Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38Cx3w570ABF6-EDAsMg_726BxY.cer
File: 38Cx3w570ABF6-EDAsMg_726BxY.cer (raw, json)
Hash identifier: xmFCxu89GOcHOtPuJNeug9A4FskVnjR1rhmjJfx8wZE=
Subject key identifier: DF:C0:B1:DF:0E:7B:D0:00:45:EB:E1:03:02:C3:20:FF:BD:BA:07:16
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC8010810CEDE000EEA34E9D4F4B687ED
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/80/a3c775-39c5-4bbb-b33e-d929e2b76d68/1/38Cx3w570ABF6-EDAsMg_726BxY.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/80/a3c775-39c5-4bbb-b33e-d929e2b76d68/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 02:29:20 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 62290
IP: 185.24.116.0/22
IP: 185.173.212.0/22
IP: 212.102.109.0/24
IP: 2a00:72a0::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 26 Apr 2024 14:10:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:08:10:ce:de:00:0e:ea:34:e9:d4:f4:b6:87:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 02:29:20 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=dfc0b1df0e7bd00045ebe10302c320ffbdba0716
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:0d:4b:b5:0c:58:d1:27:64:a4:4c:55:88:b3:
09:cf:7c:6e:09:d9:eb:f4:b3:8a:92:7e:fd:35:a8:
b0:4c:97:4f:cd:33:3b:d2:95:4e:c6:c7:71:09:9a:
e7:f7:63:60:6a:33:d3:da:85:28:6c:f1:69:e0:c5:
c2:02:73:ef:83:21:63:85:fd:52:80:77:81:f6:95:
77:ca:dc:6b:69:0a:eb:ba:da:9d:de:bd:ad:a8:3a:
61:66:17:85:76:80:d8:62:44:7f:d9:0b:33:7d:30:
e6:1b:10:7c:8a:9c:5c:e8:71:16:b1:af:ad:02:66:
ab:f7:44:19:a3:f8:9b:fe:2a:fe:f2:c3:eb:ce:bc:
cf:e7:8f:ca:7e:19:bb:1b:f4:29:24:5e:78:67:b7:
70:17:d9:36:e2:b2:93:43:17:2f:44:1f:10:43:9a:
e7:5c:7a:0c:a4:72:13:74:39:c1:17:54:de:c8:68:
3f:fb:c1:d0:9a:1f:ee:d8:b4:2f:36:e1:a6:6f:cc:
d6:64:0f:18:76:fa:db:22:8a:24:23:c5:be:c5:c9:
1e:82:b8:ff:f7:89:08:76:cd:32:ab:63:8a:d5:29:
6b:db:19:c9:96:7f:21:f9:a1:a5:f3:1d:b8:42:23:
16:ac:2e:e7:ce:ba:64:15:43:5a:4d:d3:60:03:3b:
54:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:C0:B1:DF:0E:7B:D0:00:45:EB:E1:03:02:C3:20:FF:BD:BA:07:16
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/a3c775-39c5-4bbb-b33e-d929e2b76d68/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/a3c775-39c5-4bbb-b33e-d929e2b76d68/1/38Cx3w570ABF6-EDAsMg_726BxY.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.24.116.0/22
185.173.212.0/22
212.102.109.0/24
IPv6:
2a00:72a0::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
62290
Signature Algorithm: sha256WithRSAEncryption
61:43:a3:c4:7d:00:d0:c6:49:ab:80:c2:49:72:10:83:a8:94:
f7:95:4a:dd:92:cd:ca:8f:fa:4e:99:2a:51:6c:3c:36:c4:15:
fb:df:6f:10:86:16:0c:a1:05:ec:4b:8e:74:d7:c2:2c:13:4a:
da:68:e6:b7:60:4c:c3:60:08:14:87:1d:1d:29:af:29:36:82:
b5:d9:bc:50:2b:d3:ea:97:ce:c4:19:bc:e6:04:79:a6:ee:ad:
43:c4:c5:9f:73:0a:69:cc:63:68:95:82:7b:7e:0d:2b:dd:8c:
81:bb:d5:5d:fb:f5:39:9a:08:a9:49:4b:0a:4a:79:6e:1a:53:
9a:82:ed:b9:e1:d8:7f:b9:11:f8:d5:4b:a2:7d:f0:83:7f:5b:
a6:71:0b:87:d7:47:b5:34:03:6e:6e:67:40:28:28:98:d9:a9:
57:47:b9:80:a3:6e:4d:9b:5f:65:bf:c4:1a:87:88:70:1a:e3:
fc:a5:99:77:97:a0:5b:56:aa:1d:3b:17:49:08:8e:18:8d:3e:
fe:03:f4:55:8e:cd:5b:b7:11:d6:04:7e:cf:fa:17:96:66:78:
48:8e:13:24:c4:5c:e8:db:dc:f6:df:c2:39:76:6e:3c:41:17:
bb:24:49:52:8e:3e:23:cc:83:28:02:88:72:0e:57:25:d1:a6:
0c:ca:32:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 22:58:22 2024 by rpki-client on console-fra.rpki-client.org