Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05SToXmX0x6NWqbMyaa9dX8VwDA.cer
File: 05SToXmX0x6NWqbMyaa9dX8VwDA.cer (raw, json)
Hash identifier: NHqDxM1spnteS5dRLxGXu722DU1gi2J0YK4rW4dvUow=
Subject key identifier: D3:94:93:A1:79:97:D3:1E:8D:5A:A6:CC:C9:A6:BD:75:7F:15:C0:30
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC49226BDC758B2F3BE7AC98003C0F1E9
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/8b/e804e4-7f30-4049-948b-97923297cda7/1/05SToXmX0x6NWqbMyaa9dX8VwDA.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/8b/e804e4-7f30-4049-948b-97923297cda7/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 10:29:21 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 47447
IP: 62.113.192.0/18
IP: 95.214.236.0/22
IP: 185.13.68.0/22
IP: 185.252.32.0/22
IP: 212.83.32.0/19
IP: 2a00:f48::/29
IP: 2a09:ee80::/29
IP: 2a0c:2040::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 04 Jun 2024 23:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:92:26:bd:c7:58:b2:f3:be:7a:c9:80:03:c0:f1:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 10:29:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d39493a17997d31e8d5aa6ccc9a6bd757f15c030
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:b5:1f:7f:5b:cd:58:8d:20:b4:8b:61:57:44:
64:09:83:2f:a8:73:5c:ad:ff:57:65:86:c2:78:a1:
b2:13:90:49:0e:46:b6:6d:fe:bb:b1:26:c3:ca:b9:
c9:4f:8e:a3:84:96:97:36:4a:2e:70:54:4a:6c:da:
9e:58:0c:0b:6a:61:6a:05:6b:04:7c:3f:97:df:3b:
13:57:ab:c9:d6:22:b9:5d:5d:23:9c:88:d7:cb:93:
37:f3:5e:2c:7c:e3:c6:0f:b6:11:4f:99:66:be:ab:
7b:0c:d4:68:3d:df:53:96:49:c0:17:d3:09:0e:2f:
57:a6:3b:cf:f6:37:f9:26:f8:8d:31:f5:b7:2d:1b:
91:f4:39:c9:6c:d6:6b:c1:13:80:df:23:da:02:9e:
7c:39:1d:a5:ff:0e:80:a4:ef:74:ad:99:84:56:f9:
5a:4d:68:8f:4b:5a:ca:e4:18:fe:2a:27:7e:69:e9:
ed:74:48:aa:19:08:9c:47:f7:ba:fb:f3:d9:16:be:
7a:9c:68:f2:aa:c9:d4:9e:87:98:1d:f7:43:ac:65:
31:d0:38:10:7f:fe:56:ff:30:04:04:12:99:23:a4:
7a:7a:6c:8f:30:48:03:df:03:d9:1c:a4:da:59:29:
53:b6:88:12:e8:25:4b:f2:2c:e0:de:8b:2b:b0:2e:
3c:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:94:93:A1:79:97:D3:1E:8D:5A:A6:CC:C9:A6:BD:75:7F:15:C0:30
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e804e4-7f30-4049-948b-97923297cda7/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e804e4-7f30-4049-948b-97923297cda7/1/05SToXmX0x6NWqbMyaa9dX8VwDA.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.113.192.0/18
95.214.236.0/22
185.13.68.0/22
185.252.32.0/22
212.83.32.0/19
IPv6:
2a00:f48::/29
2a09:ee80::/29
2a0c:2040::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
47447
Signature Algorithm: sha256WithRSAEncryption
a5:69:63:ed:f1:ba:1a:44:c1:13:a6:d8:5d:57:ff:66:b4:9a:
19:88:72:2d:d0:26:5f:dd:e4:6e:65:f5:4e:7d:fc:e3:dc:4f:
83:28:5a:ec:86:e8:75:37:fd:11:75:45:cf:db:16:ce:6f:48:
52:2b:c0:b4:26:03:6b:6a:b3:17:02:23:cf:e8:80:b0:3f:7c:
f4:96:b3:74:c0:ea:51:69:6e:3f:df:7d:41:e6:27:ed:75:f1:
59:de:d7:f5:29:b6:a0:d5:2e:e3:89:5a:ba:ff:06:18:bc:3d:
54:1d:73:2f:19:91:e2:23:eb:ea:ae:bd:ba:ea:15:c4:75:b8:
6c:83:27:7a:4f:ad:a8:5e:f4:14:95:bc:ce:21:81:62:00:a1:
88:50:81:14:ce:3f:cf:87:69:1a:0e:70:f6:14:7a:28:9f:b5:
7b:08:39:c4:86:68:c7:9b:f8:e0:80:f0:10:ff:08:40:cc:4b:
d3:0e:1a:30:b3:c6:aa:71:51:35:8e:38:5b:2b:02:a4:b9:45:
15:a3:99:9f:e0:33:da:f6:d0:45:d5:16:68:09:f2:2d:df:b1:
f3:89:bb:b8:de:61:66:76:f6:00:11:6a:bb:4b:ec:d0:c3:7c:
e2:aa:a6:fe:3c:6a:c3:45:ac:35:8c:4d:ee:8c:e1:c2:06:a1:
3e:59:9c:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 4 02:40:08 2024 by rpki-client on console-fra.rpki-client.org