Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/yYlmC_FH9ij7fPiycYc3_qhimNA.cer
File: yYlmC_FH9ij7fPiycYc3_qhimNA.cer (raw, json)
Hash identifier: 69lRrmOdM7d/so1OSMpho0SGIIDLgVDYBiwlib9BrjY=
Subject key identifier: C9:89:66:0B:F1:47:F6:28:FB:7C:F8:B2:71:87:37:FE:A8:62:98:D0
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC5DC0984739037B07B3A65FC2A6E7FEC
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/37/6f0392-8a85-47ab-8746-c198653aac5f/1/yYlmC_FH9ij7fPiycYc3_qhimNA.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/37/6f0392-8a85-47ab-8746-c198653aac5f/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 16:29:41 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 33883
IP: 46.30.232.0/21
IP: 185.22.124.0/22
IP: 217.168.208.0/20
IP: 2a03:2b80::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:dc:09:84:73:90:37:b0:7b:3a:65:fc:2a:6e:7f:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 16:29:41 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c989660bf147f628fb7cf8b2718737fea86298d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:03:45:3e:7e:a6:f3:ff:23:1e:d2:c6:89:c7:
bf:33:b4:dc:7f:03:bb:24:3d:cc:d9:48:90:97:33:
d8:76:50:ad:e1:e7:f6:21:4a:92:a9:a1:b8:73:5d:
0d:01:da:c9:36:8f:bd:0d:73:aa:97:d1:49:bd:bf:
50:1b:3a:68:76:13:81:ce:2b:84:6e:e2:67:29:ae:
17:ca:0a:bc:7a:30:b5:b3:50:c7:1a:42:e1:e0:e8:
59:0b:ec:98:54:00:b4:96:83:0b:dc:01:e3:80:a1:
47:90:50:44:16:a1:94:50:6d:b0:b3:37:db:d8:5b:
3a:74:1c:04:97:fc:04:bf:bf:3c:f9:86:6e:ae:17:
e1:e9:61:55:ce:f3:cf:e8:41:9e:12:42:1c:31:5a:
3e:48:09:48:ba:39:48:b6:0e:71:37:56:77:84:bd:
da:1c:22:57:c8:bf:35:ea:38:70:ed:f1:52:f6:7c:
20:57:70:39:e4:8d:07:4e:93:d1:b0:32:94:4f:18:
31:e2:6d:d3:7b:f5:17:fb:1f:8d:ba:8a:24:dd:e9:
54:5c:04:c3:d2:ec:e4:36:ac:58:ad:6a:de:96:e1:
41:47:e9:46:08:39:14:d1:81:3c:49:a7:41:f6:aa:
05:7b:17:da:35:e5:0c:22:97:9b:92:fb:fd:5c:2b:
69:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:89:66:0B:F1:47:F6:28:FB:7C:F8:B2:71:87:37:FE:A8:62:98:D0
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/6f0392-8a85-47ab-8746-c198653aac5f/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/6f0392-8a85-47ab-8746-c198653aac5f/1/yYlmC_FH9ij7fPiycYc3_qhimNA.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.30.232.0/21
185.22.124.0/22
217.168.208.0/20
IPv6:
2a03:2b80::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
33883
Signature Algorithm: sha256WithRSAEncryption
6a:c5:29:bc:8b:6e:b3:92:f1:f3:af:d5:04:77:6c:67:a6:c3:
e5:12:f7:93:ef:86:cf:ed:f3:30:c0:3b:88:03:2d:2f:62:dc:
53:e3:be:c1:1e:7b:54:a4:3c:d7:bf:51:1a:a5:dd:94:b9:67:
d9:0c:23:65:a7:58:fd:fb:1a:ef:b0:a2:b7:b2:de:7c:80:98:
7a:e5:bf:23:df:2b:8c:f0:64:12:d0:1c:08:26:10:0b:64:00:
51:9d:6d:79:2e:30:ea:72:40:6f:36:67:7e:d0:15:2f:41:21:
42:d7:d7:10:9c:08:c8:6e:47:9c:9a:a3:f5:e7:fa:18:f4:d8:
c5:c1:9c:1d:1f:a0:4b:3f:d8:b9:cb:96:34:0f:04:36:c6:30:
32:f5:a1:7e:3f:f8:36:ed:8e:b5:7e:5e:5e:3e:60:f8:86:69:
67:23:e5:17:cb:6d:26:4d:78:b8:4b:c1:5e:8a:b0:9e:a5:4f:
2e:ef:e0:81:47:2d:58:fa:b4:83:5a:cd:3e:06:1d:7a:b7:eb:
ac:47:82:d3:0c:3e:3c:78:90:24:53:1d:c9:61:0d:23:c0:80:
47:17:45:a6:20:f2:36:ab:7e:a5:eb:69:75:78:b9:65:fa:7f:
08:9a:60:d4:a9:35:ec:29:e5:ad:f1:34:ac:1f:b8:5c:96:0b:
60:a0:77:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:44:00 2024 by rpki-client on console-ams.rpki-client.org