Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3oBMnIpDOX0Wd5qpNPcGc4j8fXw.cer
File: 3oBMnIpDOX0Wd5qpNPcGc4j8fXw.cer (raw, json)
Hash identifier: sdoRkBL5YFMANnuQR2jVqbA4i1DNAo1tKazEDU/M8xQ=
Subject key identifier: DE:80:4C:9C:8A:43:39:7D:16:77:9A:A9:34:F7:06:73:88:FC:7D:7C
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC56E91F6020FCBC6E9776F698214990B
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/14/96254c-fc0e-4f58-95e2-af4e5241bf20/1/3oBMnIpDOX0Wd5qpNPcGc4j8fXw.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/14/96254c-fc0e-4f58-95e2-af4e5241bf20/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 14:30:07 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 205747
IP: 91.212.77.0/24
IP: 185.188.196.0/22
IP: 192.175.38.0/23
IP: 2a0b:d080::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 26 Apr 2024 14:10:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:91:f6:02:0f:cb:c6:e9:77:6f:69:82:14:99:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 14:30:07 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=de804c9c8a43397d16779aa934f7067388fc7d7c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:d6:8a:d5:a3:44:49:d3:03:e1:71:39:39:59:
0c:e2:6d:6a:82:45:ec:45:ea:93:ed:cf:1c:9f:02:
5f:b5:bc:35:2e:7b:9a:b2:4d:96:6b:82:b7:5f:19:
b9:1d:fb:a0:91:13:d5:33:a6:12:22:29:73:66:53:
77:ff:80:7d:00:ff:e8:31:fc:f8:ca:db:56:fe:fa:
26:81:00:2b:18:eb:5c:7f:bd:ac:87:9c:3c:72:33:
8e:f3:b2:16:f2:e1:ab:68:df:e5:d0:ad:61:2a:1c:
91:97:dd:13:d2:e7:4e:50:25:bc:8d:d1:e7:2e:48:
b6:36:72:2d:60:ab:f9:53:00:ce:25:6b:13:2a:fd:
7e:cf:de:1a:cb:f7:55:99:05:83:92:71:b6:22:c0:
43:09:26:c4:f6:c1:24:4a:fd:61:2f:50:1b:ed:e4:
c1:f8:9d:e5:ca:27:a8:51:ad:ba:1e:28:cd:f3:8e:
3b:f2:c3:f2:cf:9e:c4:1b:4c:47:95:51:de:5d:19:
12:01:4e:f3:a2:78:79:13:98:d2:ac:08:2d:5b:3b:
83:5c:0b:33:13:64:f1:5d:67:24:06:97:c4:e0:82:
09:9c:61:f2:1b:9d:4b:ba:4f:a8:8e:3e:a7:d2:ed:
55:91:13:1e:a4:1d:c0:d6:18:0e:0e:1c:01:9b:a4:
69:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:80:4C:9C:8A:43:39:7D:16:77:9A:A9:34:F7:06:73:88:FC:7D:7C
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/96254c-fc0e-4f58-95e2-af4e5241bf20/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/96254c-fc0e-4f58-95e2-af4e5241bf20/1/3oBMnIpDOX0Wd5qpNPcGc4j8fXw.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.212.77.0/24
185.188.196.0/22
192.175.38.0/23
IPv6:
2a0b:d080::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
205747
Signature Algorithm: sha256WithRSAEncryption
81:1c:06:3f:ff:8e:be:49:b4:ea:da:ca:e9:0d:6a:bc:09:4b:
02:a7:b8:25:c8:32:38:72:43:db:25:d3:b3:71:ad:08:02:18:
36:0c:ff:cd:74:d8:b8:9d:b3:26:87:5d:0d:a1:b8:2a:97:4b:
06:29:3b:f7:28:eb:9b:5f:04:aa:fa:ce:23:f7:50:5f:c3:cf:
b1:50:d6:41:13:21:67:a9:38:f9:a4:1f:4b:55:5b:8d:94:db:
32:c2:aa:7c:ce:87:69:81:c5:f8:2b:0f:bc:07:54:d2:87:50:
23:94:b1:29:1e:b1:b0:e6:5d:39:0b:e3:75:f1:d5:09:f8:7d:
db:9f:f1:25:d3:98:4c:5b:25:84:4e:a1:37:13:2c:2d:4b:43:
00:d4:5a:55:8a:94:55:46:38:64:fb:99:e3:71:49:cd:bc:2b:
64:c6:89:ba:1c:53:46:13:74:e7:ac:95:fd:b6:1f:23:88:b3:
56:a0:e9:8b:4c:68:d1:e2:72:86:ab:51:97:48:ae:d9:4f:af:
5f:d0:5a:ff:fc:7d:d1:59:ee:fa:ea:01:7d:16:0c:bb:7e:a3:
72:c5:b7:00:6f:50:39:9e:24:01:01:13:b7:3a:c2:84:8d:4d:
b8:4b:f9:6a:37:5d:b9:4e:2b:cd:63:78:c1:53:65:59:79:30:
fa:7f:ec:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 22:59:43 2024 by rpki-client on console-fra.rpki-client.org