Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53OduQwc6YQx3zSKE3blOsbgUjw.cer
File: 53OduQwc6YQx3zSKE3blOsbgUjw.cer (raw, json)
Hash identifier: ENQAdrmFvv0+i1BCjnHSplllCCXLZD/Jp2By5KG8XIk=
Subject key identifier: E7:73:9D:B9:0C:1C:E9:84:31:DF:34:8A:13:76:E5:3A:C6:E0:52:3C
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC6B8DF6EF98DB40DD0E56DEA0FFD1AF5
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/7d/547034-395c-43f0-a34c-19428f92c1cc/1/53OduQwc6YQx3zSKE3blOsbgUjw.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/7d/547034-395c-43f0-a34c-19428f92c1cc/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 20:30:53 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 203257
IP: 185.140.192.0/22
IP: 2a07:2000::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b8:df:6e:f9:8d:b4:0d:d0:e5:6d:ea:0f:fd:1a:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 20:30:53 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e7739db90c1ce98431df348a1376e53ac6e0523c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:8e:68:28:e9:a0:ce:28:19:1d:7c:0d:83:94:
9d:22:ce:21:d0:c1:41:bc:bc:86:8b:14:69:33:1e:
0c:2f:82:98:3c:50:47:6c:51:0d:f3:2b:3d:f1:b2:
b0:d1:09:d3:dc:5f:0b:cd:5c:32:7b:32:33:58:18:
f3:31:b0:ee:8e:9b:54:09:d6:61:89:f4:8a:37:6b:
a6:6c:10:7e:44:2f:a0:8a:c5:ec:ec:8b:8b:12:0e:
3d:0f:b6:d3:af:82:67:8e:a7:d9:1d:11:14:cf:8e:
2e:30:c4:c5:ef:90:cc:71:34:08:6b:16:45:43:c5:
47:6a:da:21:3c:71:1d:9f:5d:de:25:a6:df:58:de:
e2:0c:4f:60:e4:42:18:a7:ee:f9:95:94:98:a1:53:
b9:e0:3c:18:7a:7c:4a:93:ab:f0:80:d0:5a:d6:de:
28:42:f0:c2:3a:8b:82:c5:46:c0:90:b9:31:fd:a9:
6c:e2:2c:6c:79:ce:6b:d3:26:e8:8f:f4:2c:83:11:
0e:cf:5b:85:84:34:b1:de:d3:42:fe:82:07:80:df:
a6:df:39:73:9b:07:24:19:7a:7a:90:97:66:ea:53:
4e:0e:84:bd:cc:35:7c:80:a2:14:de:00:4c:1b:68:
ad:ad:52:13:b3:8e:9f:a1:fc:99:76:2c:24:50:8e:
d4:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:73:9D:B9:0C:1C:E9:84:31:DF:34:8A:13:76:E5:3A:C6:E0:52:3C
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/547034-395c-43f0-a34c-19428f92c1cc/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/547034-395c-43f0-a34c-19428f92c1cc/1/53OduQwc6YQx3zSKE3blOsbgUjw.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.140.192.0/22
IPv6:
2a07:2000::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
203257
Signature Algorithm: sha256WithRSAEncryption
21:ec:4b:41:8e:50:fa:ef:ab:28:3e:59:fe:91:b4:3b:9a:4f:
11:5b:ea:21:75:4c:d8:43:60:9a:b8:fc:16:57:37:07:e8:b7:
a0:d1:92:37:97:d8:cd:72:27:31:55:9f:6b:e0:74:82:5e:da:
37:73:1f:99:a9:26:f7:90:08:8f:a6:65:79:55:ee:03:c9:26:
84:e5:c2:d3:37:22:4f:40:4a:d8:54:60:17:15:7d:50:2a:4a:
ad:53:ed:f5:2a:62:32:32:c7:02:54:6e:9e:8f:da:e8:61:56:
e7:79:a4:cb:0f:0a:73:63:83:51:f3:b2:88:d9:67:d2:ed:e4:
63:7f:c7:5e:10:4f:94:24:0a:1f:66:40:80:f7:c0:18:5f:47:
a8:4c:31:4a:62:08:9d:e2:0e:31:a5:04:30:08:11:f0:e6:c2:
c7:59:38:19:29:dd:18:de:35:96:bb:72:24:f0:5c:e2:9c:f0:
17:f0:01:7b:8a:be:0b:05:a4:bf:5b:83:34:94:63:65:76:f2:
85:bf:ef:a0:0e:cc:24:3c:c7:88:cb:05:13:15:85:31:d7:6a:
3d:b5:7d:64:59:fc:01:a5:e0:c1:d5:2d:11:1b:be:f6:cc:33:
91:e2:c7:ce:5e:82:ea:a2:65:80:c7:cd:32:ef:de:3d:b9:51:
1a:02:7b:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:18:48 2024 by rpki-client on console-ams.rpki-client.org