289-ed84a0058a9f/1/syj-JYobm_YUimzg6KcS8YhAkEw.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.172.128.0-83.172.136.255
83.172.138.0/23
83.172.150.0/23
83.172.153.0/24
83.172.159.0-83.172.165.255
83.172.169.0/24
83.172.180.0/22
83.172.188.0/23
IPv6:
2a02:cec0::/30
Signature Algorithm: sha256WithRSAEncryption
4f:20:12:74:0b:ae:ee:d5:e7:84:05:37:08:35:a6:ea:bb:c6:
3c:85:8b:98:54:46:e6:96:b3:c2:47:91:fa:58:8e:61:e3:65:
29:f7:70:72:48:28:99:b2:18:cd:ec:a4:a6:cf:b6:91:94:b5:
20:29:9a:5b:21:6c:32:43:e0:4b:d4:4c:06:90:1c:b2:69:8d:
b5:f6:3d:98:f6:8a:65:90:3f:dd:d3:90:f7:93:b9:16:1b:b5:
21:b9:4f:0b:31:d5:da:48:4f:ab:84:c6:4f:b0:8c:3a:f9:d2:
5a:a0:0d:55:8b:fd:03:57:35:e5:7e:28:eb:46:0e:e0:1f:21:
4d:2a:a2:f8:ef:12:74:6d:4f:46:05:68:86:a6:b1:29:db:6a:
24:bb:ca:49:66:44:16:8c:28:96:b1:5e:ef:66:8a:34:7a:f8:
f3:7e:22:ce:e0:af:b4:2b:b1:ab:d9:bb:f8:79:3d:17:94:bc:
b5:f7:f8:80:89:bd:70:7c:c4:24:c1:a5:c8:98:8e:66:76:8c:
ea:bd:1f:fc:37:ab:0f:c0:86:eb:c4:fd:f2:67:0c:f2:d2:6b:
ed:df:1a:c0:eb:22:a5:d1:90:6c:b1:4b:66:15:e9:15:df:b4:
92:90:39:94:cb:03:c9:f7:c4:ca:ae:2f:e6:8e:eb:13:9d:c2:
be:ba:f7:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 18:31:50 2024 by rpki-client on console-fra.rpki-client.org