Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3LZakO089K4EUlVO40uSqEdtzxA.cer
File: 3LZakO089K4EUlVO40uSqEdtzxA.cer (raw, json)
Hash identifier: asy2F9+islzinUELOf1Ro/imCKEpN1pIAiKhkTTnqU8=
Subject key identifier: DC:B6:5A:90:ED:3C:F4:AE:04:52:55:4E:E3:4B:92:A8:47:6D:CF:10
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018F7BEE21BD2742D40BBD712EBA778D8959
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/3LZakO089K4EUlVO40uSqEdtzxA.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 15 May 2024 11:05:54 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 41805
AS: 202366
AS: 205473
AS: 212460
IP: 37.77.64.0/20
IP: 185.217.88.0/22
IP: 194.113.196.0/22
IP: 2a0b:c640::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 04 Jun 2024 14:36:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:7b:ee:21:bd:27:42:d4:0b:bd:71:2e:ba:77:8d:89:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: May 15 11:05:54 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=dcb65a90ed3cf4ae0452554ee34b92a8476dcf10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:e8:d6:3b:9e:93:38:80:17:f5:5a:9c:5c:39:
c3:db:3c:be:a7:c2:b1:1b:21:54:ab:74:d2:7a:ba:
70:b2:22:0b:c1:a7:01:70:b9:ba:d7:28:5a:7e:19:
e3:4d:3c:18:b6:c3:e2:55:fd:64:47:58:d3:4b:c3:
13:6d:d6:57:ab:eb:99:a4:b6:0d:0c:54:8a:9b:66:
5d:69:ac:15:ce:f5:07:7a:1b:55:95:8c:b2:0c:bc:
c0:8a:5a:8b:f2:17:dc:80:98:b0:7a:cc:92:b1:33:
47:d5:ce:c9:e1:bd:3e:02:cf:8a:c5:7c:0a:f3:54:
ee:57:65:35:2c:5e:7d:e3:7c:8c:6d:6b:a7:29:b8:
83:0d:02:72:fb:91:36:9c:01:51:9d:a0:fb:cd:24:
69:d0:79:a7:17:7d:ef:82:a0:87:bc:e4:e3:75:9c:
7d:4f:e8:10:bf:70:90:9c:63:a4:78:4d:2e:6c:9c:
d3:f1:14:d9:19:c0:d3:b2:ca:88:54:82:d6:15:2e:
57:ec:ba:97:0b:74:39:92:14:96:79:8a:c1:13:05:
95:c5:9e:0f:a4:a0:6c:35:6a:4d:84:94:99:95:00:
ed:a5:9c:f2:6a:6d:6c:4d:80:22:54:d1:ea:4e:21:
19:1b:61:74:44:fb:0f:f5:82:e2:15:a2:a9:5b:67:
09:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:B6:5A:90:ED:3C:F4:AE:04:52:55:4E:E3:4B:92:A8:47:6D:CF:10
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/3LZakO089K4EUlVO40uSqEdtzxA.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.77.64.0/20
185.217.88.0/22
194.113.196.0/22
IPv6:
2a0b:c640::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
41805
202366
205473
212460
Signature Algorithm: sha256WithRSAEncryption
9d:c4:8b:b2:86:d5:5f:21:c0:44:73:93:5d:37:44:d0:5a:1b:
17:f6:0a:8e:a6:40:3f:f7:ea:55:0e:23:66:73:32:5e:bd:a6:
4c:d2:8e:55:95:1c:c2:46:55:3f:23:77:df:6d:18:53:1d:0b:
1b:35:fa:ab:39:76:53:ca:e6:34:7f:dc:45:e1:5c:d2:fe:f8:
dc:1e:90:d1:3c:a9:51:47:c5:e4:ff:5c:97:26:ab:8f:6f:78:
f1:c8:49:51:bb:62:ff:8e:ec:d5:f5:6a:4e:f5:61:4c:6a:2d:
19:cb:22:60:57:c8:ab:e3:8a:fe:64:28:06:c3:b7:07:d6:4a:
d8:22:5f:c5:b8:39:6e:7e:30:90:29:68:6b:a9:5d:44:c4:83:
4e:00:d3:cf:20:fb:36:d8:69:04:ba:d7:ae:1a:12:5e:d9:67:
d4:73:70:85:bf:dd:6d:10:12:80:4a:00:ff:5a:0f:08:12:90:
ef:d7:02:d5:ea:7f:59:3d:e4:1c:ad:0b:63:07:f5:50:22:b9:
a2:9b:fa:7d:ac:60:48:15:52:08:c2:41:14:40:06:d0:f6:75:
77:66:90:fd:90:a2:a5:48:34:d6:39:f2:8c:39:a3:9a:65:65:
c4:05:38:25:76:27:28:c6:fa:4b:5f:1b:67:33:44:20:ac:94:
1b:20:0f:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 3 20:03:08 2024 by rpki-client on console-fra.rpki-client.org