Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/x67yqz8unZrAH3J_cwr33x0EGA8.cer
File: x67yqz8unZrAH3J_cwr33x0EGA8.cer (raw, json)
Hash identifier: v5bsaBuvMZ/Y9focMa9YRmvl/tmJEF2TCP2igUhCT7U=
Subject key identifier: C7:AE:F2:AB:3F:2E:9D:9A:C0:1F:72:7F:73:0A:F7:DF:1D:04:18:0F
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC94E3018A9EED55B4873428CE829E146
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/ec/f34f2b-3662-41c4-8270-92ed2a000f1f/1/x67yqz8unZrAH3J_cwr33x0EGA8.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/ec/f34f2b-3662-41c4-8270-92ed2a000f1f/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 08:33:13 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 49106
IP: 46.150.160.0/19
IP: 62.122.192.0/21
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4e:30:18:a9:ee:d5:5b:48:73:42:8c:e8:29:e1:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 08:33:13 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c7aef2ab3f2e9d9ac01f727f730af7df1d04180f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:0c:da:1d:1c:4f:51:e1:e8:c1:6a:ba:f3:af:
b0:09:f4:13:95:cb:b7:89:de:74:97:8f:6a:92:69:
d6:6c:09:8b:8b:fd:01:07:84:ac:a3:57:27:36:59:
ca:0b:72:c5:bc:98:a0:6a:f6:b9:7d:13:27:e0:7c:
3e:d1:54:e4:a6:63:ca:a6:4b:0e:ca:0d:38:59:3e:
4b:96:e0:4e:f4:0c:3a:d8:1c:cc:0e:c9:20:1c:45:
fd:e6:0e:36:dd:2f:00:2c:9b:40:4d:31:d4:47:4d:
a0:a2:d0:9e:22:4d:a0:d9:f7:40:69:eb:58:1d:bf:
41:1a:0d:3f:3d:ee:57:a3:50:3d:7c:7d:9d:5c:ea:
3f:61:de:05:e3:2a:9b:03:0c:62:71:e3:4f:17:c4:
52:e9:c8:d0:89:b8:b1:c4:85:00:0f:b5:e6:00:77:
12:aa:42:d3:35:a5:2a:99:06:70:46:42:54:b1:fe:
9f:2f:d7:7f:ce:f2:69:cf:d1:49:8f:2e:99:17:a3:
9e:08:15:c4:a6:52:67:02:10:2e:0a:25:00:9d:e7:
d7:58:0b:ef:7b:68:e2:2b:84:49:8b:62:de:9b:ff:
5d:ef:ae:be:7c:5f:46:8f:b1:65:76:cf:6b:58:ca:
af:ee:c5:d8:99:03:fe:5c:18:c0:03:df:7a:a2:27:
0e:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:AE:F2:AB:3F:2E:9D:9A:C0:1F:72:7F:73:0A:F7:DF:1D:04:18:0F
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/f34f2b-3662-41c4-8270-92ed2a000f1f/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/f34f2b-3662-41c4-8270-92ed2a000f1f/1/x67yqz8unZrAH3J_cwr33x0EGA8.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.150.160.0/19
62.122.192.0/21
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
49106
Signature Algorithm: sha256WithRSAEncryption
1d:7f:b8:29:b9:5b:8e:8c:fe:38:60:8c:17:51:c3:06:96:05:
66:1d:fc:87:80:f1:86:7f:9d:6c:c8:be:be:96:32:50:2d:15:
bc:f9:8c:a5:4d:c0:53:97:8d:41:78:1e:dc:1d:5d:10:b4:78:
be:aa:be:17:c2:74:d6:a4:60:69:e7:e7:8a:95:00:93:e1:66:
f1:64:65:f3:79:15:35:ba:33:43:bc:6c:e3:53:39:50:26:f5:
de:ee:40:5f:79:a3:6c:f6:7c:52:b7:a4:c6:32:ae:cd:c1:d5:
16:91:b2:8a:b8:0b:7c:02:21:09:b5:1c:19:4f:b6:b7:b1:dd:
c2:43:bf:30:0f:79:c0:7a:be:94:0d:d7:ee:c1:e6:d1:2e:99:
a9:d8:b7:2d:94:a0:da:28:ee:40:95:44:89:3c:60:a1:c7:86:
3d:eb:18:04:bd:35:e2:b1:e0:c5:3e:a1:01:a5:b6:92:77:55:
80:45:ef:6b:e1:f4:a0:f1:a5:dc:84:35:27:d9:64:e3:cc:37:
b6:ef:18:9b:d7:3a:5e:80:bf:49:0e:69:eb:30:5b:6a:74:ca:
5a:8a:28:df:1d:bd:a6:0e:9d:c8:61:b8:10:16:0a:47:4d:5c:
cd:1b:f7:69:fd:2f:68:7e:d0:81:cb:3b:2f:7e:20:6b:91:e8:
3a:56:48:68
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sat Nov 23 10:23:35 2024 by rpki-client on console-fra.rpki-client.org