Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/t5wt4-swkYD09aWvLVb-Qlh4Rkg.cer
File: t5wt4-swkYD09aWvLVb-Qlh4Rkg.cer (raw, json)
Hash identifier: c3R4VdXcu50VettAPKs36QCidVUMgj9qOm4vwWIOW+E=
Subject key identifier: B7:9C:2D:E3:EB:30:91:80:F4:F5:A5:AF:2D:56:FE:42:58:78:46:48
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC4245FD43E1E9F9DD01F06E07863A86D
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/64/56a006-919f-487c-9316-0bb6a83f9f40/1/t5wt4-swkYD09aWvLVb-Qlh4Rkg.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/64/56a006-919f-487c-9316-0bb6a83f9f40/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 08:29:27 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 62204
IP: 91.203.228.0/22
IP: 2a0c:1fc0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:24:5f:d4:3e:1e:9f:9d:d0:1f:06:e0:78:63:a8:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 08:29:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b79c2de3eb309180f4f5a5af2d56fe4258784648
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:17:67:cf:c0:5a:16:c6:31:41:76:f1:ca:c2:
db:de:b5:24:43:b2:0a:61:08:7b:69:43:4a:0e:81:
e9:f6:68:0b:c9:d2:8c:ee:97:0b:4f:59:47:22:ef:
25:6e:5c:b6:cf:f5:4d:d3:ff:b6:03:cf:dc:a8:e0:
3a:ee:a9:9b:2f:f6:89:db:a5:90:59:4c:ae:c4:cb:
35:d9:03:cd:d4:ca:86:d8:d6:b7:0e:3a:c5:6b:9f:
c4:de:9c:6e:ee:03:3a:8e:95:e0:da:8a:3d:9e:94:
b8:0f:a9:b3:ec:41:2e:0b:39:0c:6a:bb:a5:f6:1a:
ce:2f:3b:69:2b:55:fe:5d:2b:3e:31:31:31:cb:40:
b0:9f:74:a2:66:6c:e9:93:ed:70:2a:46:45:e2:2c:
25:64:fa:b5:b3:d9:48:a2:8b:b3:e6:27:d8:f4:cb:
cc:57:8d:cf:3a:d0:d0:09:9a:68:28:39:c3:28:9a:
94:a1:81:af:8f:7a:cf:71:24:53:ba:31:dd:34:e6:
4a:ae:b0:eb:72:9c:15:e7:51:b8:9c:f9:fd:21:57:
59:cc:f5:6c:b5:95:a4:0b:e8:7b:fe:02:ea:bf:42:
eb:c5:94:9d:d5:0a:d2:74:68:eb:88:5d:7e:e9:a2:
e0:c7:85:44:59:2a:2b:72:7d:db:63:b1:e7:9e:f7:
ef:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:9C:2D:E3:EB:30:91:80:F4:F5:A5:AF:2D:56:FE:42:58:78:46:48
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/56a006-919f-487c-9316-0bb6a83f9f40/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/56a006-919f-487c-9316-0bb6a83f9f40/1/t5wt4-swkYD09aWvLVb-Qlh4Rkg.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.203.228.0/22
IPv6:
2a0c:1fc0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
62204
Signature Algorithm: sha256WithRSAEncryption
2e:25:b9:c4:67:f7:f5:1c:fa:f4:0f:b9:20:c5:68:57:1a:2c:
77:5a:bf:96:a9:f2:eb:79:81:01:2d:a8:90:ee:02:2b:79:f7:
dd:b7:30:03:cb:fb:53:d5:80:d1:3c:40:85:c4:fc:71:c9:b2:
a8:00:52:8d:7a:30:12:af:49:ad:b2:f8:7d:4e:6f:27:f5:43:
35:84:8c:76:e9:76:e0:0e:e8:00:3f:1c:0d:03:67:43:a9:22:
1f:87:27:2f:46:ff:13:20:dd:16:90:52:bb:7b:ec:eb:ed:04:
2a:3d:98:8a:0e:b5:33:3d:60:46:46:09:e8:d1:c8:76:43:f9:
4f:36:43:d8:db:bc:98:e6:40:05:4f:44:28:49:9a:39:df:3c:
bc:c3:4b:b2:84:d2:6e:84:3d:f7:26:d9:fa:d8:60:11:2d:17:
a5:3d:08:fd:82:84:97:2d:6e:7f:3b:3d:e0:61:28:24:95:66:
c3:50:26:08:6b:0f:fb:6f:69:e2:29:92:12:ea:69:d2:34:76:
c2:b8:3e:ba:11:55:32:69:23:a7:38:3b:41:ce:62:39:6c:83:
68:4e:a1:20:b4:5f:c7:50:79:94:38:62:d0:7c:30:ee:e1:d9:
4f:4b:5d:7a:bb:12:ab:dd:0d:cc:27:60:92:86:84:fe:e6:02:
3c:c5:60:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 00:57:46 2024 by rpki-client on console-fra.rpki-client.org