Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4tW7QBGA5V9cFl1HkI3_T-KaDYY.cer
File: 4tW7QBGA5V9cFl1HkI3_T-KaDYY.cer (raw, json)
Hash identifier: vtb4SoadFro9wtkHD8r4Edsh1JEaTUarBhNHpJw6Ud8=
Subject key identifier: E2:D5:BB:40:11:80:E5:5F:5C:16:5D:47:90:8D:FF:4F:E2:9A:0D:86
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC8DCDAFC8F1CDDEC492FF35C011A65DD
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/59/86297a-d219-4567-9171-421e6bc7e2e8/1/4tW7QBGA5V9cFl1HkI3_T-KaDYY.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/59/86297a-d219-4567-9171-421e6bc7e2e8/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 06:29:26 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 25003
IP: 80.74.96.0/19
IP: 91.143.224.0/20
IP: 92.61.224.0/20
IP: 94.188.128.0/17
IP: 2a02:23b8::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 21 Apr 2024 20:00:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:dc:da:fc:8f:1c:dd:ec:49:2f:f3:5c:01:1a:65:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 06:29:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e2d5bb401180e55f5c165d47908dff4fe29a0d86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:d9:12:27:f4:79:84:0e:0c:2b:a5:54:4f:27:
5f:d4:17:99:ac:b8:a7:f9:1e:e7:bd:64:89:66:f1:
79:84:67:3a:23:03:30:7a:66:39:81:4e:92:32:b6:
45:32:39:3e:ce:69:d4:1e:1f:e0:0d:4f:af:f0:24:
46:13:03:34:3d:02:ba:1b:bf:ec:80:0b:b8:85:21:
bf:c2:2b:d3:ff:d0:3f:03:cd:7b:f1:93:f6:f0:3c:
82:0f:7f:3d:83:2f:f9:9f:5d:a1:00:36:ae:e6:32:
e9:6a:de:a2:74:2a:1d:26:30:0b:63:37:45:20:8e:
8a:f1:a5:d3:78:bb:b4:8f:78:07:d7:8e:70:a2:69:
f2:d4:ce:f6:c7:3b:6e:1a:c3:49:94:d3:a4:0a:ff:
db:b6:14:d7:e8:1d:43:b6:9c:65:11:32:96:77:f2:
36:c5:f0:45:b6:3e:26:53:59:84:ba:a6:7c:fa:15:
f0:8c:32:eb:0d:cf:d0:63:7f:e8:c3:83:b0:45:82:
82:d8:bb:df:68:0b:17:42:9d:be:70:8b:fe:9c:98:
85:28:34:73:46:4a:f8:cf:35:94:5f:21:09:96:eb:
93:e3:f0:d2:c4:65:d5:25:e1:7c:b7:d7:dc:0d:9b:
a1:f0:ec:35:c1:61:ef:28:1d:3e:5e:ea:1e:4a:f3:
1a:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:D5:BB:40:11:80:E5:5F:5C:16:5D:47:90:8D:FF:4F:E2:9A:0D:86
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/86297a-d219-4567-9171-421e6bc7e2e8/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/86297a-d219-4567-9171-421e6bc7e2e8/1/4tW7QBGA5V9cFl1HkI3_T-KaDYY.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.74.96.0/19
91.143.224.0/20
92.61.224.0/20
94.188.128.0/17
IPv6:
2a02:23b8::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
25003
Signature Algorithm: sha256WithRSAEncryption
49:b6:c8:02:e1:e7:3f:b9:9d:5f:ae:d7:a9:a6:3e:43:c7:25:
f5:01:da:59:5b:68:62:04:63:81:fd:66:1d:ee:5b:cf:5d:9b:
44:db:29:e7:ff:6c:42:d6:c8:38:02:41:10:1a:e4:e1:21:f3:
aa:0e:97:3b:28:05:fd:b8:8f:1d:d6:27:61:95:1d:de:6a:a7:
67:72:cf:18:f1:8d:39:20:96:5b:c0:41:1f:38:11:d2:02:e9:
3e:c6:7e:ed:f4:f1:d6:df:80:25:94:dc:fe:65:59:3c:08:88:
69:d5:be:8c:d7:0d:b1:e1:db:66:79:0c:28:84:fb:f4:46:1a:
aa:8d:1e:dd:6a:0c:53:7c:25:f7:ef:6b:2a:0d:70:cf:9e:96:
c6:bb:fd:9c:c2:c5:7c:6a:d7:db:8b:77:f2:e6:4d:53:f6:30:
2f:26:24:f8:6e:1d:b5:e9:be:43:18:b8:35:a7:37:02:a9:41:
41:86:ff:47:f4:10:3a:8a:e1:65:8c:67:e8:5e:e6:03:d1:cd:
06:b6:eb:b3:0d:d1:75:55:28:5e:37:c9:40:38:12:61:f3:e6:
b0:7b:30:53:fc:bd:0a:d4:13:b4:23:e6:22:fc:d8:48:8a:3f:
bf:5f:3a:05:6f:6f:77:84:ef:b6:ad:c1:4c:92:7c:a4:67:af:
3e:f5:da:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 03:58:15 2024 by rpki-client on console-fra.rpki-client.org