Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3tsgAwkB_y3069H0nkiRyyj-BzA.cer
File: 3tsgAwkB_y3069H0nkiRyyj-BzA.cer (raw, json)
Hash identifier: t+OnsrWzKwgMlI0mChxD02+T+NdOu26clQ86DbHKjhY=
Subject key identifier: DE:DB:20:03:09:01:FF:2D:F4:EB:D1:F4:9E:48:91:CB:28:FE:07:30
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC8DF73644963E9F7BC69FFCC2CA0424A
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/cf/678964-d802-48f9-96f1-e3bfa72d7ef8/1/3tsgAwkB_y3069H0nkiRyyj-BzA.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/cf/678964-d802-48f9-96f1-e3bfa72d7ef8/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 06:32:16 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 60847
IP: 91.244.227.0/24
IP: 185.92.12.0/22
IP: 2a05:f000::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 21 Apr 2024 02:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:df:73:64:49:63:e9:f7:bc:69:ff:cc:2c:a0:42:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 06:32:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=dedb20030901ff2df4ebd1f49e4891cb28fe0730
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:b9:4b:ae:6b:eb:11:f8:49:c5:05:47:86:41:
0a:da:74:ca:02:25:fe:83:7c:66:de:06:e1:fe:68:
45:0f:8b:12:93:89:c3:85:8d:4e:73:ce:c0:03:29:
50:3c:1f:be:3c:7c:a7:2a:01:fc:d6:b7:d2:f7:93:
55:bf:71:3a:83:f6:9d:f2:9c:55:5d:5c:06:ea:9b:
b2:e9:1e:82:a7:3c:ff:30:c3:8b:83:4b:33:4f:f9:
eb:45:1e:e7:94:59:f2:1d:74:f4:dc:23:7f:d7:09:
f9:a7:9d:3d:80:49:50:aa:da:2d:c4:13:37:a7:c5:
7d:a8:e3:7c:8a:83:83:77:f4:af:6b:49:25:08:9e:
41:44:e7:b0:a4:90:1b:bb:b2:92:15:84:6e:e0:f2:
dc:0c:73:bf:15:3c:1a:87:c3:d0:a3:b3:0c:24:f6:
49:70:4c:d4:57:06:5d:65:cb:1e:74:1c:08:06:55:
0c:76:63:c1:b9:90:b0:de:a2:c1:12:4c:f3:c4:75:
07:fe:b7:86:02:ee:01:30:9b:b5:89:f9:9b:57:9a:
fa:22:22:e0:6c:f5:4f:a8:9b:c5:58:8f:e7:f0:4d:
e4:f8:fd:e8:1d:00:7f:ee:17:fa:26:10:07:9d:36:
0e:c3:f3:32:fb:33:91:6e:65:45:e8:84:be:39:26:
10:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:DB:20:03:09:01:FF:2D:F4:EB:D1:F4:9E:48:91:CB:28:FE:07:30
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/678964-d802-48f9-96f1-e3bfa72d7ef8/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/678964-d802-48f9-96f1-e3bfa72d7ef8/1/3tsgAwkB_y3069H0nkiRyyj-BzA.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.244.227.0/24
185.92.12.0/22
IPv6:
2a05:f000::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
60847
Signature Algorithm: sha256WithRSAEncryption
21:da:c6:18:b2:9b:4a:5e:7a:56:7c:8d:c8:af:05:56:66:97:
b6:f8:3c:52:cd:0e:58:04:70:03:68:3c:37:2b:2e:05:cf:14:
a0:70:bb:b3:cb:a3:25:bf:ac:55:0e:80:48:17:70:a1:3e:d1:
84:5e:5b:9e:95:0a:86:f5:58:66:13:d7:a4:49:3e:3c:4e:c6:
cf:a7:d2:36:59:5e:d5:b8:02:87:b8:a2:7e:48:bb:df:25:f4:
23:89:52:cd:5d:7c:88:fe:3e:10:0f:18:4f:ac:24:3c:4b:13:
04:3c:09:1b:e9:b2:fc:a0:52:b0:93:98:3a:8e:65:ea:0d:f1:
1b:03:c0:51:11:ac:5e:f0:fa:71:22:fe:c1:f1:fa:53:e8:55:
2b:db:5f:15:96:60:41:d5:16:b2:c0:01:a2:6f:f3:ca:34:97:
de:4e:87:12:b4:6e:55:98:33:07:c7:26:62:59:85:77:8b:a3:
34:1b:a4:dd:ae:fe:23:0d:10:0e:b6:4d:f5:c2:70:51:6f:3d:
47:ba:6c:e4:ce:d0:d2:14:60:84:5c:06:0c:99:19:bd:ce:e4:
52:d2:fd:9b:ef:66:e4:43:67:c0:59:35:a5:9f:57:e1:75:65:
81:0a:11:0c:be:2d:e5:e7:93:d8:f0:a9:81:d1:8c:f4:29:8b:
64:6b:ef:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 20 09:37:12 2024 by rpki-client on console-fra.rpki-client.org