Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/xJsfdrtbrG0MeWukcTDHaLHHOxw.cer
File: xJsfdrtbrG0MeWukcTDHaLHHOxw.cer (raw, json)
Hash identifier: c7Rz1CujlRisQe9g84oR7EAJmKvuJrzFdCgqpf7+fEE=
Subject key identifier: C4:9B:1F:76:BB:5B:AC:6D:0C:79:6B:A4:71:30:C7:68:B1:C7:3B:1C
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018FA537435E65FA1827B54E2FF4CA918456
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/cf/8686cd-1f1c-4845-812d-4ad4035fae7b/1/xJsfdrtbrG0MeWukcTDHaLHHOxw.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/cf/8686cd-1f1c-4845-812d-4ad4035fae7b/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 23 May 2024 11:30:13 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 202405
IP: 194.147.196.0 -- 194.147.207.255
IP: 2001:67c:2ec0::/48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:a5:37:43:5e:65:fa:18:27:b5:4e:2f:f4:ca:91:84:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: May 23 11:30:13 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c49b1f76bb5bac6d0c796ba47130c768b1c73b1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:e5:c3:79:8a:4d:5f:20:bd:5a:83:c9:8a:b8:
0e:cd:c5:3a:ea:53:95:c4:d3:1c:60:e2:e8:eb:de:
7b:b4:25:a3:e6:3c:17:be:93:34:91:dd:54:ea:f0:
b0:3a:e9:72:7e:41:b5:f6:29:a9:82:6f:75:b5:76:
9f:19:49:31:71:65:f4:0d:57:50:bf:ae:c9:52:86:
0b:b7:9e:dd:14:d9:9f:95:86:b1:ff:08:ff:24:d9:
f4:ab:d1:ae:4e:c5:b6:8b:aa:94:42:0d:58:03:a1:
c0:78:45:2e:b1:3b:f0:0e:05:82:0c:b6:72:40:e1:
ce:27:60:a2:a4:c4:f6:a8:36:9e:aa:a4:80:45:44:
90:99:4c:bd:fa:d9:31:f1:63:bc:1e:cf:68:74:f7:
67:37:d8:8f:9d:b9:ea:35:9c:23:8b:39:54:c4:1d:
9c:a3:c0:10:c0:e0:03:69:1e:1e:40:7d:c4:03:66:
cf:f9:68:f8:65:6f:e3:19:bb:67:24:5c:0d:52:ce:
58:56:89:2b:1f:c0:a5:92:de:3e:7b:01:04:59:0a:
4e:81:d9:c6:f1:2e:41:7d:3b:18:56:a2:c1:d1:78:
2e:1e:83:e6:28:2a:25:12:4c:dd:d1:ac:63:35:55:
e2:23:fa:bb:4f:a7:e5:f4:2f:28:da:7a:c3:56:c1:
cc:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:9B:1F:76:BB:5B:AC:6D:0C:79:6B:A4:71:30:C7:68:B1:C7:3B:1C
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/8686cd-1f1c-4845-812d-4ad4035fae7b/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/8686cd-1f1c-4845-812d-4ad4035fae7b/1/xJsfdrtbrG0MeWukcTDHaLHHOxw.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.147.196.0-194.147.207.255
IPv6:
2001:67c:2ec0::/48
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
202405
Signature Algorithm: sha256WithRSAEncryption
29:70:a3:70:ee:2e:3e:59:eb:bd:51:dc:6a:7d:99:f0:15:06:
26:dc:54:1d:de:99:f1:43:e8:70:ad:7c:c1:17:ae:2a:65:4c:
35:bf:64:c4:9b:9b:2a:9b:74:48:d4:7d:d3:71:98:7b:e7:75:
72:42:cf:ba:cc:f1:5a:01:c7:e2:6b:23:31:c6:a1:ba:94:9e:
e9:23:c7:6f:c2:31:cb:f2:9d:ff:0a:4f:a2:1e:f0:7e:24:39:
7d:7b:a8:d3:4a:88:f6:31:71:65:b0:25:a1:20:26:4a:07:00:
7e:f9:ca:e9:85:1e:cb:9c:a2:a2:e2:95:f9:d7:90:10:8f:4f:
c5:9b:99:5b:8f:42:76:3b:a1:9d:11:c4:c5:a9:5b:26:bb:37:
cc:ac:ed:cc:2e:94:5e:2d:b9:4d:44:2e:2a:6b:7d:46:52:03:
6b:5b:84:a9:e4:e8:f2:fb:de:ee:7a:89:30:ca:eb:65:74:5c:
af:16:04:80:da:7b:1b:94:aa:0a:65:ae:3c:ea:8a:94:55:2b:
39:ce:c7:c1:66:46:8d:5e:cc:ef:ea:96:57:b1:c6:71:fb:98:
ed:6d:b2:51:19:7f:cf:44:bb:da:27:bd:db:eb:b7:3b:c0:e4:
a0:f7:3f:bc:79:9e:86:18:58:5c:0d:f3:3d:c8:8e:66:5b:87:
43:36:df:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:23:37 2024 by rpki-client on console-fra.rpki-client.org