Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6HJEiXx5F7eR4QDUaAM5xKNZP8M.cer
File: 6HJEiXx5F7eR4QDUaAM5xKNZP8M.cer (raw, json)
Hash identifier: 4zTFt5OrAoQt2cOKlTQXSOT356BzJ4I2kcQIaSmJ3Wg=
Subject key identifier: E8:72:44:89:7C:79:17:B7:91:E1:00:D4:68:03:39:C4:A3:59:3F:C3
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC8010836FE9E1FD148C6F680C5973C3A
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/f6/b4597f-ee1c-462b-ab84-ebe59e274840/1/6HJEiXx5F7eR4QDUaAM5xKNZP8M.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/f6/b4597f-ee1c-462b-ab84-ebe59e274840/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 02:29:20 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 197093
IP: 91.223.55.0/24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 23 May 2024 22:35:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:08:36:fe:9e:1f:d1:48:c6:f6:80:c5:97:3c:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 02:29:20 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e87244897c7917b791e100d4680339c4a3593fc3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:95:44:3c:8d:1d:6c:3d:77:17:52:77:24:e5:
a5:0c:8a:87:2a:25:25:19:f8:0c:73:1a:32:1c:4c:
bb:b1:dc:6e:5d:90:ea:91:69:4c:22:75:e0:0a:ad:
b4:6f:62:5a:8c:7d:b2:c8:74:ae:f6:90:85:07:33:
d5:55:af:62:e8:a1:eb:78:68:18:29:a7:d8:1d:65:
d1:b2:35:ee:f7:ec:7b:88:b4:96:f2:ba:c5:dd:23:
21:fb:de:23:0b:0f:b3:50:fe:e9:39:a2:4b:ea:b5:
85:6c:0f:11:56:b4:ed:4b:6d:8a:9f:13:5f:c8:63:
aa:98:69:7d:ee:24:e0:93:48:6e:79:a3:2c:46:5f:
85:d5:4c:61:31:48:85:44:99:60:8f:7f:c8:e7:de:
50:74:f6:47:3a:5e:92:e9:6e:56:d7:14:e5:33:6b:
51:ba:72:12:cb:0d:ea:10:ae:86:a4:42:bf:83:dc:
b7:55:92:b1:f4:43:ea:6d:2e:3c:2c:5f:13:6b:94:
30:0c:27:d3:05:32:3c:d6:2b:d3:a1:18:9c:64:f3:
0e:80:be:df:6d:b4:52:35:7f:1a:fe:fb:b7:ce:11:
8e:1c:58:da:af:3d:70:ec:3a:84:3c:83:1d:49:e6:
f6:29:e2:dc:28:3c:d3:2a:f3:ae:d1:19:a4:42:3b:
65:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:72:44:89:7C:79:17:B7:91:E1:00:D4:68:03:39:C4:A3:59:3F:C3
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/b4597f-ee1c-462b-ab84-ebe59e274840/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/b4597f-ee1c-462b-ab84-ebe59e274840/1/6HJEiXx5F7eR4QDUaAM5xKNZP8M.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.223.55.0/24
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
197093
Signature Algorithm: sha256WithRSAEncryption
27:45:8d:11:67:81:58:9f:72:af:e8:98:b9:47:05:3c:ef:70:
73:d1:33:bd:2c:10:a8:94:7d:2f:66:a8:8e:45:cf:42:60:32:
d8:ba:fb:c5:3c:8a:e0:5f:0b:0e:71:f0:f4:72:79:6d:ab:6b:
96:77:9c:76:3b:2b:60:bf:2a:10:eb:bd:9a:b5:33:1e:82:41:
ea:35:3e:86:3d:a5:7c:27:22:a9:e8:b8:ea:61:a6:67:fb:b2:
b1:f5:16:a8:83:d1:d5:5c:be:8f:51:9b:22:3e:a3:77:60:4c:
aa:42:1e:f0:57:bc:86:41:19:33:0b:98:f8:79:a3:e5:23:4c:
5c:93:bc:de:91:f5:c8:ea:f2:f8:22:d2:c3:26:b1:ad:a4:50:
4d:47:91:ef:89:71:79:47:a0:5c:69:9e:8c:04:b8:ca:33:f8:
c9:1d:df:48:61:82:c0:07:6e:e3:e9:c1:36:00:51:c0:9c:41:
6b:53:30:a7:84:34:9c:e8:f0:aa:9d:63:05:b0:2f:b1:4a:03:
a2:b4:f8:a2:c7:d6:be:2b:68:8f:46:46:d6:ed:f4:44:a3:79:
ec:b1:04:71:7c:6f:1f:11:78:1a:ea:ae:b5:77:d6:85:1a:86:
c1:b9:f0:c4:d2:47:81:98:77:f4:f5:c0:f7:b2:cd:6f:68:9b:
a6:ef:8c:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 23 00:00:43 2024 by rpki-client on console-fra.rpki-client.org