Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/t7n8UEpNIXiuT3PId8X5B7tHa_g.cer
File: t7n8UEpNIXiuT3PId8X5B7tHa_g.cer (raw, json)
Hash identifier: 2WS0GrVw/IByoTVWafsAKby1cbraftcD1RUC9AJ1rG0=
Subject key identifier: B7:B9:FC:50:4A:4D:21:78:AE:4F:73:C8:77:C5:F9:07:BB:47:6B:F8
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0191CD1D4C2440E3C6ED76340F2F30B4BA9E
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/8d/321889-abc6-43a8-b28a-bb29063f4881/1/t7n8UEpNIXiuT3PId8X5B7tHa_g.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/8d/321889-abc6-43a8-b28a-bb29063f4881/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Sat 07 Sep 2024 15:32:14 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 43369
IP: 185.1.114.0/24
IP: 2001:7f8:c5::/48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Oct 2024 14:44:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:cd:1d:4c:24:40:e3:c6:ed:76:34:0f:2f:30:b4:ba:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Sep 7 15:32:14 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b7b9fc504a4d2178ae4f73c877c5f907bb476bf8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:58:f7:c2:19:c6:b5:be:b3:6b:66:7b:b6:fc:
10:5f:d3:3c:f3:8b:bd:8c:79:e1:67:d6:e3:8c:c0:
2e:92:28:05:d7:38:4f:eb:e2:8d:15:c5:cd:ae:b2:
44:05:b3:51:80:d3:15:17:72:72:68:97:e7:76:fd:
2f:da:e0:e4:47:8d:ad:04:f1:88:a3:c2:24:1f:e4:
2b:7e:4d:cd:e6:13:58:cb:0a:ea:84:5b:d3:f4:c8:
f8:74:92:c0:d2:b7:d0:9b:48:31:b6:a8:66:d0:44:
db:e6:c4:c2:53:0d:68:2e:75:ca:a4:6c:0a:87:67:
8f:f2:15:0c:b6:4d:1e:9d:a7:9f:dd:29:50:fe:02:
53:45:58:fd:06:dc:38:b2:cd:de:d2:0d:dd:bd:ee:
57:08:f6:ba:94:4f:7d:8b:5d:17:56:f1:47:32:ff:
0d:f5:ff:74:c9:a7:84:49:f0:5a:e5:db:2c:43:05:
23:4c:5e:d0:9c:5e:40:21:6c:c1:ee:53:c9:ce:2d:
86:ab:ec:0a:e8:d9:0b:2f:01:ed:c2:69:7d:64:40:
9d:df:30:1a:71:4d:04:f3:b5:5e:77:5e:d6:c9:87:
4b:b6:d9:e3:42:85:3f:f4:4d:b5:58:1f:10:94:33:
7a:f6:b2:01:23:08:7c:fc:e8:ed:f9:0a:4b:65:dd:
a1:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:B9:FC:50:4A:4D:21:78:AE:4F:73:C8:77:C5:F9:07:BB:47:6B:F8
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/321889-abc6-43a8-b28a-bb29063f4881/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/321889-abc6-43a8-b28a-bb29063f4881/1/t7n8UEpNIXiuT3PId8X5B7tHa_g.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.1.114.0/24
IPv6:
2001:7f8:c5::/48
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
43369
Signature Algorithm: sha256WithRSAEncryption
8e:2e:ee:23:c8:7b:cf:2c:2a:13:a1:ce:bb:a4:2b:b8:64:a1:
ba:57:b6:90:8e:51:63:55:5d:0e:ac:58:d7:3e:a0:e3:97:6f:
ff:38:e8:ee:fc:48:5b:8e:e0:3f:5e:97:1c:96:1b:8d:8c:bf:
37:8d:02:62:c5:49:91:13:ca:1e:ee:9f:d6:6a:fd:f4:6c:ee:
31:05:a0:9c:dd:13:b1:66:9d:04:83:3e:29:8f:ac:27:28:c0:
ab:d5:fa:94:2a:10:f0:40:88:d6:29:a6:ac:ad:af:48:bb:c0:
2b:fc:c3:9a:e9:38:62:a0:36:40:af:0a:d9:09:bf:d6:c3:bf:
56:e7:69:36:29:04:35:79:90:04:e5:51:66:8b:3a:27:9c:56:
6d:bf:c7:36:6d:6e:68:bf:af:fa:d4:aa:93:5a:05:15:e4:c3:
f3:c8:eb:d9:a8:19:6b:7e:bb:07:dd:b7:2b:65:0f:11:ab:60:
2e:82:a3:63:ca:63:0e:d7:72:f1:01:e0:b9:c0:e6:5f:a3:7f:
50:19:9a:1b:83:6b:13:0b:3c:80:84:5f:20:39:80:83:cc:72:
96:53:55:ef:ae:1c:65:cf:bc:39:ff:fb:97:35:cc:96:81:61:
45:f9:c5:be:ec:91:1f:72:1e:16:cc:48:ad:c4:55:b6:50:81:
4e:30:b6:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 22 21:57:35 2024 by rpki-client on console-fra.rpki-client.org