Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/UPiOBciYeWyC_wFHVogW6TNCDhg.cer
File: UPiOBciYeWyC_wFHVogW6TNCDhg.cer (raw, json)
Hash identifier: n41Ihv0CU298FiEPIv+HsiH+TTYhyDeh39tE9f8u8UA=
Subject key identifier: 50:F8:8E:05:C8:98:79:6C:82:FF:01:47:56:88:16:E9:33:42:0E:18
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC7936DAB7183D48D980A25D813CFE641
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/7c/f7c11f-4e9e-436d-a3df-fedbd4c66a0e/1/UPiOBciYeWyC_wFHVogW6TNCDhg.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/7c/f7c11f-4e9e-436d-a3df-fedbd4c66a0e/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 00:29:37 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 44316
IP: 178.18.16.0/20
IP: 185.211.152.0/22
IP: 194.60.71.0/24
IP: 194.110.214.0/24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 02 May 2024 14:46:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:93:6d:ab:71:83:d4:8d:98:0a:25:d8:13:cf:e6:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 00:29:37 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=50f88e05c898796c82ff0147568816e933420e18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:a7:d0:02:32:43:cd:c9:f9:6d:0a:8e:0c:6e:
87:0e:ba:02:ee:25:d1:b9:94:6e:4c:de:ce:0e:c4:
2a:88:ed:d8:4a:0b:cb:c6:16:24:43:fb:28:c0:62:
33:15:e8:36:61:97:c1:5b:87:12:5b:a3:18:25:56:
d3:05:c5:f8:8f:e1:82:9e:64:7c:ca:e1:64:73:2d:
5b:86:b7:71:1e:ae:df:4d:40:b9:3c:c2:da:a8:9a:
4c:87:4a:f1:fa:4f:a3:25:41:b7:9b:58:69:35:92:
b7:c8:96:33:81:60:65:be:ea:04:b6:e2:2a:d7:c0:
ad:62:8c:0a:31:a9:39:84:83:a3:ba:64:cc:b9:b1:
80:5d:07:8d:cd:fa:cc:a7:94:1e:49:d0:d2:e8:12:
c2:1e:37:cd:ce:24:83:c8:ea:64:a3:04:5a:13:4f:
96:ed:db:67:90:8e:0d:d1:d2:15:0b:b5:b5:cc:06:
e7:7a:47:17:7b:dd:d7:ca:00:88:76:d8:0b:85:c8:
8b:78:23:37:63:93:79:88:83:e4:72:c7:2a:d9:64:
f4:b3:27:65:62:d1:ae:ff:24:9a:cc:93:b0:20:cc:
60:de:95:a8:56:25:e1:24:81:4a:7e:54:18:cc:0f:
6c:e4:70:7f:3a:dd:96:fb:e5:d3:44:fd:0a:63:d5:
09:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:F8:8E:05:C8:98:79:6C:82:FF:01:47:56:88:16:E9:33:42:0E:18
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/f7c11f-4e9e-436d-a3df-fedbd4c66a0e/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/f7c11f-4e9e-436d-a3df-fedbd4c66a0e/1/UPiOBciYeWyC_wFHVogW6TNCDhg.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.18.16.0/20
185.211.152.0/22
194.60.71.0/24
194.110.214.0/24
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
44316
Signature Algorithm: sha256WithRSAEncryption
40:a9:80:d2:a0:fa:f1:86:c0:f6:9d:06:a1:dd:10:43:cd:0e:
af:e6:b5:e2:eb:7b:3f:fa:6f:4b:39:30:09:d8:60:6d:ec:02:
f0:90:25:6f:3c:15:a7:6e:47:ee:30:c3:97:02:28:3a:f0:bc:
0f:f5:52:b0:fc:2c:6f:c7:a7:9a:94:be:90:a6:d8:d6:ed:f3:
e8:93:d5:64:13:28:b4:29:ab:41:0d:a6:d4:b2:ac:94:e7:7e:
50:3d:25:69:00:5f:0a:b2:5a:43:e2:50:75:12:1b:a5:1c:8a:
54:2d:24:db:14:9d:cc:66:1a:9f:11:20:e8:44:57:a8:f7:37:
79:61:47:d2:bd:30:39:a6:ad:7e:ac:68:4a:a2:e5:f5:b0:8b:
2f:19:00:b0:46:57:30:d0:d8:63:61:a5:07:16:5d:ac:03:1f:
5d:00:17:4f:fa:f6:a9:c0:03:55:ff:66:da:68:e0:e3:31:fd:
db:69:db:d7:08:98:07:e7:82:2e:89:b4:49:d8:3d:51:9d:e3:
15:a9:10:7a:3d:65:ff:52:df:a8:d6:3f:ef:6f:11:b6:06:c6:
e9:05:dc:8e:58:c1:25:01:6b:49:b5:ec:be:d2:fe:32:d6:8b:
4c:c8:c8:98:82:f1:8f:a8:a8:f5:01:88:7a:97:72:75:a9:b5:
8b:e0:84:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 1 20:36:15 2024 by rpki-client on console-fra.rpki-client.org