Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/vY-cA-dX89tRTKONFa2kUfoulhU.cer
File: vY-cA-dX89tRTKONFa2kUfoulhU.cer (raw, json)
Hash identifier: 9CN63lLlaqGonhifY/YPNbut/swNq61XP20Mzs/A4Fk=
Subject key identifier: BD:8F:9C:03:E7:57:F3:DB:51:4C:A3:8D:15:AD:A4:51:FA:2E:96:15
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC42486DCA7C684058D51FBF2E9FA7C53
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/f1/b83e47-bc04-492d-9a07-ecdd8174007a/1/vY-cA-dX89tRTKONFa2kUfoulhU.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/f1/b83e47-bc04-492d-9a07-ecdd8174007a/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 08:29:37 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 202072
AS: 204262
IP: 141.98.96.0/22
IP: 185.45.44.0/22
IP: 185.109.96.0/22
IP: 193.3.28.0/24
IP: 2a04:a0c0::/29
IP: 2a06:4f00::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:24:86:dc:a7:c6:84:05:8d:51:fb:f2:e9:fa:7c:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 08:29:37 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bd8f9c03e757f3db514ca38d15ada451fa2e9615
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:34:8d:86:c3:35:9c:9f:56:61:1b:c1:0e:00:
7c:87:f1:30:a1:49:da:65:e2:c5:05:dc:95:02:26:
6f:45:93:f9:87:d5:38:1d:31:f4:6c:2d:5a:16:ea:
78:21:b8:fa:2c:2b:50:aa:cb:ef:b5:63:7f:98:89:
91:26:1a:1f:25:f4:85:fd:c9:d5:69:b3:5a:60:8a:
92:01:9a:3a:4a:b8:8c:b1:87:0a:08:57:15:4a:b3:
91:54:a0:17:29:fd:03:32:2a:1d:b9:ad:b6:82:dc:
39:d9:f3:20:d1:bf:0b:c5:52:e3:eb:79:dc:3a:26:
fa:7e:91:23:49:32:cb:00:5d:84:13:36:81:75:ec:
06:ff:10:13:29:3a:22:f0:3d:64:1e:fa:25:c0:85:
d0:e9:f1:11:70:a7:6c:0e:e6:14:56:5f:07:0a:b9:
70:d2:5f:ed:57:d4:ea:66:98:33:7d:f5:1b:a7:0c:
74:97:fa:5b:d8:dc:3a:48:4d:89:c6:4c:a4:ce:a9:
f6:11:61:25:16:d8:6a:bc:2f:47:90:4b:74:ec:21:
82:a4:d9:50:2b:c5:eb:17:2e:34:60:66:55:cc:e4:
a3:27:5d:2f:de:d3:1e:9f:b9:51:ca:61:e1:d7:1f:
d8:ce:9e:72:a4:f9:25:b1:bd:e8:6a:6d:d8:24:3e:
9d:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:8F:9C:03:E7:57:F3:DB:51:4C:A3:8D:15:AD:A4:51:FA:2E:96:15
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/b83e47-bc04-492d-9a07-ecdd8174007a/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/b83e47-bc04-492d-9a07-ecdd8174007a/1/vY-cA-dX89tRTKONFa2kUfoulhU.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.98.96.0/22
185.45.44.0/22
185.109.96.0/22
193.3.28.0/24
IPv6:
2a04:a0c0::/29
2a06:4f00::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
202072
204262
Signature Algorithm: sha256WithRSAEncryption
24:62:d0:64:1d:84:43:34:b5:0c:7d:00:dc:9e:50:b2:78:f5:
1f:8d:10:92:41:28:c8:c3:c4:86:2e:c0:4c:2e:14:f0:fd:05:
00:ba:a7:27:13:90:aa:f9:98:53:c7:5a:65:81:52:91:6f:e2:
af:55:9e:44:9c:aa:aa:88:6e:2e:aa:1d:34:37:58:a4:df:4e:
c9:3b:da:6c:db:cc:aa:37:dc:8e:26:0c:ab:fc:43:1c:71:81:
d3:99:36:f8:59:1d:08:f2:99:80:80:7e:fd:9c:da:7b:c8:4f:
56:e4:53:53:26:33:03:fd:4b:f4:2c:24:a0:64:d6:f3:ce:72:
84:3c:fa:e5:5e:ca:a1:01:3a:09:9e:08:b6:ea:31:04:83:55:
8a:68:fc:a6:0b:6a:41:b7:54:fc:bf:e9:af:1e:b6:73:fd:c7:
5e:ca:01:52:6e:03:15:db:2e:78:62:a7:1b:f9:3a:e1:cf:33:
5f:c0:cd:02:b2:df:07:8f:65:6b:41:c5:da:4a:c9:b4:a7:71:
b9:0f:e8:51:13:56:4a:31:d5:84:25:aa:8f:9b:b0:56:23:39:
d1:eb:62:1c:c2:1a:82:31:32:9f:b8:ae:97:bc:c1:76:e8:dd:
de:27:d7:48:03:82:01:e0:f8:12:ba:70:8c:8b:2c:a0:32:76:
69:cb:ad:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:39:17 2024 by rpki-client on console-ams.rpki-client.org