Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/v124EbXV0FvsN-6dCaTsUu7tGtU.cer
File: v124EbXV0FvsN-6dCaTsUu7tGtU.cer (raw, json)
Hash identifier: k/N7CEXKKVJG8w5yuWSAeKLEowVYDI2WPliNQfJtfXE=
Subject key identifier: BF:5D:B8:11:B5:D5:D0:5B:EC:37:EE:9D:09:A4:EC:52:EE:ED:1A:D5
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC727450FC061E28D1754B622B8F5396B
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/c8/30f5e0-a04f-4993-983c-715f09817341/1/v124EbXV0FvsN-6dCaTsUu7tGtU.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/c8/30f5e0-a04f-4993-983c-715f09817341/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 22:31:28 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 201689
AS: 212939
IP: 185.66.228.0/22
IP: 2a05:ac0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:27:45:0f:c0:61:e2:8d:17:54:b6:22:b8:f5:39:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 22:31:28 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bf5db811b5d5d05bec37ee9d09a4ec52eeed1ad5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:d1:13:b0:e6:ba:70:8e:0e:95:f5:e3:64:e8:
2b:f4:19:01:bc:55:67:d9:d7:7f:51:0a:b3:fa:b6:
86:65:87:06:4f:c9:62:2a:8e:28:43:02:69:e0:5c:
d4:b5:54:d8:c8:bc:ca:c1:45:04:f3:f4:d6:f7:50:
ad:4c:1d:0e:b9:d5:38:fc:bc:2c:ae:c0:d3:5d:3a:
e0:53:87:41:b9:a6:47:64:95:d5:6f:e1:e4:d8:f2:
28:1a:20:3c:a6:db:a0:79:7f:e5:f5:d9:8c:4f:e6:
93:cd:68:a4:dc:1e:43:b6:56:47:d8:de:d9:1e:08:
4d:f9:03:db:7c:df:65:5d:72:f9:94:21:52:71:d9:
e8:48:dd:47:83:af:76:51:ae:76:71:d8:1d:76:6e:
33:b4:ce:d6:d4:ae:c4:89:cb:b5:3e:88:39:25:88:
06:63:9f:73:bd:2b:5f:1f:dc:6d:09:35:35:c4:ed:
4d:57:aa:04:7d:75:b9:42:7b:e0:b6:c3:a7:bf:91:
a9:a9:b0:2c:39:ae:9d:11:31:cd:2d:57:06:ea:2c:
6d:f6:21:d2:fc:61:cc:82:2c:a5:93:3d:9c:d7:b5:
ba:2b:87:17:95:87:ce:dd:3e:e1:84:c1:17:93:25:
45:8b:23:37:06:90:a9:08:5b:a3:ac:c0:b6:1b:db:
76:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:5D:B8:11:B5:D5:D0:5B:EC:37:EE:9D:09:A4:EC:52:EE:ED:1A:D5
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/30f5e0-a04f-4993-983c-715f09817341/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/30f5e0-a04f-4993-983c-715f09817341/1/v124EbXV0FvsN-6dCaTsUu7tGtU.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.66.228.0/22
IPv6:
2a05:ac0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
201689
212939
Signature Algorithm: sha256WithRSAEncryption
9f:2e:83:74:58:55:8f:4d:50:4e:5c:fb:3f:fe:9b:6c:ac:db:
4e:f5:54:2d:79:97:3e:5d:c1:86:e3:aa:0b:eb:2a:90:d6:44:
4b:52:2a:e9:ab:6f:44:76:45:be:ae:a9:cd:09:69:68:32:1d:
00:6b:43:35:49:69:20:7e:83:5f:f0:ed:15:30:04:e1:57:56:
ed:ee:2c:9a:ac:77:64:82:27:63:9f:e3:c7:26:54:9a:53:5c:
a5:8d:8d:d9:cd:27:7f:3f:6c:b4:8d:ed:cf:4c:c9:20:6a:ca:
f2:50:23:6f:a5:b7:fd:23:db:9d:5a:f8:ce:3a:6b:2a:f8:59:
7b:09:8c:d2:bc:32:43:7c:f1:22:92:cd:3c:e8:aa:24:59:59:
66:dd:a2:6c:6a:2a:5c:cb:ac:3e:ab:5e:f6:b4:e7:9b:c2:ab:
cd:c1:b5:db:0d:92:7f:9c:d9:de:0c:ce:99:f3:45:1f:0b:ea:
04:67:81:23:bc:ec:f3:d8:50:63:d5:39:df:de:b6:5a:15:6e:
aa:82:33:b2:c1:ea:0e:18:59:66:50:73:46:6e:79:b1:80:cc:
c3:0c:9f:a2:c7:d2:9d:04:71:1e:8f:a8:f2:88:87:83:9c:eb:
65:74:ce:18:0e:3c:8f:ce:7e:e9:15:02:a4:dd:c3:22:fb:8e:
52:af:07:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 11:04:48 2024 by rpki-client on console-ams.rpki-client.org