Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/wQmKGQW70zgVM4KPa3_SJxcEMe8.cer
File: wQmKGQW70zgVM4KPa3_SJxcEMe8.cer (raw, json)
Hash identifier: 2b6QXE6VjkoSzKXd6ODIBM9N4LzTeT+nFVuPS0+UabI=
Subject key identifier: C1:09:8A:19:05:BB:D3:38:15:33:82:8F:6B:7F:D2:27:17:04:31:EF
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC6B8C56E440F78C413D0D519AE82074D
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/82/2eed71-4665-4948-a3c5-b2a713d2eab2/1/wQmKGQW70zgVM4KPa3_SJxcEMe8.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/82/2eed71-4665-4948-a3c5-b2a713d2eab2/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 20:30:47 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 57324
AS: 211513
IP: 79.132.195.0 -- 79.132.199.255
IP: 86.111.144.0/22
IP: 109.230.112.0/20
IP: 122.102.116.0/22
IP: 185.113.105.0/24
IP: 185.113.107.0/24
IP: 202.164.192.0/20
IP: 2a03:c340::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b8:c5:6e:44:0f:78:c4:13:d0:d5:19:ae:82:07:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 20:30:47 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c1098a1905bbd3381533828f6b7fd227170431ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:84:40:db:54:43:50:cc:f1:60:3d:23:1c:04:
a0:5b:88:68:77:ca:58:73:b9:43:98:5d:84:c7:c0:
e1:68:a7:00:08:75:30:da:ce:45:ca:b8:9e:96:e2:
a3:2b:c7:28:1a:00:3d:c5:c9:20:7f:03:94:85:af:
ae:8e:1d:9a:0e:64:db:bd:ee:e5:f0:d2:30:13:f8:
91:3c:97:5c:06:5f:6d:cb:5f:45:3c:31:2e:b6:16:
0d:3b:be:25:c4:ba:fd:04:d4:cd:96:3c:3e:19:22:
d9:10:a6:1c:07:dc:a0:f7:8d:5e:74:e8:17:0f:96:
6a:43:0d:40:1d:af:7a:4e:be:47:96:11:e8:83:95:
8c:fc:ce:6c:9c:ec:ad:7c:99:ec:41:fe:4c:11:fb:
2a:86:5b:f0:eb:3e:85:f3:54:b3:6c:ed:e4:d1:03:
24:a6:91:a3:25:95:b1:26:f2:e8:1e:ed:e3:83:1f:
64:65:e9:ee:59:b9:46:42:5e:0b:68:70:37:f3:6c:
5f:94:25:e3:33:4e:e5:3d:df:65:c7:62:db:6b:90:
22:61:48:15:26:78:9c:b7:c6:8a:cd:42:47:e5:d1:
37:a2:a2:4d:2a:85:76:65:5c:8b:d2:b3:b2:6b:f8:
07:85:89:2b:e3:1d:b8:34:e7:5f:fc:12:5d:11:3c:
2b:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:09:8A:19:05:BB:D3:38:15:33:82:8F:6B:7F:D2:27:17:04:31:EF
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/2eed71-4665-4948-a3c5-b2a713d2eab2/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/2eed71-4665-4948-a3c5-b2a713d2eab2/1/wQmKGQW70zgVM4KPa3_SJxcEMe8.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.132.195.0-79.132.199.255
86.111.144.0/22
109.230.112.0/20
122.102.116.0/22
185.113.105.0/24
185.113.107.0/24
202.164.192.0/20
IPv6:
2a03:c340::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
57324
211513
Signature Algorithm: sha256WithRSAEncryption
8d:cc:5b:ea:34:7c:db:3d:7f:43:b0:1a:4e:1f:a3:c7:ea:6a:
54:09:48:a2:a1:88:e8:26:95:c0:3d:0c:0a:8d:70:6a:76:34:
f8:cb:28:c5:ca:4f:5f:7b:4e:e2:84:6f:57:7f:84:e9:45:c8:
55:97:00:ae:ba:44:92:84:b0:99:a9:a2:fd:cd:3d:a3:68:7e:
f4:1a:6f:28:a4:27:82:eb:01:16:86:df:79:d5:1c:0b:08:34:
c4:97:9b:b5:47:2c:07:39:f8:af:68:5e:5e:e9:1b:68:d4:8b:
e1:65:c5:86:fa:01:21:cc:39:97:23:98:af:57:f0:83:31:57:
15:1a:3d:32:77:8b:4c:b4:06:fc:c7:5f:d5:9f:44:8d:a2:17:
c5:b8:13:32:56:d3:68:b8:7a:ad:92:67:f7:a5:dc:67:31:18:
09:0b:40:7d:e0:1a:49:c2:74:0f:d9:96:d6:8a:c0:ae:c0:04:
19:ec:5e:ac:e5:d8:39:47:d9:21:e8:fc:a0:57:e6:cf:e1:eb:
5b:3e:4a:27:23:d4:11:e3:af:5e:8e:94:d1:f5:f4:90:4c:5c:
7d:03:10:f9:80:8e:8c:60:fc:6b:dd:21:9c:b1:a8:b6:53:11:
b9:db:16:4f:e8:bd:b1:35:09:f7:80:db:21:82:5a:5d:d0:f9:
e9:93:0a:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:39:24 2024 by rpki-client on console-ams.rpki-client.org