Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3MpSIZb9CbrnOba9IyLl65DaT7k.cer
File: 3MpSIZb9CbrnOba9IyLl65DaT7k.cer (raw, json)
Hash identifier: VQ7r1nLdo+Hewcu+KZfideUhXjxaaIedpSQp/2TwIGI=
Subject key identifier: DC:CA:52:21:96:FD:09:BA:E7:39:B6:BD:23:22:E5:EB:90:DA:4F:B9
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC7957C8E10C0DFCC6807FE200C6594DD
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/4f/649af0-132c-4533-9fbc-3b250ae18936/1/3MpSIZb9CbrnOba9IyLl65DaT7k.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/4f/649af0-132c-4533-9fbc-3b250ae18936/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 00:31:51 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 216031
IP: 194.49.111.0/24
IP: 194.49.115.0 -- 194.49.116.255
IP: 194.50.3.0/24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 23 May 2024 22:35:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:95:7c:8e:10:c0:df:cc:68:07:fe:20:0c:65:94:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 00:31:51 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=dcca522196fd09bae739b6bd2322e5eb90da4fb9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:07:0d:85:fc:51:b1:17:df:8b:cd:02:c8:d3:
5f:45:e3:f4:26:5a:93:2d:b5:7a:a2:32:da:82:05:
fb:8a:ab:c4:5b:9e:0a:94:51:96:6c:ca:d6:0d:96:
fb:a0:8a:a4:1a:26:af:ee:a6:34:32:68:0c:3c:e5:
dc:e4:66:94:7c:6b:cb:99:dd:b8:bf:35:e2:03:ce:
f3:6e:91:08:a4:6e:50:c5:38:e7:8b:dc:ca:a6:cd:
ed:fd:80:4b:3c:58:67:dc:ea:8a:fc:ad:a9:1f:5a:
47:7a:e3:c5:e2:5a:4d:fd:4b:39:4e:67:4e:57:8e:
fb:d1:0e:17:28:be:17:a3:fa:bb:4d:e0:8c:ee:55:
a5:c4:08:b8:2f:0c:b0:16:a8:76:94:d4:27:c0:a5:
1a:3d:11:12:4c:19:21:7d:da:61:54:b3:28:06:78:
4f:de:d9:24:ca:0f:87:f3:97:6d:43:5b:dc:64:5f:
28:48:2e:fc:c9:63:af:40:12:57:12:f6:f5:e2:2c:
cb:4f:cf:75:7a:c4:30:23:eb:0d:94:9e:2e:19:1c:
46:4c:78:76:8e:87:f1:86:81:dd:db:6f:69:6b:5d:
78:e3:e9:7a:a5:dd:b8:7d:b5:18:cc:d2:f9:3d:a4:
cd:e4:d8:01:b7:6f:52:81:82:aa:fa:b8:89:60:2d:
d1:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:CA:52:21:96:FD:09:BA:E7:39:B6:BD:23:22:E5:EB:90:DA:4F:B9
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/649af0-132c-4533-9fbc-3b250ae18936/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/649af0-132c-4533-9fbc-3b250ae18936/1/3MpSIZb9CbrnOba9IyLl65DaT7k.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.49.111.0/24
194.49.115.0-194.49.116.255
194.50.3.0/24
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
216031
Signature Algorithm: sha256WithRSAEncryption
88:a0:c0:4f:01:08:22:a3:01:61:29:18:43:9d:71:11:ba:46:
1d:b0:c8:f0:e3:03:06:e8:34:39:23:2c:6d:55:41:3b:26:1f:
a7:b0:a6:31:44:2d:cd:8d:2e:d3:76:b3:4c:6d:df:58:17:be:
9a:39:13:f5:a7:ce:70:11:cd:c0:9a:f5:15:85:d3:74:9a:f9:
bb:6c:c9:32:a7:03:b2:35:18:fd:f5:64:f5:9e:bb:35:78:51:
92:c7:8d:d7:6c:47:5a:22:e1:df:c9:8b:46:dd:d5:de:a2:96:
1c:7a:b0:fe:98:33:b3:17:3c:34:f5:e1:8e:14:93:81:6a:22:
a9:2f:94:c9:11:52:9f:6d:51:e7:18:91:33:9e:00:9d:4a:22:
c1:53:54:18:73:69:95:7d:d8:70:5a:38:72:d0:f5:95:58:58:
da:d2:86:53:78:c9:1d:b9:92:e2:6e:79:a5:98:62:c5:8d:8b:
85:e7:cf:7d:9c:ac:19:90:93:d4:d0:3d:37:11:f6:70:cd:3e:
54:4d:3e:bd:38:d1:96:27:8b:e8:f2:97:13:10:6d:b1:05:c9:
2b:0b:36:ed:90:97:9a:d7:22:5a:5c:d7:43:ea:c1:4a:fe:78:
a7:2a:dc:fe:08:4e:4a:5d:f5:3c:83:ec:0f:bd:d9:14:80:72:
54:a8:0a:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 22 23:51:24 2024 by rpki-client on console-fra.rpki-client.org