Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4pDpzDt-Nj1ya9cCdQtT8psFCn0.cer
File: 4pDpzDt-Nj1ya9cCdQtT8psFCn0.cer (raw, json)
Hash identifier: RljkW/kFNca/G3noVfmcJ5uHKaYSlexcJRDCzH8GcV0=
Subject key identifier: E2:90:E9:CC:3B:7E:36:3D:72:6B:D7:02:75:0B:53:F2:9B:05:0A:7D
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC424EDEB55E59D4CA0AC97C3EA2A578C
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/fd/55354e-bce7-4a5d-b561-9113fd7afd6c/1/4pDpzDt-Nj1ya9cCdQtT8psFCn0.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/fd/55354e-bce7-4a5d-b561-9113fd7afd6c/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 08:30:03 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 62201
IP: 185.149.200.0/22
IP: 2a07:6a00::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 21 Apr 2024 02:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:24:ed:eb:55:e5:9d:4c:a0:ac:97:c3:ea:2a:57:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 08:30:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e290e9cc3b7e363d726bd702750b53f29b050a7d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:c2:39:62:a7:de:07:2f:5f:c1:97:b6:78:f7:
7e:c0:38:3c:00:ba:29:6b:aa:90:eb:11:e8:f6:14:
1f:da:09:ed:59:77:3a:fb:09:54:4e:3e:4f:37:ff:
3e:2e:b7:8c:8e:c7:75:74:0e:2e:93:21:c1:20:b1:
61:f2:b8:ba:58:dc:6b:47:b1:7c:dc:62:14:2a:6c:
3f:fc:41:a1:2d:4f:c2:e4:ed:6b:0b:a8:d4:6d:de:
a4:04:2a:da:e1:ac:15:c3:08:8c:76:7f:c1:51:e1:
46:fe:43:a9:e0:c7:fc:fb:94:4d:37:13:4a:ad:94:
40:38:99:9e:37:54:0b:19:2d:c5:64:fc:85:ab:2b:
7f:50:f5:ce:7e:d7:10:16:11:fc:97:21:d5:5b:26:
79:42:8e:6b:77:39:4c:04:d7:c1:3c:c6:7a:4f:ee:
72:15:53:72:b0:e0:f2:17:e8:6c:7f:48:a8:2a:2f:
62:70:69:7c:c5:d6:75:3a:63:eb:77:42:f8:69:b8:
e7:74:c0:ac:1f:70:b6:f4:cc:f8:ff:1f:26:b1:16:
1f:3c:bc:64:29:7c:8c:e0:37:a2:be:ee:b2:e9:ef:
4f:b4:ca:e1:0a:1d:e1:e7:f7:07:de:5d:fd:ae:45:
7f:a3:50:9a:ac:a6:b5:83:6f:6c:c4:6c:48:dc:aa:
ce:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:90:E9:CC:3B:7E:36:3D:72:6B:D7:02:75:0B:53:F2:9B:05:0A:7D
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/55354e-bce7-4a5d-b561-9113fd7afd6c/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/55354e-bce7-4a5d-b561-9113fd7afd6c/1/4pDpzDt-Nj1ya9cCdQtT8psFCn0.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.149.200.0/22
IPv6:
2a07:6a00::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
62201
Signature Algorithm: sha256WithRSAEncryption
a2:bf:5e:e8:ca:8a:7f:d3:02:b6:6a:7c:5f:d9:b7:38:aa:07:
85:49:bb:9f:3b:90:a0:52:0c:71:86:59:af:9e:f8:81:41:31:
0f:12:a1:fb:82:8b:d8:ee:d3:77:42:16:37:1f:20:16:19:03:
a5:c2:4b:a5:1a:10:9a:21:69:7c:1d:3e:8a:f5:13:5d:5e:71:
e6:db:08:ad:a3:39:ed:d7:33:ae:b8:63:14:6f:d8:55:b5:80:
c6:4c:c6:95:7c:4e:e2:e8:67:d7:0d:5d:69:b4:6c:49:94:53:
40:fe:53:74:33:27:c4:ce:b1:51:5e:b1:51:ab:69:6d:8a:38:
1c:0c:51:5d:c4:b9:24:1d:03:84:ba:6e:14:01:ef:a5:e3:22:
1d:67:c9:3a:8f:1d:06:59:68:cf:ec:70:6f:0a:ff:98:f5:ce:
b7:31:67:c3:bf:47:0e:26:69:f1:0f:72:c2:ac:aa:b3:d9:e4:
73:e3:66:77:b9:fc:4a:7d:74:6a:2a:ff:c6:bc:5e:32:6f:73:
21:00:6a:3c:cc:9d:69:33:75:e8:d5:83:12:db:37:d0:db:a3:
5f:5b:63:d2:6e:b7:86:71:0f:ec:e4:67:69:90:bb:de:a6:1a:
31:ff:87:dd:79:93:6a:02:4f:63:4c:81:d2:4e:71:26:96:ce:
e7:98:13:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 20 10:04:30 2024 by rpki-client on console-ams.rpki-client.org