Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/vkOZUom2pcqXLEuHteMUnDLLRDA.cer
File: vkOZUom2pcqXLEuHteMUnDLLRDA.cer (raw, json)
Hash identifier: rOH2+dn0L2fXTubU6rBKw5sQ8SixLhFvkLncBjojmFI=
Subject key identifier: BE:43:99:52:89:B6:A5:CA:97:2C:4B:87:B5:E3:14:9C:32:CB:44:30
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC3488CF9C9562D97C3A51CDEBE098CF5
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/e5/764b34-0d98-454c-85a2-306045efcd68/1/vkOZUom2pcqXLEuHteMUnDLLRDA.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/e5/764b34-0d98-454c-85a2-306045efcd68/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 04:29:21 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 41012
IP: 91.103.32.0 -- 91.103.34.255
IP: 94.116.0.0 -- 94.118.255.255
IP: 94.119.4.0 -- 94.119.255.255
IP: 185.144.140.0/22
IP: 194.42.124.0/23
IP: 2a01:5a0::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:48:8c:f9:c9:56:2d:97:c3:a5:1c:de:be:09:8c:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 04:29:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=be43995289b6a5ca972c4b87b5e3149c32cb4430
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:a0:e7:6b:b6:a7:8a:22:d9:83:6a:3a:90:b8:
e3:88:9c:13:c4:59:21:b6:e7:97:8b:aa:1e:f0:30:
62:16:42:f0:98:20:0c:71:02:88:4c:32:b6:42:56:
46:f6:2b:cb:12:2a:68:d1:f7:39:19:a8:be:b9:d2:
a9:6b:ba:ce:f2:d6:d4:3c:f0:13:fa:16:a7:61:3a:
84:02:69:37:b7:64:0a:a8:80:26:2c:a8:9d:93:9e:
6d:e2:69:76:77:5c:ac:23:c9:3a:9a:e6:f3:32:94:
f4:f2:0c:89:ce:14:90:5f:c3:95:08:16:35:a3:04:
22:be:90:b8:7e:34:f1:ad:7c:a0:c3:54:6a:6b:41:
98:59:08:ab:06:cd:1e:57:4d:b2:ea:0d:6b:6d:58:
f5:f8:82:a0:82:92:0f:21:83:96:a9:ab:b0:3b:62:
43:2f:1f:53:2f:c2:1c:80:1d:61:b7:a9:29:78:ff:
ef:59:e6:f2:fe:dd:8c:83:f6:62:ab:aa:67:48:8d:
ce:f9:af:09:17:d0:de:d8:1f:03:8c:34:66:9e:74:
4e:b3:5f:9b:55:5f:1f:92:d9:88:e6:fb:f7:3b:e0:
6e:e3:99:fa:b2:18:d8:3c:45:f2:fd:81:8d:26:fe:
cf:b3:9a:8f:11:8c:de:c5:f6:9c:00:ee:0e:62:85:
1a:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:43:99:52:89:B6:A5:CA:97:2C:4B:87:B5:E3:14:9C:32:CB:44:30
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/764b34-0d98-454c-85a2-306045efcd68/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/764b34-0d98-454c-85a2-306045efcd68/1/vkOZUom2pcqXLEuHteMUnDLLRDA.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.103.32.0-91.103.34.255
94.116.0.0-94.118.255.255
94.119.4.0-94.119.255.255
185.144.140.0/22
194.42.124.0/23
IPv6:
2a01:5a0::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
41012
Signature Algorithm: sha256WithRSAEncryption
83:49:bb:4c:99:43:4f:f5:c6:b3:b7:c7:a8:cf:28:d8:db:6c:
38:30:54:e9:ba:50:f1:23:79:95:e2:33:b3:60:1d:2e:37:be:
f9:d3:11:ab:81:f8:e5:ea:e7:51:9f:b5:f9:56:6b:78:34:db:
45:db:ef:17:1f:c8:72:de:c6:2c:97:f8:28:8f:21:c1:d5:41:
0b:a9:fe:21:f0:fd:76:d7:c9:94:7f:ab:1f:74:bb:38:d3:bf:
03:5e:ca:73:26:76:bc:56:3d:1a:48:09:62:c9:28:3c:d1:f7:
39:db:90:e2:ab:bc:dd:f0:29:08:f0:76:38:32:f4:72:f5:ec:
91:97:36:98:db:8e:37:71:01:b4:56:8c:10:e3:81:a3:f6:a1:
e0:fe:bb:50:d9:a6:dd:12:93:10:f3:85:f4:be:fd:51:38:2c:
60:93:2c:12:87:22:2f:21:d6:76:bc:27:85:50:a6:b8:b7:c8:
16:9b:68:5d:9b:ba:fd:6a:da:03:e1:21:99:4a:a2:62:38:b8:
36:71:e5:ec:25:3f:c0:d6:0b:7c:4f:f4:c6:17:15:66:a8:f7:
5e:2d:cc:c8:5b:d5:94:91:52:d9:9f:1b:86:63:12:3e:2e:18:
36:47:2b:90:3d:3d:60:90:67:a2:09:e6:2f:bc:7a:33:a5:07:
82:2e:9d:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:23:23 2024 by rpki-client on console-fra.rpki-client.org