Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/vmFEtFm84Tnyc0pE-9tGyYEymys.cer
File: vmFEtFm84Tnyc0pE-9tGyYEymys.cer (raw, json)
Hash identifier: zbB4FUdwm3hz/5ZFr3723xDtGiX/6C1J0G70AkVmSxk=
Subject key identifier: BE:61:44:B4:59:BC:E1:39:F2:73:4A:44:FB:DB:46:C9:81:32:9B:2B
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CCA2B3C587FF7D20B19B99312733F8BE9
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/ce/3b84bd-133b-43d9-b9cf-17efa57b39d7/1/vmFEtFm84Tnyc0pE-9tGyYEymys.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/ce/3b84bd-133b-43d9-b9cf-17efa57b39d7/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 12:34:40 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 29007
IP: 46.182.96.0/21
IP: 78.154.64.0/19
IP: 185.9.124.0/22
IP: 217.28.144.0/20
IP: 2a00:c100::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:2b:3c:58:7f:f7:d2:0b:19:b9:93:12:73:3f:8b:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 12:34:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=be6144b459bce139f2734a44fbdb46c981329b2b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:95:d7:7d:42:2c:6f:62:0a:99:dc:92:08:d1:
10:da:25:5c:6a:9b:4e:28:22:53:76:ef:58:72:25:
fb:4a:ce:ff:16:d9:8d:13:50:d6:22:db:5f:55:b2:
5e:3a:e2:33:d4:6d:fb:d6:73:0f:6d:79:28:70:65:
eb:12:fa:7d:f2:70:73:22:17:25:9e:94:3e:cc:98:
21:d3:c2:01:0c:a3:9d:3c:57:31:74:20:0f:aa:d5:
a9:c8:cb:a3:34:49:15:c6:a9:27:ac:9d:94:fe:bc:
eb:5c:48:96:48:cd:c5:4c:7b:a9:d8:9b:f8:16:e0:
c1:81:17:9a:ab:0d:61:e5:dc:78:3e:96:56:ee:3c:
fc:4a:19:ec:b9:a3:33:9d:98:b8:d8:6d:3a:ff:a7:
54:ab:29:e0:f5:d9:5a:f0:e3:e9:c5:63:f5:d3:07:
ee:98:df:77:df:ec:98:53:c8:9c:50:a4:16:d6:b6:
52:21:86:e0:54:5e:fc:a0:49:3e:f1:20:85:02:47:
5e:f8:bc:74:5b:17:0a:20:ac:ce:1b:ac:bc:28:24:
a4:e6:88:35:c7:f0:7a:74:42:ec:84:ab:5e:fb:af:
24:c7:9b:e9:42:26:40:d5:f0:64:4c:8b:71:3b:fa:
a0:26:a0:1f:5d:ab:3b:ee:89:5c:f2:72:cc:4e:b2:
f2:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:61:44:B4:59:BC:E1:39:F2:73:4A:44:FB:DB:46:C9:81:32:9B:2B
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/3b84bd-133b-43d9-b9cf-17efa57b39d7/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/3b84bd-133b-43d9-b9cf-17efa57b39d7/1/vmFEtFm84Tnyc0pE-9tGyYEymys.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.182.96.0/21
78.154.64.0/19
185.9.124.0/22
217.28.144.0/20
IPv6:
2a00:c100::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
29007
Signature Algorithm: sha256WithRSAEncryption
1d:2f:1b:ab:e1:cb:e7:1b:e2:da:37:ba:0e:15:e1:ed:57:be:
23:94:69:83:fa:b4:3d:7f:f2:97:6d:67:11:14:7e:eb:c8:ce:
85:dd:38:67:ca:88:65:71:f6:28:b7:e6:b8:87:cf:96:6f:11:
2b:4e:ec:5e:07:ab:c0:71:6b:9c:06:fc:b9:f3:88:51:1a:2f:
22:bc:cc:a8:fe:b1:b1:53:ac:45:59:e1:32:04:1a:f6:df:41:
3c:83:98:f3:ba:04:16:6c:7d:c6:a2:9f:91:85:2a:21:df:96:
1c:37:fa:48:2d:bf:19:51:e0:51:7e:e7:ee:99:7d:f5:3e:58:
01:aa:5d:76:f8:bb:b2:f4:1f:6f:14:21:69:73:3c:31:0e:4e:
77:d8:8f:99:f9:e5:0e:bb:76:30:bc:b9:f3:d5:b9:0e:6c:5a:
b3:bc:6b:e8:39:3d:d2:56:f7:7e:14:82:49:72:bf:1e:c9:82:
c4:89:01:17:c8:ea:8b:0d:d5:fe:d1:81:47:a0:80:48:3f:fa:
01:80:49:d6:e3:5e:88:c5:6b:a8:23:0a:7c:5f:b9:7d:1e:f8:
c5:1f:0d:86:44:23:c9:71:f9:69:d9:f3:fe:10:67:94:24:bf:
6e:c4:26:e4:81:ee:bd:20:b3:19:c8:1f:ad:69:4b:0f:35:82:
81:18:da:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:23:23 2024 by rpki-client on console-fra.rpki-client.org