Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/tDNC8X1UqKPaDOTTGLO0w_oFk-Q.cer
File: tDNC8X1UqKPaDOTTGLO0w_oFk-Q.cer (raw, json)
Hash identifier: VrcSFSqLg3hkg9diCUUFG4aO+ZssTOuBUtZI8rHslQA=
Subject key identifier: B4:33:42:F1:7D:54:A8:A3:DA:0C:E4:D3:18:B3:B4:C3:FA:05:93:E4
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC2DB50D61C949B457E5D15FB6FE46BD2
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/8a/15a2c0-5c08-48bd-a8c3-3674a9010efd/1/tDNC8X1UqKPaDOTTGLO0w_oFk-Q.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/8a/15a2c0-5c08-48bd-a8c3-3674a9010efd/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 02:30:02 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 59827
IP: 185.70.72.0/22
IP: 2a05:2880::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:db:50:d6:1c:94:9b:45:7e:5d:15:fb:6f:e4:6b:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 02:30:02 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b43342f17d54a8a3da0ce4d318b3b4c3fa0593e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:16:61:97:1e:d5:c2:f3:e1:fd:e2:d8:d2:c9:
d4:30:c9:74:60:2c:cc:4f:5c:8a:66:48:e9:76:5c:
56:5d:3f:29:06:52:e1:91:26:91:b6:0a:fb:13:44:
37:44:ee:b4:bd:c7:7e:3c:0b:34:07:98:8c:da:6f:
83:5a:db:fd:27:8f:26:cd:a4:9d:c0:36:52:d7:3b:
f9:40:71:68:bc:60:c8:c5:42:9e:86:0c:61:d2:53:
72:74:a3:bd:b3:26:08:1e:62:bd:1e:ab:a8:62:8c:
17:80:7a:b9:d6:36:c1:b7:22:c1:61:29:e2:05:4f:
04:22:4c:b0:84:f0:84:b6:9d:85:0f:07:3a:20:4e:
3d:b1:2b:b7:06:e4:71:e2:ad:05:86:48:4f:79:22:
24:c6:de:2f:6a:16:c0:7a:b1:81:a0:a2:e5:64:fa:
84:2d:1b:87:03:a4:c3:75:55:28:31:92:a5:4f:73:
f9:74:76:7e:73:c5:10:d1:a8:35:fa:ef:8b:e5:1c:
10:2d:04:e2:d1:e7:c6:5c:65:e1:cc:30:ee:21:a1:
87:2a:fa:2b:c7:f0:1a:d5:93:0a:95:aa:e1:29:74:
fe:e5:0c:26:ec:37:4e:4e:8a:e5:1c:2e:4e:6a:6a:
fe:e4:19:4f:75:42:00:2c:d1:f1:7f:16:4d:06:9b:
4f:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:33:42:F1:7D:54:A8:A3:DA:0C:E4:D3:18:B3:B4:C3:FA:05:93:E4
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/15a2c0-5c08-48bd-a8c3-3674a9010efd/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/15a2c0-5c08-48bd-a8c3-3674a9010efd/1/tDNC8X1UqKPaDOTTGLO0w_oFk-Q.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.70.72.0/22
IPv6:
2a05:2880::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
59827
Signature Algorithm: sha256WithRSAEncryption
55:59:6e:99:d2:57:7b:2b:03:95:13:24:27:0b:0c:f1:33:bb:
89:b4:92:6f:5f:77:1a:fb:9f:ed:9a:d7:6d:42:d2:55:8e:5e:
21:b0:34:73:38:be:20:76:e6:5b:c1:0f:07:b7:6f:b3:dc:9f:
7b:e4:b6:34:7d:28:3e:63:7e:31:6b:ac:ec:7d:73:ed:60:ce:
ae:cc:e8:c7:aa:80:10:d9:bf:4d:c1:39:32:69:15:25:4d:b9:
a1:4a:3f:b2:51:b3:6f:d3:53:62:d9:4a:25:d2:8f:a5:ac:fd:
99:e3:63:70:31:b2:85:5e:31:12:26:66:a4:88:b6:3e:2e:23:
ae:4d:e6:84:a7:94:6c:e4:b5:9b:33:ca:18:e9:aa:ed:4f:82:
2b:4c:c2:a0:5e:8f:00:14:39:b8:41:b2:5d:2e:31:e7:da:7d:
af:f1:c5:94:f4:f2:c2:73:5e:91:e1:b5:c8:ba:33:64:b2:8b:
60:05:f2:78:38:b4:1d:b3:8e:40:45:1f:d8:99:1d:b0:db:62:
78:4d:78:0b:e5:23:12:a8:43:e1:e2:7e:cb:22:9c:b9:f8:d9:
8d:d3:36:86:14:c2:c2:36:df:df:15:cc:b4:ed:cd:c0:f1:86:
1c:4e:76:3b:d2:31:4a:00:e5:df:ec:ca:92:14:86:b7:54:c9:
c4:54:ab:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 01:07:54 2024 by rpki-client on console-fra.rpki-client.org