Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/t09j_Q3Bl-Uq0nInbEDT7kux15k.cer
File: t09j_Q3Bl-Uq0nInbEDT7kux15k.cer (raw, json)
Hash identifier: ccz4lElLwE/YrfSK/7tU1wucwpiroIKcynZe8UUgXbc=
Subject key identifier: B7:4F:63:FD:0D:C1:97:E5:2A:D2:72:27:6C:40:D3:EE:4B:B1:D7:99
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC424B10EC6CE2945018B95B1AE28E42F
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/81/981176-4d10-4859-ba0f-1d22b02b9b1b/1/t09j_Q3Bl-Uq0nInbEDT7kux15k.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/81/981176-4d10-4859-ba0f-1d22b02b9b1b/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 08:29:48 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 204108
IP: 185.114.136.0/22
IP: 2a0d:2180::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:24:b1:0e:c6:ce:29:45:01:8b:95:b1:ae:28:e4:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 08:29:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b74f63fd0dc197e52ad272276c40d3ee4bb1d799
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:d9:85:83:78:85:2d:d0:8d:76:5b:5b:4c:85:
b7:9c:a9:f0:91:49:8d:89:ca:3f:41:23:fb:55:60:
f4:3b:69:b2:b0:ee:b7:06:96:e4:f6:19:6c:6a:56:
96:08:36:99:26:8e:af:61:aa:7b:be:d9:81:99:6e:
80:c7:c3:ef:b0:7f:b7:84:e7:78:34:9a:21:44:7f:
a5:bc:e5:2f:5a:df:14:8c:e9:78:f2:1a:7d:dd:fc:
b6:5c:f0:21:65:a4:70:75:9f:fd:49:cb:b8:b2:bc:
50:d1:7f:13:b7:c6:d3:37:12:cd:ce:8f:95:9b:17:
4d:8b:a7:14:53:bc:3c:81:56:b0:1c:96:45:45:06:
c4:19:5a:31:f5:70:1f:e6:89:ef:0b:1f:44:6b:75:
36:7b:9a:33:73:b0:ae:cb:19:9e:79:e0:2a:16:46:
e7:6a:7a:81:26:0b:d8:8e:82:f3:fc:cd:72:b9:1e:
21:9f:17:f2:f1:46:8a:b0:a0:2d:2d:95:33:57:2c:
ca:b0:72:d7:6f:91:e8:a5:02:41:6b:d9:77:5a:4e:
64:9d:09:e1:dc:6a:cf:fb:37:3d:17:3b:df:bd:8f:
74:ca:b5:f3:5c:7f:58:73:8f:93:e7:33:28:fc:cd:
0d:f9:ea:2f:c1:a9:07:2a:40:0f:85:3d:d7:ef:88:
c0:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:4F:63:FD:0D:C1:97:E5:2A:D2:72:27:6C:40:D3:EE:4B:B1:D7:99
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/981176-4d10-4859-ba0f-1d22b02b9b1b/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/981176-4d10-4859-ba0f-1d22b02b9b1b/1/t09j_Q3Bl-Uq0nInbEDT7kux15k.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.114.136.0/22
IPv6:
2a0d:2180::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
204108
Signature Algorithm: sha256WithRSAEncryption
44:b2:b9:6a:b8:e5:1b:df:ba:4a:45:00:1c:1d:c6:32:c5:23:
0a:d7:54:fb:4e:e6:bf:f3:97:8f:d5:5b:67:dc:8c:9c:d5:3f:
90:50:74:58:a5:bf:e7:6a:fe:e6:5d:2c:82:78:b6:e3:98:45:
ec:d6:83:ce:94:ff:29:48:2e:ba:a4:77:a5:33:7f:ab:fe:f8:
2c:62:2d:eb:c6:a1:6b:b2:16:8a:43:94:13:b5:21:72:62:9a:
0c:62:cc:db:15:e8:1a:82:88:25:14:06:b0:b8:eb:fe:b9:34:
7f:ed:65:6b:ed:a4:d7:e3:36:67:d8:ad:29:b4:e3:78:f1:00:
3b:df:ba:0e:d4:3e:2f:95:2f:cb:d2:94:53:ec:ef:db:2b:65:
f6:bf:30:86:4d:19:dc:f6:2d:a0:c3:31:29:0d:93:b3:f5:84:
db:b2:fa:fe:e7:3b:84:92:22:9e:60:c8:9f:74:e9:00:47:71:
78:0a:89:c1:d7:fb:9a:60:b0:b6:6e:ff:17:41:aa:d3:4b:e7:
e6:6f:d8:dc:17:5d:ea:ae:c0:ae:ef:4f:2b:92:93:5c:02:dd:
53:76:8c:38:7d:a1:a0:1f:dd:55:82:96:5b:55:62:72:53:a2:
f7:0e:75:b2:34:9b:a1:0a:e3:88:8c:0a:f0:59:bb:6d:ee:82:
3d:c5:e3:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:22:55 2024 by rpki-client on console-fra.rpki-client.org