Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/Rvbuv4C9ZN_1qxASuQpVaGWoSNs.cer
File: Rvbuv4C9ZN_1qxASuQpVaGWoSNs.cer (raw, json)
Hash identifier: MTmL/LZ99lB9rkUSJR5goMMblKZZPVhd3zHrN1O3ZZ4=
Subject key identifier: 46:F6:EE:BF:80:BD:64:DF:F5:AB:10:12:B9:0A:55:68:65:A8:48:DB
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018F573D44B1F5D3BDA90CAA41E2C519F072
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/44/578faa-0a03-46ac-bb5c-9bdbb626b595/1/Rvbuv4C9ZN_1qxASuQpVaGWoSNs.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/44/578faa-0a03-46ac-bb5c-9bdbb626b595/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 08 May 2024 08:06:24 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 214954
IP: 185.71.137.0/24
IP: 185.152.164.0/24
IP: 185.246.68.0/22
IP: 195.18.25.0/24
IP: 2a10:6fc0::/29
IP: 2a11:ca00::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 23 May 2024 22:35:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:57:3d:44:b1:f5:d3:bd:a9:0c:aa:41:e2:c5:19:f0:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: May 8 08:06:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=46f6eebf80bd64dff5ab1012b90a556865a848db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:3e:a1:07:a2:d7:aa:ee:e8:2a:13:fd:26:9b:
26:30:8d:c9:df:55:06:76:d9:5e:46:e6:28:f1:5e:
5d:13:fb:9c:39:62:77:ac:31:e2:83:14:70:62:bd:
23:fc:51:c9:10:8b:59:9b:75:c3:97:7d:ff:8a:22:
3b:80:db:81:2e:7d:4b:0d:72:ea:07:24:de:e3:3d:
ba:79:c6:92:59:ec:0e:ef:b5:a8:15:e6:11:da:01:
3d:48:d5:40:9a:d5:78:33:8f:b2:12:e4:cf:cb:21:
a6:19:d1:2d:f2:77:4c:eb:27:c2:da:89:96:35:bd:
36:d8:21:13:a6:00:ac:3a:be:77:c0:ef:05:84:71:
a1:f8:57:5a:8f:48:e4:bf:a9:0e:b9:8d:d3:ff:9f:
ed:62:88:f7:95:a8:9e:75:86:26:8d:ee:cd:80:3b:
03:70:67:50:47:df:b7:15:2c:0a:d9:66:2e:b2:05:
3b:a5:43:2f:85:13:ae:8d:89:66:fc:54:44:84:58:
e4:00:8b:ca:b1:0c:0c:e4:6e:e7:41:5a:0d:39:38:
70:45:83:c9:0d:3b:8c:97:db:95:0b:43:57:58:7b:
9e:00:0d:f3:ca:64:fd:69:63:b9:4f:c5:e7:7b:51:
75:0a:a7:c2:bf:a5:7f:83:15:71:87:1f:2a:cb:a3:
7d:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:F6:EE:BF:80:BD:64:DF:F5:AB:10:12:B9:0A:55:68:65:A8:48:DB
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/578faa-0a03-46ac-bb5c-9bdbb626b595/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/578faa-0a03-46ac-bb5c-9bdbb626b595/1/Rvbuv4C9ZN_1qxASuQpVaGWoSNs.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.71.137.0/24
185.152.164.0/24
185.246.68.0/22
195.18.25.0/24
IPv6:
2a10:6fc0::/29
2a11:ca00::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
214954
Signature Algorithm: sha256WithRSAEncryption
09:56:13:05:eb:7f:ea:67:2c:2d:52:94:22:3b:be:c7:4d:58:
4e:74:da:9b:0d:0e:92:eb:7a:7d:dd:2a:e0:1d:9f:87:6a:37:
9b:8c:83:37:87:47:86:bf:01:6b:40:7b:22:64:dc:61:78:15:
c3:59:d2:ab:d3:63:9b:e2:9b:74:f5:42:b5:ce:67:f6:86:a6:
37:e5:2e:24:f1:6e:55:51:c0:81:64:e7:e9:8a:95:91:39:c2:
1e:36:13:79:ba:cc:6c:4d:e1:52:0b:11:01:de:70:12:9c:7e:
43:51:d3:3b:64:36:bf:f7:6d:b3:f5:84:f1:a9:b5:71:dc:54:
91:c0:da:b9:b8:ad:09:00:71:12:be:71:26:1c:9f:4c:6e:09:
40:f7:ee:bd:91:8f:34:3e:fb:6d:a2:4c:7d:a0:f4:19:66:a1:
6b:a5:97:ba:9a:e2:bf:c9:ef:75:b1:e8:94:c6:cf:9a:49:5f:
19:ce:12:84:fa:a0:fb:c1:98:fb:50:b2:20:9e:c6:2c:4b:ac:
14:2a:c0:61:57:84:60:17:f8:14:54:89:52:69:e5:de:d1:95:
85:f7:21:b0:53:5c:60:55:29:d6:5e:44:86:1d:9c:02:6f:e3:
ef:c8:8e:a7:6a:39:a5:ab:8d:cf:a4:1f:b7:24:d1:a4:db:a5:
71:f0:e2:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 23 00:22:02 2024 by rpki-client on console-fra.rpki-client.org