Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2DxcMaLZv8TgECFKZS29ZX2TskM.cer
File: 2DxcMaLZv8TgECFKZS29ZX2TskM.cer (raw, json)
Hash identifier: IMku8+e8QE8xjV84bNaMFV8UUDOvy+CgWBZsa4QbHWc=
Subject key identifier: D8:3C:5C:31:A2:D9:BF:C4:E0:10:21:4A:65:2D:BD:65:7D:93:B2:43
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CCA2BDD775CF8B9E4267EE22D22E3C662
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/9f/ba3adf-f655-455c-9e83-cc0fe473c37d/1/2DxcMaLZv8TgECFKZS29ZX2TskM.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/9f/ba3adf-f655-455c-9e83-cc0fe473c37d/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 12:35:21 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 211165
IP: 185.22.229.0/24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 25 Apr 2024 23:00:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:2b:dd:77:5c:f8:b9:e4:26:7e:e2:2d:22:e3:c6:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 12:35:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d83c5c31a2d9bfc4e010214a652dbd657d93b243
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:08:32:3d:31:b1:fd:7c:15:b2:c7:ee:b9:fa:
8c:12:01:f7:65:26:e6:a1:a4:02:97:ac:9b:3b:e5:
b2:f3:97:ff:69:62:99:b5:88:58:db:9c:ce:a9:c7:
ae:87:66:64:20:02:2e:8e:90:10:05:54:77:bd:bb:
50:4a:07:ae:15:d6:98:90:1c:ea:64:27:e9:8c:72:
10:2d:4f:54:88:26:01:69:aa:79:94:69:63:1e:74:
49:b2:b6:cb:33:72:de:cf:f6:51:0b:a9:a8:92:05:
90:1a:57:1e:50:01:4f:49:41:38:ca:12:38:87:cb:
61:15:9f:64:e0:5d:31:e8:a4:71:a7:6a:6c:af:be:
41:64:06:7f:1a:45:63:ed:0f:f5:98:86:41:ce:39:
d1:7c:04:74:cb:c5:0b:a9:65:7b:05:18:8a:1c:f3:
94:ca:70:12:f4:f9:1a:f4:bd:db:4c:e0:09:3d:e0:
f4:4c:72:41:c9:73:4b:c1:90:7c:3f:a2:93:6b:d4:
58:3b:11:6a:2e:f6:fd:32:0a:52:8c:5d:3c:4a:a7:
46:ed:8b:dd:de:25:ff:29:a8:ab:da:7a:4e:a9:d1:
ec:6e:5c:d9:27:90:ac:82:11:c6:98:d6:50:68:f6:
dc:1d:a7:7f:92:92:7e:50:cd:48:0e:1a:3c:94:a6:
f1:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:3C:5C:31:A2:D9:BF:C4:E0:10:21:4A:65:2D:BD:65:7D:93:B2:43
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/ba3adf-f655-455c-9e83-cc0fe473c37d/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/ba3adf-f655-455c-9e83-cc0fe473c37d/1/2DxcMaLZv8TgECFKZS29ZX2TskM.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.22.229.0/24
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
211165
Signature Algorithm: sha256WithRSAEncryption
70:0a:8d:24:f7:20:fe:43:98:91:23:f4:67:77:e2:d4:ab:c4:
95:c8:1c:9d:57:ca:d3:8f:3a:0b:76:51:58:29:10:00:4f:85:
80:d9:ab:cd:ba:a8:af:01:b9:c0:60:02:39:9f:d4:ce:b4:6c:
9a:fe:7f:c5:b3:60:a6:bf:91:16:db:2b:f8:b6:eb:35:56:58:
fb:1a:04:8d:7c:c0:9d:2f:01:b0:c3:d4:7d:04:c2:3f:d3:a7:
ee:4c:8c:69:30:dc:d6:4d:4f:c5:be:5b:28:69:f7:bb:d3:2a:
1e:b3:94:59:b4:80:31:73:3c:29:1c:7e:fb:00:3f:1b:fa:c9:
86:07:02:73:05:f7:46:21:8e:53:8f:0f:3e:27:5b:b0:66:3f:
fa:45:ea:d9:92:c0:35:ef:e7:8a:b1:74:34:df:10:a3:02:eb:
fc:96:fb:2a:8e:f0:ce:9c:6e:cb:fe:fa:5c:8a:bf:1b:0f:b1:
5a:8d:91:b3:21:8d:a8:ff:0c:36:ad:7c:32:e1:12:0a:73:cf:
7d:d2:c2:6d:2c:36:5a:35:2a:de:6b:c9:05:89:39:cb:23:21:
1b:43:61:d0:95:fa:14:09:8f:cb:fb:1d:12:cd:34:89:1c:55:
74:2a:7d:bc:e9:47:5b:0c:b5:02:5c:8e:89:cb:91:68:24:13:
76:e3:da:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 04:02:12 2024 by rpki-client on console-fra.rpki-client.org