Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67AW9G3i21zDEWWZ7occdsLINMY.cer
File: 67AW9G3i21zDEWWZ7occdsLINMY.cer (raw, json)
Hash identifier: J3AU8s528rCIG8kB0enr6uPeLz7Pvdk9ChivwEiFvIA=
Subject key identifier: EB:B0:16:F4:6D:E2:DB:5C:C3:11:65:99:EE:87:1C:76:C2:C8:34:C6
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC6B943C182F5A06552F64AFDC9AE3EF9
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/c0/3d013e-9e58-465e-87bb-072fca5ffebe/1/67AW9G3i21zDEWWZ7occdsLINMY.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/c0/3d013e-9e58-465e-87bb-072fca5ffebe/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 20:31:19 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 209102
IP: 2.56.128.0/22
IP: 2a09:c3c0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 23 May 2024 14:15:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b9:43:c1:82:f5:a0:65:52:f6:4a:fd:c9:ae:3e:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 20:31:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ebb016f46de2db5cc3116599ee871c76c2c834c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:02:fe:40:45:3c:d7:0e:20:f0:85:b8:f0:24:
06:0f:72:0a:3f:a2:fc:6a:f9:3f:db:10:5c:dd:9e:
80:a1:67:77:27:88:6a:4f:83:d2:d9:27:be:51:17:
5b:05:2a:69:14:c3:c8:9c:25:d8:e1:26:b5:c3:db:
22:23:4f:cc:9d:2b:e7:e5:69:7d:eb:04:85:3f:8a:
de:19:bc:d9:f7:83:2f:e3:f6:80:15:4f:af:8a:f9:
ac:b0:27:68:9c:98:bb:bf:ec:ce:2c:3f:d8:ef:2c:
d7:e0:3a:24:2e:d0:e7:be:5a:76:2a:b9:2e:63:d8:
70:49:30:15:c8:b6:e8:78:7f:c6:65:14:47:96:b4:
0b:f9:78:c0:6c:70:be:97:44:19:ed:d0:92:e3:06:
6e:ba:8a:7f:ff:b9:d8:aa:c6:f3:cb:8a:77:f9:16:
ec:fa:20:2f:4d:d7:ff:f7:0a:eb:f0:3b:a0:e8:85:
46:3a:58:7e:7b:9f:59:69:ae:5c:e7:e5:97:88:63:
b6:a1:b7:7e:34:c1:e8:8c:8d:0b:ba:3a:2b:b9:24:
1b:11:47:21:c4:38:35:3d:11:2a:c5:e6:11:7c:ff:
0e:03:9d:10:ad:51:b4:8b:a4:a8:3a:12:9b:dc:c3:
15:40:10:5a:8d:b2:d5:b8:9b:54:b5:9c:38:ea:dd:
bf:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:B0:16:F4:6D:E2:DB:5C:C3:11:65:99:EE:87:1C:76:C2:C8:34:C6
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/3d013e-9e58-465e-87bb-072fca5ffebe/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/3d013e-9e58-465e-87bb-072fca5ffebe/1/67AW9G3i21zDEWWZ7occdsLINMY.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.128.0/22
IPv6:
2a09:c3c0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
209102
Signature Algorithm: sha256WithRSAEncryption
43:62:82:84:67:39:90:0b:5d:b7:89:21:8b:6f:0b:8e:5a:9c:
0d:a1:75:8d:94:00:de:b3:f1:65:02:96:66:2f:e0:de:1b:24:
d4:0a:4a:85:6e:2c:96:bc:a6:cf:91:48:25:85:c8:19:27:f9:
a3:9d:0c:2e:45:7b:35:4b:88:86:dc:68:c5:36:ab:05:1c:e0:
03:c1:de:18:f0:c4:68:8d:4d:f3:41:c5:d5:61:45:4e:af:ad:
7d:39:2c:8d:d0:c9:d9:de:f7:7e:37:f5:a5:f0:5d:63:3c:af:
e1:88:49:e7:e8:e0:8a:b5:3a:96:2f:be:6f:5e:12:c8:e7:43:
93:99:0c:3e:0c:14:c8:09:76:af:00:c6:0f:01:59:c1:37:e4:
1e:fd:d5:f0:df:10:06:24:24:1f:b9:cb:e9:f0:d3:6a:09:7e:
0c:62:92:7c:af:d7:f7:af:e6:f7:2f:8e:6b:c3:ab:8a:f1:8c:
0e:c0:21:dc:07:89:6b:b0:ed:8c:69:9c:9f:6c:5e:fe:fc:11:
c5:58:16:55:cf:e8:79:ca:9e:7d:62:68:a3:62:21:88:cf:4c:
50:f3:01:58:dc:d9:bb:80:c5:1c:61:d9:62:19:f9:99:e8:9a:
62:d1:f9:c1:d9:0f:8d:d9:fc:3e:96:fb:1b:1c:f8:3a:2d:42:
8e:70:c7:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 22 23:58:00 2024 by rpki-client on console-ams.rpki-client.org