Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/GR4nsp9lok2flCFXFc02cYJanq4.cer
File: GR4nsp9lok2flCFXFc02cYJanq4.cer (raw, json)
Hash identifier: +s/mdhpFxX+vhshVfgNjd8dUN0V/+aE3FUwhuaf7F5Q=
Subject key identifier: 19:1E:27:B2:9F:65:A2:4D:9F:94:21:57:15:CD:36:71:82:5A:9E:AE
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC86F62A0F5964D0EDFE2C31D704E600A
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/ef/a89801-c721-41bb-b517-b8c666e6d351/1/GR4nsp9lok2flCFXFc02cYJanq4.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/ef/a89801-c721-41bb-b517-b8c666e6d351/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 04:29:52 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 208917
IP: 185.102.24.0/22
IP: 2a05:3200::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 21 Apr 2024 02:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:62:a0:f5:96:4d:0e:df:e2:c3:1d:70:4e:60:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 04:29:52 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=191e27b29f65a24d9f94215715cd3671825a9eae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:aa:8b:03:3c:4d:c5:be:1f:bd:f8:12:d1:63:
fa:91:38:78:b9:c5:05:f9:a0:9c:01:d5:9e:d3:b8:
c9:44:be:88:26:33:be:1c:7c:8f:66:07:40:32:86:
8a:f8:a1:f7:63:0e:7b:4f:95:d3:a8:ec:60:94:37:
ac:bf:3c:a9:28:bc:c8:8a:cc:48:9f:bc:bb:70:71:
36:5d:a9:f8:a9:10:f0:3f:62:48:f7:a8:b3:ec:04:
b4:9f:92:94:9d:a0:e9:21:bb:5e:6e:a2:6d:6d:ce:
eb:c1:ac:64:56:47:61:a2:e9:5f:e5:f5:b2:88:21:
30:22:fc:b1:31:76:e3:de:26:f2:eb:f3:00:35:63:
86:e6:50:e1:4b:82:7d:51:61:6d:c5:b1:a2:2b:4e:
48:dd:05:c8:c8:a9:86:1b:48:8b:f8:22:94:f6:00:
e7:81:9c:d3:32:b0:6b:2e:65:9b:eb:a1:f6:ce:df:
c5:fd:94:f9:bf:9e:67:ab:80:63:19:2e:db:24:87:
8d:89:1a:a8:fa:4d:2a:62:60:27:db:ba:b2:58:77:
fd:19:51:b1:be:70:33:3b:23:32:a4:ec:6d:fb:db:
38:7c:d1:74:3f:12:8a:a0:53:3e:ea:96:ce:01:ed:
bb:64:e2:6a:05:e7:c6:71:3a:e5:82:d9:a9:68:bc:
fd:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:1E:27:B2:9F:65:A2:4D:9F:94:21:57:15:CD:36:71:82:5A:9E:AE
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/a89801-c721-41bb-b517-b8c666e6d351/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/a89801-c721-41bb-b517-b8c666e6d351/1/GR4nsp9lok2flCFXFc02cYJanq4.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.102.24.0/22
IPv6:
2a05:3200::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
208917
Signature Algorithm: sha256WithRSAEncryption
5a:b7:9c:03:bc:26:3e:9e:46:63:77:42:33:3a:b2:c4:f1:65:
a1:33:e3:61:ad:fd:19:0e:0a:97:17:fb:cb:f1:26:44:fe:ed:
e9:38:87:23:b2:9b:03:1a:75:b5:61:08:34:7a:dc:19:f5:9f:
57:4c:88:d8:a3:9f:9c:11:47:47:a9:1a:c4:a5:6d:f7:7b:e4:
a2:ca:49:cd:fe:43:87:72:2a:c1:15:b1:d7:af:c6:ca:29:75:
19:8c:b7:ab:f7:15:8d:78:a6:87:aa:51:a0:e0:c2:9f:a4:dd:
e7:39:e0:ce:7e:2e:62:52:0c:fd:f3:fd:69:1c:fa:c0:5a:a2:
ed:15:7c:fd:2e:65:a8:99:03:04:75:43:36:4e:61:91:49:a4:
30:6d:0b:da:d3:ce:f2:68:27:83:24:85:3f:0b:c4:6d:4a:c0:
70:0a:94:b1:85:2e:ee:72:0e:6d:6a:d3:51:69:3a:2d:6f:c7:
ce:c4:b4:4f:57:0b:0a:cf:24:45:1c:80:19:d9:2d:29:c6:23:
c4:83:9b:a3:ec:2f:ec:6b:20:56:be:b4:c0:7d:b0:15:fb:f9:
74:07:a7:ac:8c:52:8e:78:37:7c:98:a3:cf:05:c8:a7:7d:8c:
e1:1a:57:94:70:1b:01:9d:5c:06:80:ab:17:20:71:e1:1e:fe:
71:95:d3:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 20 09:58:26 2024 by rpki-client on console-fra.rpki-client.org