Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0vcAvspCZT5kq0NaLwpPPZpQFLA.cer
File: 0vcAvspCZT5kq0NaLwpPPZpQFLA.cer (raw, json)
Hash identifier: IADplGwSi5gi11RhD356UQ78jMf7PKdHS5sbJbhSgjI=
Subject key identifier: D2:F7:00:BE:CA:42:65:3E:64:AB:43:5A:2F:0A:4F:3D:9A:50:14:B0
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01902FA0CA1EE0A1B6DCBB7C40895FDCBB3B
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/91/07512a-12c8-4895-b32f-75c7ba1c073f/1/0vcAvspCZT5kq0NaLwpPPZpQFLA.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/91/07512a-12c8-4895-b32f-75c7ba1c073f/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 19 Jun 2024 08:33:05 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 208004
IP: 45.86.236.0/22
IP: 91.237.34.0/23
IP: 176.111.192.0 -- 176.111.205.255
IP: 185.195.208.0/22
IP: 193.57.98.0/23
IP: 193.57.142.0/23
IP: 2a0e:ea80::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:2f:a0:ca:1e:e0:a1:b6:dc:bb:7c:40:89:5f:dc:bb:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jun 19 08:33:05 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d2f700beca42653e64ab435a2f0a4f3d9a5014b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:e5:18:9f:af:b9:23:6a:bd:0f:cf:6e:50:cb:
a6:8f:56:97:f8:0d:87:c8:72:af:e4:4c:fd:99:b7:
02:bd:b8:65:d1:f8:07:26:6f:d9:7a:0a:72:3d:8c:
ad:6b:95:d4:67:f1:80:ce:23:8f:fe:1a:65:cd:0b:
0c:cb:d3:da:cd:32:21:12:76:e9:46:4d:26:a2:95:
ee:90:cc:62:4b:c0:30:a7:1a:b8:d1:ab:7e:da:80:
ae:7f:8f:94:e7:e1:92:5e:43:05:38:4e:2a:10:2b:
04:19:96:c5:31:9c:b9:0a:d4:5c:34:de:be:4e:4e:
46:66:58:ab:bd:82:9c:93:0e:f4:ac:3e:e9:1f:af:
a7:63:d6:d2:a5:4b:48:c6:9d:fe:b9:45:25:2a:d3:
51:76:16:19:81:b8:37:85:4c:79:12:88:4f:f2:43:
aa:d1:a1:a3:6f:dc:3d:ed:56:da:d8:8d:49:a9:59:
ae:87:ba:1c:77:95:85:2a:43:69:a2:b2:f3:aa:fc:
f6:cf:97:22:2c:c0:e3:40:93:0d:28:0c:1d:99:12:
90:bc:a8:a6:f4:3e:91:6a:ce:56:1f:10:b4:21:76:
53:f7:f6:20:bd:b7:0d:08:10:76:e9:a6:e6:06:8f:
ba:b5:20:e4:75:ab:11:33:e1:a6:06:a7:41:3c:0b:
47:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:F7:00:BE:CA:42:65:3E:64:AB:43:5A:2F:0A:4F:3D:9A:50:14:B0
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/07512a-12c8-4895-b32f-75c7ba1c073f/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/07512a-12c8-4895-b32f-75c7ba1c073f/1/0vcAvspCZT5kq0NaLwpPPZpQFLA.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.86.236.0/22
91.237.34.0/23
176.111.192.0-176.111.205.255
185.195.208.0/22
193.57.98.0/23
193.57.142.0/23
IPv6:
2a0e:ea80::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
208004
Signature Algorithm: sha256WithRSAEncryption
53:83:79:fb:75:ad:59:7f:a5:ff:58:45:72:55:1f:48:87:59:
02:14:32:dd:76:35:1f:e9:28:d4:0c:6f:54:b5:64:f8:38:83:
a7:27:1d:e7:9e:ba:d5:91:b4:44:ce:9a:f1:89:b3:0a:34:89:
54:51:42:e2:0f:50:65:2b:20:c3:7b:b4:bb:37:a0:6e:ce:85:
db:56:71:60:49:36:26:4b:f1:f1:74:ea:2c:e8:91:31:a8:b9:
09:2f:fa:bf:f1:c2:31:d4:02:7c:13:15:35:1d:78:4c:11:29:
e6:ad:5b:fa:dd:2a:93:fd:4d:27:d6:e4:b0:2f:3c:8d:0b:28:
32:2c:a6:10:20:5e:fd:27:72:b6:16:cb:e9:e1:1b:18:29:8f:
a5:f1:04:ff:f9:98:84:15:8d:19:be:a2:dc:9e:76:a7:91:65:
88:0c:63:69:ab:22:ad:53:48:db:f2:24:2d:42:51:1b:05:12:
ad:99:db:02:64:f4:b6:b9:e8:ee:7a:98:d4:ec:cc:72:d3:32:
00:13:dc:c7:50:b4:2c:3e:af:13:38:64:77:77:4a:27:7d:6d:
a9:0e:62:fd:d5:31:34:33:18:a4:16:40:9d:00:27:8d:73:05:
a0:98:7b:11:a1:07:c7:20:b8:e8:81:57:d2:c7:5e:ec:25:39:
5e:27:62:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:36:12 2024 by rpki-client on console-fra.rpki-client.org