Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3K5LBHGmGHLEBBQuH5D1B08NbxU.cer
File: 3K5LBHGmGHLEBBQuH5D1B08NbxU.cer (raw, json)
Hash identifier: b2TDG+tdNiTCLXyy0ifJvYfBecRd6qLiZm+ViH44kgk=
Subject key identifier: DC:AE:4B:04:71:A6:18:72:C4:04:14:2E:1F:90:F5:07:4F:0D:6F:15
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CCA2BBE0DB02D2A0A2ADF43DE55979EAB
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/a2/67f9a7-a6e8-426e-bac4-4b68b15d301a/1/3K5LBHGmGHLEBBQuH5D1B08NbxU.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/a2/67f9a7-a6e8-426e-bac4-4b68b15d301a/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 12:35:13 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 205197
IP: 185.223.88.0/22
IP: 2a0d:fa00::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 04 Jun 2024 14:36:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:2b:be:0d:b0:2d:2a:0a:2a:df:43:de:55:97:9e:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 12:35:13 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=dcae4b0471a61872c404142e1f90f5074f0d6f15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:c5:6d:a4:c3:58:6f:63:a6:77:d8:7b:1a:d0:
df:32:13:91:30:6e:81:b0:2b:db:61:08:5b:c1:7e:
41:6f:ae:cb:49:77:eb:9f:d1:90:b7:81:4c:cc:b1:
25:a3:95:00:e7:53:a3:3d:e8:95:fd:6d:02:d2:73:
c4:98:95:d8:65:05:73:cf:38:e8:ac:93:21:d2:63:
ae:ed:00:3a:11:fb:d6:ec:4f:62:71:62:10:93:a6:
ba:d3:6c:01:cf:81:ef:ea:bf:f6:e1:35:a9:92:65:
36:2d:6d:94:75:4a:45:24:59:73:8d:20:85:ca:45:
d5:96:da:14:9c:29:6b:cb:8a:65:78:34:dd:4e:7f:
3f:84:1a:33:fa:98:40:40:da:2c:a2:b1:93:51:47:
32:e8:b9:08:d6:d5:08:dc:40:3d:5f:cb:0b:8c:d1:
96:1d:bb:f8:be:3e:da:1b:4a:3b:7e:92:55:c4:0b:
e7:0a:40:e3:55:50:18:73:ef:5e:4c:7c:a3:4b:bc:
33:14:d0:07:d6:40:99:f6:75:c7:a4:c3:ac:2e:a6:
cd:56:7d:b3:b0:74:a6:8a:45:71:1a:ea:b4:41:a8:
94:be:56:f8:2d:a1:7f:54:eb:d8:8f:14:79:c3:5a:
f7:64:4c:86:06:67:ba:42:a9:a9:93:aa:12:59:da:
90:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:AE:4B:04:71:A6:18:72:C4:04:14:2E:1F:90:F5:07:4F:0D:6F:15
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/67f9a7-a6e8-426e-bac4-4b68b15d301a/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/67f9a7-a6e8-426e-bac4-4b68b15d301a/1/3K5LBHGmGHLEBBQuH5D1B08NbxU.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.223.88.0/22
IPv6:
2a0d:fa00::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
205197
Signature Algorithm: sha256WithRSAEncryption
71:0e:29:72:df:ee:92:1b:58:ae:f5:30:9f:98:99:58:22:e6:
61:80:e1:aa:f8:10:32:c7:5a:7f:07:8d:0d:70:03:8a:17:2b:
0d:7f:57:44:80:e6:11:89:39:b1:d2:a8:20:51:f1:43:a3:72:
cd:20:33:22:ba:7c:1b:57:85:f5:16:5f:8a:ff:fa:70:c8:01:
4b:75:94:5c:6f:86:27:58:ee:8f:fe:4a:be:68:8a:9c:d6:da:
a2:31:3b:c6:07:a8:ac:b8:84:f5:45:35:14:bc:64:e3:86:32:
bc:c2:42:e6:cd:3f:dc:fa:1b:67:eb:37:bc:c1:73:b3:9b:bc:
17:77:f0:59:fb:fb:9f:21:40:f0:a0:4f:22:81:8c:7c:69:6a:
32:34:2a:05:af:f0:92:25:0a:b0:7d:68:f3:95:01:55:b8:67:
e3:89:42:25:7c:ab:d4:13:91:54:7f:a3:06:59:56:53:f4:75:
80:24:0b:bb:2a:4c:c5:80:1f:91:1d:6b:27:42:d7:1b:bd:f6:
57:42:07:aa:24:e3:66:4b:4c:c1:03:a6:f6:80:ef:64:c7:49:
ed:ca:2e:1d:cf:c0:8d:f0:ad:e5:92:c4:5f:6e:7f:08:9d:44:
b8:fa:1e:5c:8c:a8:1b:1b:a1:37:d5:c7:58:84:06:77:d4:8c:
aa:91:a6:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 3 21:25:36 2024 by rpki-client on console-ams.rpki-client.org