Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/y58ZzBrXh0Wl2rMdY0BX4pq_7Yw.cer
File: y58ZzBrXh0Wl2rMdY0BX4pq_7Yw.cer (raw, json)
Hash identifier: 2AIyXgZEExMTOKs7b4QFX7x8mty5tRbA+GrNDlT4kUU=
Subject key identifier: CB:9F:19:CC:1A:D7:87:45:A5:DA:B3:1D:63:40:57:E2:9A:BF:ED:8C
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC9BB344B304F82491ED2F8CD81ACB639
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/d7/af1d49-d0e4-4d68-8dee-dd69a4ee1350/1/y58ZzBrXh0Wl2rMdY0BX4pq_7Yw.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/d7/af1d49-d0e4-4d68-8dee-dd69a4ee1350/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 10:32:18 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 207706
IP: 94.154.7.0/24
IP: 2a0f:ebc0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bb:34:4b:30:4f:82:49:1e:d2:f8:cd:81:ac:b6:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 10:32:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cb9f19cc1ad78745a5dab31d634057e29abfed8c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:c0:b1:9b:97:d2:e9:68:d1:70:6f:f1:fb:4a:
c7:dc:e0:09:5a:a4:94:4f:0d:de:91:3e:3e:58:7a:
24:fe:0c:f9:5f:6c:9c:db:1f:4f:dc:f2:09:a5:22:
71:b9:8d:38:dc:96:6b:18:55:a1:d3:c3:68:c6:f6:
08:07:5a:23:0e:d3:a1:02:60:77:e0:71:e8:2d:40:
d6:fd:2d:36:10:36:a0:e7:38:1c:10:63:77:94:d0:
e9:30:7a:9f:82:d5:5a:81:d3:6b:75:4e:c0:56:c5:
ed:e0:a4:8e:ba:5c:44:39:1a:d9:cf:d3:a6:78:a5:
d3:59:3d:cc:20:0d:69:22:82:1f:07:b2:17:b9:54:
14:7d:42:fe:05:b1:d3:6c:4b:7b:9a:79:29:09:80:
d1:fc:09:e7:82:30:21:08:a0:14:5e:4a:84:f8:31:
b5:8d:a4:5c:51:2a:b7:f9:66:89:06:fd:66:fc:eb:
fb:30:b4:ba:c2:2c:89:83:21:56:d2:c9:fa:e2:15:
aa:6e:e0:cd:79:5c:ae:a5:a0:a6:ba:01:79:5a:e1:
b0:c9:56:45:05:18:cd:a6:35:76:ed:6d:38:66:a7:
c6:87:0b:e7:fa:a6:a2:31:b0:0f:e8:0d:cc:04:81:
02:1f:85:44:d4:8c:c8:91:50:35:53:ee:9f:fb:6a:
40:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:9F:19:CC:1A:D7:87:45:A5:DA:B3:1D:63:40:57:E2:9A:BF:ED:8C
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/af1d49-d0e4-4d68-8dee-dd69a4ee1350/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/af1d49-d0e4-4d68-8dee-dd69a4ee1350/1/y58ZzBrXh0Wl2rMdY0BX4pq_7Yw.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.154.7.0/24
IPv6:
2a0f:ebc0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
207706
Signature Algorithm: sha256WithRSAEncryption
1f:01:27:0e:03:cf:af:ba:06:17:7a:e2:31:89:70:00:0a:e4:
d9:e9:98:f9:bd:e9:82:0c:f6:64:7f:9d:ef:e2:6a:93:a5:b1:
a4:94:d6:86:66:b6:27:08:ff:71:b2:2f:b3:dc:de:06:b1:98:
df:3d:75:06:29:35:32:a5:48:2b:42:d8:52:72:1b:4b:48:87:
e8:e6:8a:d2:1a:8a:f6:a8:30:40:c8:7d:82:87:88:1a:6a:b0:
ca:89:84:46:50:38:9e:3f:60:9f:f6:80:7d:4e:7d:0b:ea:f9:
eb:77:5a:4e:2a:23:80:9e:94:79:7a:c0:d1:9f:7b:98:81:ef:
b2:e4:d6:55:9e:cb:72:e3:08:d6:c8:32:af:6c:fd:ce:2d:56:
e5:e1:cd:fe:13:83:95:be:be:4a:36:fb:91:8c:0a:ba:db:50:
92:f1:21:25:f1:ad:d6:ce:3f:80:eb:e3:f2:ca:97:ba:56:09:
95:2b:15:ef:a6:bf:00:aa:44:27:3c:e6:24:c8:18:ea:9a:b4:
31:58:39:2d:3d:fc:f9:2a:61:9b:7f:5a:e1:d3:86:6e:bf:f5:
8a:55:24:b1:47:ec:a7:62:e8:87:f2:83:c3:10:85:d7:30:5e:
e0:96:c4:3c:68:04:f3:28:3d:80:69:0d:be:ba:54:cb:f1:43:
24:69:8f:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 02:20:04 2024 by rpki-client on console-ams.rpki-client.org