Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1IspGxb22WyArX0xKS9WDU-q6_A.cer
File: 1IspGxb22WyArX0xKS9WDU-q6_A.cer (raw, json)
Hash identifier: ARnQkfsipuYOX5GnmRJEwuj8XdZoQ67cQURif6M+V9M=
Subject key identifier: D4:8B:29:1B:16:F6:D9:6C:80:AD:7D:31:29:2F:56:0D:4F:AA:EB:F0
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CCA2959676015EA474965B8D174B87980
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/b8/1083e9-b9dd-4c82-9878-7f8bfac73977/1/1IspGxb22WyArX0xKS9WDU-q6_A.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/b8/1083e9-b9dd-4c82-9878-7f8bfac73977/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 12:32:36 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 51327
IP: 193.104.56.0/24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 26 Apr 2024 13:25:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:29:59:67:60:15:ea:47:49:65:b8:d1:74:b8:79:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 12:32:36 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d48b291b16f6d96c80ad7d31292f560d4faaebf0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:31:9b:e4:28:d0:49:e0:4a:e6:9c:18:92:11:
87:b0:f2:ae:53:97:6a:e4:6d:97:c6:81:30:7c:22:
a2:e1:57:6f:6e:95:18:19:cf:39:d4:a1:8f:c3:15:
9e:e1:32:2c:3b:85:2b:d3:e9:26:2e:c6:97:62:e9:
ff:2e:70:7e:4c:ab:e2:09:e2:ff:d5:36:b7:d9:d7:
2d:92:53:0e:47:c0:5f:86:ac:12:f7:41:53:f2:52:
30:5a:d9:fe:4a:e2:ca:d5:ee:63:1f:b1:71:84:bb:
30:3f:09:98:fd:67:6a:60:5a:4b:22:30:6b:d1:eb:
20:dd:97:1c:d4:be:00:7f:f1:04:7b:06:ab:48:b9:
a4:ee:f5:3d:81:22:d5:ab:2d:52:a9:73:10:ba:a6:
52:a7:c6:bc:07:bd:99:71:66:44:40:9d:3f:cf:d4:
ab:79:89:f6:74:8d:aa:a5:ba:9a:7b:26:fb:73:e0:
21:c1:f6:1b:f2:05:12:c3:5f:b8:f1:d1:cf:50:d3:
36:cc:3a:d5:eb:eb:cf:74:94:36:a9:5b:40:66:b7:
bd:2f:63:92:8e:cd:dc:00:09:32:79:ff:07:59:54:
fc:53:07:07:cb:ea:c9:87:0f:d7:2c:bc:22:7c:d4:
85:a1:9b:37:dc:2c:5d:ae:58:f2:74:f1:5d:1f:79:
47:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:8B:29:1B:16:F6:D9:6C:80:AD:7D:31:29:2F:56:0D:4F:AA:EB:F0
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/1083e9-b9dd-4c82-9878-7f8bfac73977/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/1083e9-b9dd-4c82-9878-7f8bfac73977/1/1IspGxb22WyArX0xKS9WDU-q6_A.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.104.56.0/24
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
51327
Signature Algorithm: sha256WithRSAEncryption
57:53:ce:bc:03:5f:d2:fd:d2:cd:c4:2d:20:65:93:66:6f:5a:
49:3b:16:92:19:2d:1d:ba:39:65:97:a4:f3:3c:4e:a7:03:37:
78:69:90:6f:fa:fc:3d:e4:cc:42:0e:42:b3:ab:18:d0:74:3a:
22:c9:8d:e5:00:41:ad:a0:37:93:14:47:3f:c1:d6:aa:ab:47:
f5:f1:bb:ff:24:ef:f8:1a:c2:a9:7c:58:76:6b:ab:d0:f2:66:
59:f3:a5:17:29:4b:29:9b:07:2b:e9:f3:18:63:d9:d8:a9:d1:
41:91:f8:34:81:df:ae:3d:d6:d4:78:4a:9f:7a:ac:34:a9:c7:
8f:68:77:83:7f:6a:a3:7b:5d:ca:2e:6b:b2:22:a2:48:50:d7:
9f:29:fc:da:c6:ef:9f:13:bf:47:8d:c3:87:56:a0:32:75:1a:
72:72:73:90:33:4e:98:06:16:9a:ed:a9:2f:e3:6c:96:fe:fa:
6f:9f:78:b2:f8:22:83:08:8e:5f:1c:79:02:16:a6:ab:f3:b8:
da:b3:05:df:fe:82:8b:3e:ea:90:c2:0e:74:a8:c8:92:1e:0a:
d2:79:62:94:fc:09:64:fa:06:6b:e0:5a:c3:3c:6d:46:db:2d:
18:b3:d4:a8:2b:b5:9c:58:a6:b5:d8:d1:21:96:a5:4d:f2:7e:
2a:54:17:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 14:21:19 2024 by rpki-client on console-ams.rpki-client.org