Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/wJLY1VEbGezkVpYPI7-ohu4dVws.cer
File: wJLY1VEbGezkVpYPI7-ohu4dVws.cer (raw, json)
Hash identifier: wyqiE46pLXhLZFDnX0GhIuxAP4fDiQ1x8tlXP7afsmg=
Subject key identifier: C0:92:D8:D5:51:1B:19:EC:E4:56:96:0F:23:BF:A8:86:EE:1D:57:0B
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC9BCD2E1FFD6F4DE5F5BA8438E5CA0F0
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/65/d430d9-d214-41c0-8e51-267a16b4629f/1/wJLY1VEbGezkVpYPI7-ohu4dVws.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/65/d430d9-d214-41c0-8e51-267a16b4629f/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 10:34:04 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 58322
AS: 210402
IP: 91.106.32.0/19
IP: 109.61.4.0/22
IP: 2a0a:d940::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:d2:e1:ff:d6:f4:de:5f:5b:a8:43:8e:5c:a0:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 10:34:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c092d8d5511b19ece456960f23bfa886ee1d570b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:b8:16:94:b2:ff:2f:03:fa:5a:9a:42:5f:31:
15:bd:90:8e:f6:33:c1:9f:e5:7c:3b:d9:40:cb:34:
8e:6e:91:31:d3:c3:6b:68:27:4a:9c:73:6a:90:aa:
d9:26:7d:ce:01:42:6a:ea:4e:a0:73:7f:e8:8f:48:
e3:a9:3e:4d:92:38:15:0b:e1:18:3a:42:bb:c5:df:
ab:89:cb:ec:63:e0:aa:b9:ec:4d:a6:9d:d6:f5:c1:
07:c5:4f:e7:ea:1c:33:48:96:11:7d:f0:c5:79:0f:
05:b5:42:4b:7b:b1:ec:85:3e:50:79:d2:48:d4:b1:
60:a3:2f:e7:01:d8:91:ad:b9:0d:16:76:57:40:e9:
18:de:62:c0:3c:0a:98:4b:2d:4a:5f:ed:e3:7d:22:
a3:75:1e:58:0c:53:47:f6:1d:e6:e2:b6:78:b5:ca:
d8:20:03:5d:ce:d2:8b:04:28:08:b6:66:e1:81:a5:
d0:30:73:e9:7c:26:b0:0e:28:8e:34:95:5a:8c:44:
17:7b:a6:05:92:a4:76:ce:f8:54:71:19:a2:fb:9a:
5d:4c:ae:84:cc:e8:ba:50:b2:41:92:87:37:8d:3b:
8c:07:91:c9:8d:3b:e2:aa:56:31:b2:c5:2b:d5:6a:
f5:ff:07:a2:4e:a4:35:65:53:19:c4:b3:84:28:d6:
16:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:92:D8:D5:51:1B:19:EC:E4:56:96:0F:23:BF:A8:86:EE:1D:57:0B
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/d430d9-d214-41c0-8e51-267a16b4629f/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/d430d9-d214-41c0-8e51-267a16b4629f/1/wJLY1VEbGezkVpYPI7-ohu4dVws.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.106.32.0/19
109.61.4.0/22
IPv6:
2a0a:d940::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
58322
210402
Signature Algorithm: sha256WithRSAEncryption
08:5b:8b:c7:9a:b0:cb:6a:26:19:1d:34:6b:6e:1d:90:ec:e6:
8d:38:9b:fb:14:67:c7:37:12:58:57:9c:a6:4b:50:b9:62:0a:
ce:03:31:8e:ad:e8:5c:36:0d:85:c7:73:2d:4c:51:12:a5:06:
f9:c9:4b:b5:a8:3b:be:ce:0c:82:de:d6:27:a6:93:92:de:32:
fb:fd:7f:b4:8c:7f:1d:3b:98:1b:cc:0d:05:5a:d6:98:d7:a5:
bb:19:88:60:2c:03:61:b0:98:66:de:88:a8:08:96:ad:55:99:
78:b2:6a:5a:ce:e7:61:6e:85:39:b1:93:ad:73:90:a9:5f:d6:
9e:82:70:6f:8c:66:9e:a6:32:85:ef:45:6a:6d:cf:3b:8c:b5:
e4:01:ca:f8:a2:20:67:2d:99:2e:b1:9f:26:69:7f:55:9b:bf:
14:92:61:51:76:39:97:b5:23:7f:8a:05:4a:25:85:64:25:ea:
5d:b1:9a:ac:b8:05:2d:06:7d:5b:1b:a4:e3:32:e7:02:ff:22:
31:df:ea:98:37:34:a9:8c:df:81:d2:83:7c:21:ab:9c:62:1b:
8e:a5:04:78:69:ab:5b:af:22:c1:6f:d4:0e:12:c4:9a:a4:84:
b1:ac:aa:00:b2:7b:69:65:bc:52:02:56:ea:d9:3d:9e:4b:18:
30:9b:bf:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 00:58:33 2024 by rpki-client on console-fra.rpki-client.org