Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2Uhvf-TrbZSbgAe05BmM4ch4MC4.cer
File: 2Uhvf-TrbZSbgAe05BmM4ch4MC4.cer (raw, json)
Hash identifier: 2xV+00esDPAFJNtB4+bOiToW9aMhT5KPjZHvwVQGQ2M=
Subject key identifier: D9:48:6F:7F:E4:EB:6D:94:9B:80:07:B4:E4:19:8C:E1:C8:78:30:2E
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC9B9A12E5B47384EFA873D6F98612AD8
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/7e/d042d2-61d2-434d-8e5b-886c416b9051/1/2Uhvf-TrbZSbgAe05BmM4ch4MC4.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/7e/d042d2-61d2-434d-8e5b-886c416b9051/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 10:30:35 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 211592
IP: 185.254.166.0/24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 26 Apr 2024 14:10:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:b9:a1:2e:5b:47:38:4e:fa:87:3d:6f:98:61:2a:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 10:30:35 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d9486f7fe4eb6d949b8007b4e4198ce1c878302e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:4d:94:57:4b:17:19:cf:b3:fc:58:2c:dd:a0:
7c:8a:e7:3e:d9:6f:9f:d4:8a:58:bc:ba:35:3f:a1:
f2:0f:f8:9f:24:21:88:bb:21:d7:42:04:db:8e:e5:
6f:14:e5:2c:6b:42:47:b9:57:a8:77:79:90:d3:6e:
98:b4:d8:04:2f:d4:8a:2a:96:ff:77:a2:55:25:d4:
78:2c:b2:0f:df:23:f4:71:2d:6e:e9:dc:f7:39:32:
27:a9:88:3d:4c:b3:e0:eb:e5:87:b9:1d:9b:99:7d:
36:b9:6d:b9:00:d7:47:68:a9:c3:1d:f5:4c:61:02:
7a:d9:2b:1c:b7:2f:2e:7f:53:89:84:9d:0c:86:4d:
ff:d6:29:18:32:2c:23:c0:99:e4:48:ae:81:3b:f6:
a0:45:3c:ac:34:4c:86:f8:ac:b1:5d:b6:f1:cd:a1:
2e:38:31:7f:07:49:39:ee:8b:dc:44:f5:a2:f3:93:
53:21:b8:c3:01:77:5f:0a:19:a3:ea:e4:f7:93:8c:
a3:8c:e1:a3:04:da:32:49:dd:ef:38:44:cf:f6:8d:
80:2c:5c:29:aa:89:95:b1:14:25:bf:88:b7:52:cb:
7f:99:31:be:7c:13:67:51:11:db:e1:a5:1d:c3:28:
b6:ce:2d:ff:f2:5a:da:5f:93:a9:c8:82:6f:4b:c3:
3f:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:48:6F:7F:E4:EB:6D:94:9B:80:07:B4:E4:19:8C:E1:C8:78:30:2E
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/d042d2-61d2-434d-8e5b-886c416b9051/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/d042d2-61d2-434d-8e5b-886c416b9051/1/2Uhvf-TrbZSbgAe05BmM4ch4MC4.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.254.166.0/24
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
211592
Signature Algorithm: sha256WithRSAEncryption
6c:cf:ec:e8:5b:e6:70:1e:32:ac:73:55:69:35:f3:ea:77:b6:
95:ef:9e:c7:ae:3e:ce:33:6e:d8:86:06:ff:8f:cd:3d:08:4f:
5a:a8:4c:3c:e0:79:8d:c2:b4:e3:76:66:5b:c3:e3:e9:1a:af:
5d:c2:6e:79:8e:0a:77:5b:8f:5c:d6:91:c3:b1:83:df:f8:e7:
e1:d6:d1:d4:c1:ab:71:34:0b:e8:40:37:9a:9d:69:89:0f:6e:
16:eb:49:1e:8c:11:c6:12:f1:d2:3c:53:64:a0:dd:53:01:ba:
02:02:0c:d3:55:7b:51:87:55:b9:4d:7b:e7:2b:2d:f5:7b:a0:
43:f2:14:bd:40:b7:05:c4:87:70:f3:11:95:fb:ef:b7:93:53:
ec:ea:95:a1:88:cb:a1:36:08:0a:4d:49:81:53:02:b8:73:42:
ea:ff:a7:bf:56:db:f1:15:98:96:ec:e1:3c:86:be:c4:4a:d3:
21:f7:1f:08:9c:e0:4f:f2:c4:3f:21:d0:4d:d0:67:29:73:97:
aa:71:9c:de:4c:87:4d:50:8f:25:e5:15:81:5e:89:89:6b:32:
55:26:6b:92:cf:c0:fe:c3:76:b1:35:17:5d:f2:80:61:f7:92:
5b:29:45:0a:96:39:9d:46:07:3c:5a:f3:74:e5:e1:5f:cd:56:
af:c8:d9:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 22:55:42 2024 by rpki-client on console-fra.rpki-client.org