Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51vOFjy1AqZX8nL3n9Pkh_u9S4g.cer
File: 51vOFjy1AqZX8nL3n9Pkh_u9S4g.cer (raw, json)
Hash identifier: vgYuRw95sS9DE8vZfnsBeb/P1ePQsxnbkwS/gZh4sgY=
Subject key identifier: E7:5B:CE:16:3C:B5:02:A6:57:F2:72:F7:9F:D3:E4:87:FB:BD:4B:88
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC5DCBDAA8B60BFD674186E8B8FD40E66
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/a9/c5708b-faf9-42a4-bf48-4b8578715154/1/51vOFjy1AqZX8nL3n9Pkh_u9S4g.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/a9/c5708b-faf9-42a4-bf48-4b8578715154/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 16:30:27 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 206288
IP: 185.35.84.0/22
IP: 2a00:f280::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 25 Apr 2024 23:00:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:dc:bd:aa:8b:60:bf:d6:74:18:6e:8b:8f:d4:0e:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 16:30:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e75bce163cb502a657f272f79fd3e487fbbd4b88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:30:01:e7:b8:aa:4f:23:c2:30:70:13:3b:5b:
10:64:8b:ed:f6:cf:85:d2:be:1d:8e:7a:46:7c:4f:
cf:35:44:b2:b9:68:14:aa:70:b2:d0:39:b1:c0:01:
59:07:ef:f4:1d:c2:77:99:90:29:31:bf:db:d1:d5:
7c:cd:b2:87:c2:85:55:f8:00:0e:f9:eb:a4:7b:b4:
69:5c:cb:a1:0f:9f:78:43:37:4b:2e:5a:0d:16:ab:
01:8c:1d:76:bc:d7:f7:0e:27:f5:90:93:0f:51:28:
89:b6:b7:63:67:96:3f:3f:dd:05:04:5f:f6:c2:f3:
8a:d3:c9:a5:13:fc:2a:e4:60:8e:2b:a7:1a:c7:8b:
cb:42:b6:d9:cc:5c:ad:2e:8e:07:d6:6a:b2:49:50:
db:cf:cb:fe:6a:d9:55:44:10:e3:f0:83:e2:bb:88:
e6:7e:b5:97:17:c3:d4:9b:72:e2:66:23:1e:16:48:
b2:db:6a:7d:b3:8a:aa:9d:6f:93:ac:0a:e2:be:11:
65:e4:c0:8f:12:d5:05:e0:71:aa:42:a4:de:e8:6a:
33:27:04:ff:c0:d1:bf:7f:2d:c3:aa:c2:15:38:8e:
b9:f5:c4:25:6a:13:63:c9:38:3f:31:11:b5:85:12:
c1:e4:61:cc:0d:ba:42:4f:df:4d:c7:77:8a:aa:18:
d1:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:5B:CE:16:3C:B5:02:A6:57:F2:72:F7:9F:D3:E4:87:FB:BD:4B:88
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/c5708b-faf9-42a4-bf48-4b8578715154/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/c5708b-faf9-42a4-bf48-4b8578715154/1/51vOFjy1AqZX8nL3n9Pkh_u9S4g.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.35.84.0/22
IPv6:
2a00:f280::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
206288
Signature Algorithm: sha256WithRSAEncryption
a8:99:85:65:b2:d2:02:e7:7d:b3:cb:8f:2e:20:38:95:96:2a:
36:82:5f:60:1a:41:65:f5:62:5f:16:be:61:9c:43:d5:07:02:
53:3c:48:43:8f:d7:be:ad:75:f4:ee:bb:f0:fe:f3:0c:ad:aa:
2e:e2:72:d8:99:9e:5b:1b:f7:ac:c7:c2:2d:2b:ca:6d:5d:d2:
ea:3d:2f:ed:46:7a:fb:dd:f7:ed:2d:e1:f9:29:e9:a9:07:87:
40:aa:ba:e6:2b:65:ae:1b:db:9b:a6:56:bd:56:56:cf:5c:94:
bc:dd:f7:76:3e:ae:e2:b9:5e:d5:da:d2:99:39:07:ff:db:5e:
49:1d:f2:62:d9:65:cd:9b:57:53:05:f6:55:80:56:a8:44:02:
98:9c:83:43:eb:44:e5:1d:54:51:6d:b4:e6:e1:96:77:03:d7:
22:0b:eb:27:cf:bf:25:57:c2:ee:6b:91:f7:dd:a5:09:4d:3e:
79:0c:02:bf:82:e5:0b:52:84:38:20:ba:a2:b8:08:24:2b:3b:
99:42:2d:07:35:b1:72:ae:d6:9e:1c:d1:b4:5f:e5:94:b7:3f:
b3:52:5d:bb:ad:3e:07:9b:26:0f:23:ef:a8:76:a5:0c:9e:9b:
bc:d0:fe:ae:bb:c5:43:7b:c1:80:98:0e:3c:ff:48:af:24:c3:
be:c5:69:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 04:24:14 2024 by rpki-client on console-ams.rpki-client.org