Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/wHR_vibJzddiit_ttXt4vo3nXik.cer
File: wHR_vibJzddiit_ttXt4vo3nXik.cer (raw, json)
Hash identifier: WiFMrINc4nTzM377k263N72Kjcj5cbrqJBdER5PTFOw=
Subject key identifier: C0:74:7F:BE:26:C9:CD:D7:62:8A:DF:ED:B5:7B:78:BE:8D:E7:5E:29
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC8DE7C96884A8F097016BAD0BB934C83
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/9d/2406ab-3bcb-41bc-a942-368608385883/1/wHR_vibJzddiit_ttXt4vo3nXik.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/9d/2406ab-3bcb-41bc-a942-368608385883/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 06:31:13 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 41264
IP: 89.207.224.0/21
IP: 185.25.28.0/22
IP: 2a00:79e0::/31
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:de:7c:96:88:4a:8f:09:70:16:ba:d0:bb:93:4c:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 06:31:13 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c0747fbe26c9cdd7628adfedb57b78be8de75e29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:bf:d9:b6:11:76:c7:c5:a8:67:07:ff:ff:6e:
0b:c2:08:99:a0:b8:ac:04:34:f6:e0:b4:17:ec:9f:
eb:16:4f:99:09:e9:b7:78:31:33:72:f9:9a:65:f3:
3e:69:45:6d:43:cc:ec:4f:3b:47:7a:8c:28:51:f4:
7d:2b:e1:d8:96:d0:2a:e8:6e:4d:41:03:f4:d8:d4:
26:91:0d:bb:c4:68:64:4e:54:f2:5c:02:c2:46:6b:
e6:b3:97:1e:5c:37:f3:9f:f2:b5:ee:60:e8:8f:8d:
ca:b1:f7:11:2f:82:63:f2:ad:46:d1:74:c6:11:3f:
76:d3:c1:a3:2a:87:6e:f4:78:07:d8:5d:75:f2:c4:
db:c5:cc:05:b3:bc:b6:d4:88:03:f9:b8:38:82:6a:
8b:83:9f:39:54:4d:2f:02:88:c1:31:8f:ba:e3:4f:
03:d7:f2:49:f9:23:c7:4e:36:f0:87:53:43:42:9e:
da:e7:5e:6e:c3:f1:ba:1c:cd:ea:8e:50:96:e1:e1:
55:49:c4:6f:8c:42:0a:4f:9c:09:6c:39:fb:64:0b:
86:cc:be:cf:e1:95:93:18:8a:27:99:78:a3:97:b1:
9f:ef:b9:4f:d1:7e:17:07:05:67:d7:89:83:69:68:
0b:4c:39:3e:91:04:02:f3:82:44:ef:a3:21:9f:70:
14:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:74:7F:BE:26:C9:CD:D7:62:8A:DF:ED:B5:7B:78:BE:8D:E7:5E:29
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/2406ab-3bcb-41bc-a942-368608385883/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/2406ab-3bcb-41bc-a942-368608385883/1/wHR_vibJzddiit_ttXt4vo3nXik.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.207.224.0/21
185.25.28.0/22
IPv6:
2a00:79e0::/31
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
41264
Signature Algorithm: sha256WithRSAEncryption
2e:11:e2:57:50:91:f5:90:57:be:7d:f3:db:09:77:21:66:75:
02:31:61:c1:45:43:d4:59:f4:d7:f0:f3:14:0a:53:06:8c:0b:
32:31:32:a2:e2:27:c1:c0:c2:d9:a9:01:b9:26:1e:89:17:79:
f4:4e:a0:4c:fb:7c:81:dd:7f:0a:cd:1d:71:ed:3b:18:10:87:
c4:a1:5b:b0:3a:11:ac:c0:82:91:bc:3b:29:a6:12:b3:d1:3f:
5b:08:51:17:03:73:02:51:d7:63:90:df:b5:c8:a1:9b:0c:63:
33:ce:ff:fb:1c:c6:0c:fa:c3:22:da:8f:cb:86:e1:ec:ff:a1:
f6:81:c1:b4:00:d8:6f:11:09:c6:6d:fd:3c:4c:40:af:a0:4d:
65:47:3f:fc:98:83:b7:f8:d7:8e:f2:bc:40:6d:21:6e:7e:20:
cf:8b:e9:12:80:37:17:63:7d:df:23:fc:06:2b:ef:57:8d:eb:
3c:12:d0:ee:1e:a6:d9:e9:7b:3a:e9:4b:4a:ce:ff:00:53:72:
65:e8:e7:39:65:23:31:27:e1:cf:fa:be:11:74:f6:e5:8e:72:
c0:f8:8c:a3:ef:ea:96:00:c5:f3:47:b1:94:17:56:b1:7e:0b:
d9:e3:6d:75:44:89:f2:2e:2f:f5:a9:bb:04:09:4f:42:22:19:
6d:a2:8a:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 18:32:29 2024 by rpki-client on console-fra.rpki-client.org