Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4iJ3_fZYKO9AtYzhAZRllVB_EzA.cer
File: 4iJ3_fZYKO9AtYzhAZRllVB_EzA.cer (raw, json)
Hash identifier: RP9AfWl3dQlKvmvAmSaZiHDLkO/pbdeaTfzToXPdhEs=
Subject key identifier: E2:22:77:FD:F6:58:28:EF:40:B5:8C:E1:01:94:65:95:50:7F:13:30
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC86F463E519EB2E3AEDDFFB873E3ABEF
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/1c/481786-77fd-4316-96ce-822b842c3c0e/1/4iJ3_fZYKO9AtYzhAZRllVB_EzA.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/1c/481786-77fd-4316-96ce-822b842c3c0e/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 04:29:44 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 200083
IP: 46.29.88.0/21
IP: 62.182.16.0/21
IP: 77.72.200.0/21
IP: 185.41.8.0/22
IP: 2a04:84c0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:46:3e:51:9e:b2:e3:ae:dd:ff:b8:73:e3:ab:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 04:29:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e22277fdf65828ef40b58ce101946595507f1330
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:78:c4:af:53:74:8b:f6:f4:45:d1:2d:98:3b:
72:36:15:8e:21:62:e3:9a:a0:d6:6b:ed:d4:be:db:
62:ae:f1:1c:81:c0:ad:83:32:99:9f:5d:00:26:ec:
62:9b:cb:30:eb:54:18:24:88:4d:c2:07:4b:45:49:
bc:d0:4b:d3:1e:9e:e4:3c:3f:98:45:1f:b8:c2:27:
e5:24:78:77:47:1d:38:c3:04:52:d4:79:22:a5:65:
87:44:c3:80:94:28:af:24:d4:41:6c:74:54:3c:54:
80:04:5a:dc:00:8c:d9:a9:d4:ea:cc:64:fc:90:1f:
cb:0b:d6:5f:1c:43:ac:9e:2c:71:02:d3:16:bd:60:
fe:23:f6:c5:fd:6d:a3:10:2b:8f:d2:a5:f8:16:36:
11:11:4c:c4:d5:b1:7d:40:6e:26:e6:e8:fa:f3:56:
d2:47:46:ea:d5:45:09:d8:47:8d:5c:70:4f:90:d1:
c5:7e:9a:8f:73:20:34:2a:c4:7b:4f:20:af:15:f0:
13:5c:79:b4:d3:bc:73:b2:5e:66:70:23:bf:32:29:
ee:5e:29:e4:1e:d9:22:e2:0a:46:eb:c2:0a:19:2a:
85:83:de:7b:39:ea:0b:54:83:f5:51:07:34:24:5e:
d0:01:57:2e:94:59:47:aa:f3:66:b4:af:dd:6c:41:
89:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:22:77:FD:F6:58:28:EF:40:B5:8C:E1:01:94:65:95:50:7F:13:30
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/481786-77fd-4316-96ce-822b842c3c0e/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/481786-77fd-4316-96ce-822b842c3c0e/1/4iJ3_fZYKO9AtYzhAZRllVB_EzA.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.29.88.0/21
62.182.16.0/21
77.72.200.0/21
185.41.8.0/22
IPv6:
2a04:84c0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
200083
Signature Algorithm: sha256WithRSAEncryption
05:be:05:33:9c:74:04:52:84:43:5a:54:48:7f:d9:30:15:7f:
3b:ee:48:5f:1b:79:d4:37:de:60:6e:fd:ab:19:f1:b0:4d:d7:
7a:4e:89:6d:b1:f7:25:e7:eb:08:9f:38:6c:67:20:74:78:5d:
a7:7c:e5:6a:ad:68:c9:02:29:29:79:20:b2:7f:ec:33:9a:47:
ed:d0:9f:4e:86:fc:96:3b:33:66:be:1f:0d:e2:c7:48:d5:3d:
4d:d9:ab:b9:03:21:18:50:43:49:8e:7d:40:60:9d:ca:d9:b7:
ba:43:eb:6b:36:46:42:0a:0f:30:20:db:d6:89:a0:59:2f:73:
bb:f5:77:9d:14:15:0b:90:b7:50:6d:e8:c7:ca:99:df:0a:8a:
38:fa:30:f8:b7:7d:85:ff:3b:7f:50:f5:55:b4:d9:2f:d3:ad:
54:72:d1:1a:c2:b7:c4:24:de:17:99:fa:ab:23:69:38:ab:f4:
16:5e:5c:a9:fb:7b:2f:6e:28:66:69:50:ba:b8:c9:9d:0b:2d:
77:af:e1:df:2c:74:69:59:7d:07:2a:58:bc:8f:11:80:02:62:
1a:6f:25:1c:18:b3:3b:ae:80:b5:51:3b:1e:7e:a4:78:c7:f8:
91:ab:45:c1:36:7e:1f:4e:bc:a0:d6:fa:6d:46:9f:89:b2:fe:
d3:92:ad:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:39:45 2024 by rpki-client on console-ams.rpki-client.org