Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/t3gT9sVnClhoatw9SVV0QpXdFBk.cer
File: t3gT9sVnClhoatw9SVV0QpXdFBk.cer (raw, json)
Hash identifier: U887NaaxR+UccqqeP4fhOPm5YO9NdnfIKKddhUEyGTw=
Subject key identifier: B7:78:13:F6:C5:67:0A:58:68:6A:DC:3D:49:55:74:42:95:DD:14:19
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CCA995CD81F239E3E0FE6D7530E3211C1
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/34/1f57d5-99c2-4ca9-9350-17735e2c255f/1/t3gT9sVnClhoatw9SVV0QpXdFBk.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/34/1f57d5-99c2-4ca9-9350-17735e2c255f/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 14:34:57 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 199806
IP: 193.84.252.0/24
IP: 2001:67c:1828::/48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:99:5c:d8:1f:23:9e:3e:0f:e6:d7:53:0e:32:11:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 14:34:57 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b77813f6c5670a58686adc3d4955744295dd1419
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:ae:ba:4b:d3:ac:38:73:00:3f:53:7a:e6:3a:
ef:94:03:a0:a2:4b:57:a7:48:f7:e0:c1:f9:9c:82:
eb:4d:b5:a3:75:45:d3:17:65:a8:47:e0:d2:0d:96:
58:94:a9:9c:cd:9f:f6:42:32:75:4f:e9:39:a7:ce:
1e:38:af:9d:f8:41:e5:38:eb:99:3b:61:9f:d9:1f:
fc:76:ff:c2:fa:40:cb:1d:e3:b8:5e:a7:09:ae:d8:
ac:10:fa:62:d8:df:af:79:18:68:8f:35:4d:30:3a:
28:18:8d:6b:e4:c7:5d:da:39:4a:4d:b8:aa:16:d5:
e8:30:6c:e5:22:92:6a:67:e6:02:d7:23:41:62:32:
0b:54:28:36:6c:30:27:d2:1b:a0:df:f1:83:d6:04:
df:9e:9c:86:36:24:8b:31:d7:76:04:26:61:8c:30:
26:a0:3f:b4:c9:27:72:88:f4:d9:a8:0d:94:7a:1b:
c8:36:49:6d:00:22:75:32:62:db:06:34:74:9f:6e:
76:5b:a2:12:c1:03:c6:18:01:d4:5b:29:6c:6c:0e:
81:92:ce:d1:a9:ce:cf:93:9e:75:73:06:f9:b2:d0:
bf:63:23:85:85:16:39:2a:ef:9e:a2:aa:bf:46:1d:
24:38:4d:b3:40:4b:6d:8c:10:55:cf:e9:11:48:81:
28:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:78:13:F6:C5:67:0A:58:68:6A:DC:3D:49:55:74:42:95:DD:14:19
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/1f57d5-99c2-4ca9-9350-17735e2c255f/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/1f57d5-99c2-4ca9-9350-17735e2c255f/1/t3gT9sVnClhoatw9SVV0QpXdFBk.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.84.252.0/24
IPv6:
2001:67c:1828::/48
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
199806
Signature Algorithm: sha256WithRSAEncryption
9b:d2:5a:7b:67:95:d2:cc:72:2a:60:67:a0:7f:f8:df:77:f8:
98:a3:02:e4:9f:64:db:5f:95:2f:8b:bd:37:7a:25:84:f0:f4:
65:a8:8c:4a:58:e8:80:40:77:1d:36:f8:81:0b:25:da:36:52:
c3:c5:f9:96:23:6a:b8:26:a5:04:c7:90:0d:c8:e8:15:94:22:
51:be:9a:f0:cf:3c:91:a0:87:fd:a9:04:02:81:cd:2a:8d:d1:
03:21:97:2e:2b:2c:e2:29:df:08:53:72:6f:14:b2:ba:d9:3d:
58:9f:ae:63:00:13:af:7e:66:69:78:03:f8:10:cf:aa:87:a3:
ea:a8:85:2c:3a:7d:a4:34:0c:f8:0e:fb:aa:06:5c:ee:ce:23:
22:89:30:71:9f:1f:1d:25:de:0a:29:dd:ce:91:6a:ef:33:36:
aa:6a:85:ba:6a:2a:bf:65:85:09:4d:17:bd:7c:ef:ed:75:a3:
bb:2a:ac:3f:a9:81:9b:79:0b:15:9b:38:61:13:d7:92:fe:36:
00:96:83:85:08:4d:04:09:a6:e1:25:31:e0:70:d3:06:fd:23:
dc:c8:f5:bd:fa:93:09:f8:4c:b9:4e:16:7e:39:6c:a4:06:03:
1c:a3:79:79:91:53:d1:23:ae:25:4e:44:60:8d:44:1e:b6:5e:
7a:b2:5c:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 11:04:34 2024 by rpki-client on console-ams.rpki-client.org