Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1NF5zknld2uSyGwmwgsLQ_0KbLY.cer
File: 1NF5zknld2uSyGwmwgsLQ_0KbLY.cer (raw, json)
Hash identifier: WeplEzYRIYGJeHH/hbHXeyhvzHGgpCN88YiRnxv6Kng=
Subject key identifier: D4:D1:79:CE:49:E5:77:6B:92:C8:6C:26:C2:0B:0B:43:FD:0A:6C:B6
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC348E3CB70854093549A57682E179467
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/cb/8b16cc-4db5-4198-924e-4032e190edc3/1/1NF5zknld2uSyGwmwgsLQ_0KbLY.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/cb/8b16cc-4db5-4198-924e-4032e190edc3/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 04:29:43 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 5485
IP: 185.124.76.0/22
IP: 2a06:b0c0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Dec 2024 06:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:48:e3:cb:70:85:40:93:54:9a:57:68:2e:17:94:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 04:29:43 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d4d179ce49e5776b92c86c26c20b0b43fd0a6cb6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:74:1d:fb:db:22:fa:ec:83:49:60:2d:31:71:
95:ee:d9:48:f7:6e:4e:b7:29:d0:4d:b7:64:7d:a8:
8c:b7:e0:b0:34:97:9f:a2:89:7e:a3:e9:d8:8b:6c:
4b:5c:73:61:5a:d5:0f:5d:74:50:e2:97:4f:25:93:
cf:9e:23:e5:d8:b3:07:24:17:bc:14:43:df:bf:36:
d6:0d:a4:8c:19:d8:63:b5:cd:1f:c7:35:5b:78:b2:
73:10:8f:48:82:29:55:38:65:a5:65:f9:51:a4:3e:
10:a8:15:60:9f:5b:40:5d:5d:f1:2b:b4:b3:84:78:
2b:97:9e:e9:b3:2c:55:15:72:53:ea:e1:8c:31:b0:
f7:92:dc:0f:90:f6:57:04:e1:9c:d7:4d:65:c6:c2:
10:3e:81:7a:d3:ad:2e:92:cc:6c:69:b2:bb:85:13:
90:fe:22:13:22:02:e0:2c:93:95:60:c6:55:64:3a:
f9:80:a2:97:6f:e6:69:c2:8c:c1:66:33:8d:fa:d9:
ef:64:3b:5b:8d:61:1d:3f:52:3d:50:14:82:96:f0:
82:68:15:1e:21:4e:d4:d6:19:7a:4b:12:5e:68:57:
3a:68:56:65:9c:bf:aa:bc:4b:b9:3b:85:a2:9e:4b:
19:20:29:11:55:4c:38:5b:49:07:a4:a7:42:74:1a:
f4:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:D1:79:CE:49:E5:77:6B:92:C8:6C:26:C2:0B:0B:43:FD:0A:6C:B6
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/8b16cc-4db5-4198-924e-4032e190edc3/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/8b16cc-4db5-4198-924e-4032e190edc3/1/1NF5zknld2uSyGwmwgsLQ_0KbLY.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.124.76.0/22
IPv6:
2a06:b0c0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
5485
Signature Algorithm: sha256WithRSAEncryption
6a:10:07:6c:0d:6a:31:40:7f:5e:02:fb:2e:50:49:3b:3a:2a:
b1:2c:86:30:82:e8:c2:4e:b3:ac:6c:2a:0d:18:50:2b:da:f3:
2c:a0:30:32:f3:00:bd:3b:8a:dd:22:00:50:a4:5c:d2:5c:5c:
c8:41:eb:90:24:ce:4b:66:71:59:ab:9c:c1:e2:e0:fc:e0:53:
33:24:ea:41:b7:8a:ad:c7:ce:a6:ba:c3:aa:0b:fa:06:81:7d:
74:36:d4:cb:27:56:b4:48:0d:61:65:61:98:30:57:83:3b:6e:
6c:0f:1c:57:0a:ae:e8:c9:1e:d2:07:11:9e:9f:37:99:9b:b1:
61:1f:92:24:07:3a:3b:06:2c:08:04:59:d9:63:a3:b2:cc:13:
d1:1f:47:48:53:32:d6:62:94:6b:62:a6:57:23:a0:35:a4:df:
5b:65:c2:cf:65:6d:ad:e2:84:09:6e:8a:96:5e:12:52:c9:d7:
c9:82:0f:6f:57:28:ff:fc:f2:c2:5d:b6:59:c9:f5:d2:ed:34:
e0:25:05:84:cb:8b:27:fc:ce:e9:2f:08:ea:71:b0:c7:95:f8:
0c:db:dc:d4:a2:07:dc:2a:13:32:82:c6:73:c1:fb:a9:42:d8:
56:f2:6d:13:4d:b6:9a:6c:ec:d9:57:48:1b:47:b7:65:5a:1d:
08:94:ea:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Dec 26 16:49:40 2024 by rpki-client on console-fra.rpki-client.org