Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/tQS8zrnDY_E-OtqkwPpSeA8GRoQ.cer
File: tQS8zrnDY_E-OtqkwPpSeA8GRoQ.cer (raw, json)
Hash identifier: 9fK61Fjau+mexR4DX/Aum4jr2zMCUBOe/bpLPLeaIac=
Subject key identifier: B5:04:BC:CE:B9:C3:63:F1:3E:3A:DA:A4:C0:FA:52:78:0F:06:46:84
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0192D884AD82A32DCEAAECE9ADBAC796DAB7
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/61/1d3cdc-d04b-4adb-b069-2a351ab3b8f6/1/tQS8zrnDY_E-OtqkwPpSeA8GRoQ.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/61/1d3cdc-d04b-4adb-b069-2a351ab3b8f6/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 29 Oct 2024 13:43:46 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 213216
IP: 194.61.0.0/24
IP: 2a13:7fc0::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:d8:84:ad:82:a3:2d:ce:aa:ec:e9:ad:ba:c7:96:da:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Oct 29 13:43:46 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b504bcceb9c363f13e3adaa4c0fa52780f064684
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:96:ea:d6:5e:4c:22:3d:da:0a:56:8c:71:19:
04:68:d7:87:0d:f7:e4:2a:5d:a0:ea:92:95:a7:ce:
9d:8e:fd:ac:26:09:18:88:7d:99:7c:81:43:df:ee:
25:48:04:bc:dd:d1:15:0c:09:5c:52:f9:9d:45:3b:
a8:f3:26:e4:99:5a:3c:53:81:15:05:d7:2b:bd:ec:
7f:98:e4:cb:db:38:27:3e:84:f6:ca:e8:0b:c1:64:
8a:30:f1:03:a5:0d:76:60:a6:26:96:e9:56:da:e1:
df:cf:b2:b7:9a:77:71:1a:55:34:ef:c2:ee:c0:ea:
86:e5:16:ed:fc:9a:4c:35:3d:ba:8a:8a:32:be:b8:
26:9a:73:76:48:f1:c1:99:3d:22:f5:54:c0:b4:df:
66:c5:2c:9f:e0:11:4c:3a:13:a2:aa:2f:f7:56:f8:
c6:eb:ad:06:11:f0:3e:14:31:25:41:76:08:ec:65:
e3:6f:32:94:68:28:0f:d8:90:fd:fd:41:08:37:95:
e4:df:0b:1f:f1:87:cd:af:7f:26:d9:20:36:a3:78:
7a:cd:b8:a4:a7:e0:d9:4b:da:00:11:a7:d0:b1:8e:
2c:d2:1c:02:fd:19:8d:f3:e4:aa:21:92:45:fc:81:
cc:36:5a:aa:65:b4:b6:ca:1a:40:a6:5d:fa:9c:22:
24:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:04:BC:CE:B9:C3:63:F1:3E:3A:DA:A4:C0:FA:52:78:0F:06:46:84
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/1d3cdc-d04b-4adb-b069-2a351ab3b8f6/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/1d3cdc-d04b-4adb-b069-2a351ab3b8f6/1/tQS8zrnDY_E-OtqkwPpSeA8GRoQ.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.61.0.0/24
IPv6:
2a13:7fc0::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
213216
Signature Algorithm: sha256WithRSAEncryption
16:19:f2:50:f8:68:a2:00:d9:b3:e8:28:30:25:b2:bd:ae:4d:
64:94:7d:6f:8a:47:1a:de:25:4f:7a:df:2a:95:e1:4f:a2:2a:
75:eb:7b:41:dc:79:42:5f:3c:3c:b7:ad:1d:85:e7:5a:ac:df:
1a:0d:12:24:7e:7a:c4:a8:b1:1a:c5:a2:2e:d2:06:74:32:43:
4c:b9:41:29:ca:09:f0:56:51:e7:04:67:aa:70:35:58:24:54:
29:cc:ba:ed:5b:9d:0d:66:85:d5:7e:60:fe:d2:26:38:1b:c7:
70:17:3f:e9:e8:5f:d1:eb:8e:50:11:a0:16:2f:e6:9d:00:c3:
a1:50:57:fc:f6:64:ef:21:0f:db:e8:71:1e:a9:6d:de:9f:68:
c0:0f:52:09:31:1e:d7:1a:46:c5:a9:d6:cf:81:37:6b:e9:61:
e7:01:61:57:29:ae:ca:d7:37:87:be:90:0e:98:99:c0:42:64:
b0:db:e4:94:02:0f:a4:2d:00:f7:e4:ec:c7:c9:a5:88:51:2a:
bd:ac:62:97:87:cd:18:ce:27:db:3e:ea:b5:00:a5:ef:18:f8:
72:50:58:e7:e1:7f:15:f5:a1:9b:da:0d:7b:14:f3:b1:1e:85:
53:aa:11:51:2b:9c:1e:04:24:cb:d6:eb:5d:a9:34:a2:8b:9c:
71:fd:2f:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 11:04:37 2024 by rpki-client on console-ams.rpki-client.org