Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/vSpaBrm0P86hiFQdMMbcNDCq85I.cer
File: vSpaBrm0P86hiFQdMMbcNDCq85I.cer (raw, json)
Hash identifier: aWY/eR83wtAtQ7WWmr95D0Ebiu8dOCmzyJ7Mk3aNjaY=
Subject key identifier: BD:2A:5A:06:B9:B4:3F:CE:A1:88:54:1D:30:C6:DC:34:30:AA:F3:92
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC50143227616EB4D8E2936F3B29C50A9
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/85/caf034-cbe2-4d2d-a02b-5d34704b7c88/1/vSpaBrm0P86hiFQdMMbcNDCq85I.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/85/caf034-cbe2-4d2d-a02b-5d34704b7c88/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 12:30:43 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 205969 -- 205970
IP: 2001:67c:12f4::/48
IP: 2001:67c:2f3c::/48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:01:43:22:76:16:eb:4d:8e:29:36:f3:b2:9c:50:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 12:30:43 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bd2a5a06b9b43fcea188541d30c6dc3430aaf392
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:37:18:50:4d:14:08:de:d1:2b:e3:57:0c:89:
a5:39:c2:b3:b0:c0:88:f1:37:a5:0e:e9:7a:9e:74:
de:9d:59:54:22:54:a4:47:36:c8:d1:10:2f:a7:0d:
47:b4:1b:8a:13:0c:9a:85:53:b4:a3:68:1d:1a:f4:
9c:91:66:5f:4f:7f:64:8c:5d:52:8c:48:6e:2d:3e:
9b:b2:49:35:7b:f3:49:fa:d6:7e:44:c8:19:10:ed:
40:f7:16:ba:e0:a7:3c:29:8e:50:65:32:3a:61:aa:
c4:80:37:6e:fd:f3:b5:f2:e9:ec:c8:a2:b1:0e:8e:
84:40:45:67:6e:04:69:80:d8:03:f0:ff:98:08:c9:
22:29:ec:49:84:b8:09:a5:79:6c:f5:d0:5e:f6:a9:
03:60:05:5a:e1:b3:ad:4a:d0:f8:1d:f7:e1:7e:e8:
3d:73:b6:70:a4:48:ef:a1:e2:27:97:81:8f:a1:e0:
3a:ef:cd:db:3b:a6:bb:82:24:36:1c:b3:05:5d:b2:
8f:13:bb:ae:1f:71:fc:af:bb:59:ea:91:fa:75:84:
29:37:c2:0f:9d:ad:b4:81:7b:6f:22:a4:9e:29:29:
7a:01:a6:df:5c:b5:c5:c8:45:ed:2b:5e:ab:b5:e6:
68:0f:93:8b:08:67:65:28:0b:83:1d:a5:b8:03:cb:
59:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:2A:5A:06:B9:B4:3F:CE:A1:88:54:1D:30:C6:DC:34:30:AA:F3:92
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/caf034-cbe2-4d2d-a02b-5d34704b7c88/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/caf034-cbe2-4d2d-a02b-5d34704b7c88/1/vSpaBrm0P86hiFQdMMbcNDCq85I.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:12f4::/48
2001:67c:2f3c::/48
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
205969-205970
Signature Algorithm: sha256WithRSAEncryption
1d:b2:de:cc:25:a4:2e:ca:81:b0:ac:bd:93:ad:1d:e2:43:d7:
8a:6d:c5:87:61:64:ef:f4:5a:7a:d1:04:03:0f:f8:3c:8f:9d:
21:fc:e0:59:d1:b1:01:93:ad:d3:bc:12:14:31:d3:8a:62:e0:
df:f3:12:fc:2e:ac:b3:30:7a:4f:16:9f:31:f5:f1:b0:2c:cc:
48:ba:14:a0:5c:97:d1:11:df:5d:ee:b3:4b:76:a7:01:7c:8b:
d8:b4:54:c3:86:17:19:15:cf:e4:7e:59:cf:8e:43:64:cd:da:
72:6f:e3:25:4b:7d:b9:d0:bf:d1:f2:79:1b:55:f3:a6:1e:64:
8c:ed:52:dc:4c:77:7d:01:40:5a:12:a2:72:cf:9a:1e:4c:35:
b1:ec:4c:51:c9:00:61:90:2c:a6:ce:54:60:3a:4b:52:63:11:
05:7a:da:dd:33:78:52:3a:17:ed:f9:ec:c9:3d:45:1b:1e:fd:
cf:1e:7e:4b:be:7d:aa:88:02:13:b1:50:5d:90:5a:cd:3f:b4:
7d:ef:a9:c7:4d:39:a5:23:49:03:9e:47:48:83:35:1b:14:ab:
57:b3:7d:04:e1:12:47:84:ed:6f:f1:1d:74:6c:c9:60:ee:51:
5a:bc:8b:9e:32:2d:6b:bb:d4:11:11:6d:7a:31:3c:b4:02:c1:
4e:98:3c:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 01:08:21 2024 by rpki-client on console-fra.rpki-client.org