Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4vaEFPysoHyBNVXlNpHbqE45iMg.cer
File: 4vaEFPysoHyBNVXlNpHbqE45iMg.cer (raw, json)
Hash identifier: cl9JruqQOrjKUnJNY5M15in0Mb0mu6GqnWq2FwTx9pQ=
Subject key identifier: E2:F6:84:14:FC:AC:A0:7C:81:35:55:E5:36:91:DB:A8:4E:39:88:C8
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC726A695FA759099005C1E40D80FFA5C
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/ea/273487-889a-43fe-a56e-4b48f59ec155/1/4vaEFPysoHyBNVXlNpHbqE45iMg.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/ea/273487-889a-43fe-a56e-4b48f59ec155/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 22:30:48 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 206476
IP: 185.137.224.0/22
IP: 185.255.184.0/22
IP: 2a07:780::/29
IP: 2a0c:bcc0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 26 Apr 2024 14:10:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:26:a6:95:fa:75:90:99:00:5c:1e:40:d8:0f:fa:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 22:30:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e2f68414fcaca07c813555e53691dba84e3988c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:98:02:39:9c:9e:c8:f8:26:29:0c:24:7c:ea:
d4:98:a3:d4:8e:99:10:ca:9b:51:d9:1d:77:a3:e5:
ab:db:0a:04:8b:aa:97:ce:bb:98:df:9b:e5:d7:bb:
46:6f:eb:f0:29:b7:e2:29:a1:ab:f7:21:0a:40:fd:
7f:f7:a0:92:1e:6c:cb:36:08:fa:68:58:9d:60:23:
17:11:f3:4a:05:51:c2:80:e3:54:85:e8:8b:ba:c4:
88:25:c4:fd:56:cb:4f:0f:ca:3e:b2:2a:01:20:16:
bd:21:49:4b:35:58:c4:0b:a2:10:b4:94:18:d9:48:
35:48:a7:db:76:92:f7:7b:74:43:a2:c1:5a:9b:3f:
2e:31:0a:04:13:5d:23:c7:2b:2d:a0:5b:ba:40:bc:
72:60:2d:4f:ca:72:29:0c:c4:49:78:e3:13:01:66:
3e:16:6b:86:11:2f:b9:f6:79:9d:9b:72:f9:83:a4:
4a:2c:52:c7:1e:65:aa:5e:24:8c:0b:93:ef:b9:eb:
a7:76:6d:4a:7a:a3:37:23:18:ed:69:18:28:c6:9c:
69:c0:f5:c1:47:8a:6e:7f:33:d9:33:cd:b4:58:28:
7b:37:05:36:ce:b4:c7:24:b7:88:3b:38:2a:48:3b:
bf:20:45:8b:de:e1:bc:38:4f:1d:28:5a:3d:f1:33:
35:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:F6:84:14:FC:AC:A0:7C:81:35:55:E5:36:91:DB:A8:4E:39:88:C8
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/273487-889a-43fe-a56e-4b48f59ec155/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/273487-889a-43fe-a56e-4b48f59ec155/1/4vaEFPysoHyBNVXlNpHbqE45iMg.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.137.224.0/22
185.255.184.0/22
IPv6:
2a07:780::/29
2a0c:bcc0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
206476
Signature Algorithm: sha256WithRSAEncryption
9f:68:5a:99:f1:c6:87:e8:67:3b:db:16:b8:9c:89:76:7c:7e:
50:06:39:d5:9c:c8:c0:22:7c:ac:eb:ad:91:7f:e2:7b:7c:bc:
65:c1:f2:06:6a:41:d7:1b:e5:dc:5b:c1:5d:6b:46:d4:9b:43:
7f:f5:69:6f:09:4a:82:36:ee:ab:ab:bd:2c:38:11:f9:a4:e8:
a4:19:d0:bb:40:58:ca:09:f7:98:3a:2c:b6:ee:b1:4f:e1:cb:
36:09:0b:7e:ce:bf:d2:4b:0c:09:c0:bb:f4:df:aa:e8:01:36:
df:8b:8d:80:ac:8f:08:b2:80:34:02:ee:33:da:04:51:1f:93:
aa:90:68:e9:b0:08:72:b7:5b:02:1f:bd:f0:9f:54:e2:ff:0d:
e9:18:16:c1:1f:f5:d1:22:ed:6c:58:75:f9:38:6a:b7:c9:e8:
d5:55:57:64:f3:4c:86:e4:43:6c:46:67:d6:de:01:51:2a:10:
cb:dd:d8:5a:f0:1a:7a:f8:18:37:69:de:af:00:06:5c:f8:5b:
7c:9e:42:e9:e2:22:27:c6:10:a1:b4:5f:a1:b8:ee:0e:9f:89:
8c:68:b1:85:1c:b8:bd:15:d6:25:80:e8:da:17:8e:48:c8:1b:
43:fb:a6:e0:6a:4c:f5:45:65:3f:36:16:25:b3:45:58:1c:96:
b7:a6:23:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 23:02:48 2024 by rpki-client on console-fra.rpki-client.org