Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5ARKnRChnmsaztrJ_3eNT0CQaMs.cer
File: 5ARKnRChnmsaztrJ_3eNT0CQaMs.cer (raw, json)
Hash identifier: +i6eg0enjp6pWZ24yrolxIE8tHHEXlApbfRV8UClguI=
Subject key identifier: E4:04:4A:9D:10:A1:9E:6B:1A:CE:DA:C9:FF:77:8D:4F:40:90:68:CB
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CEDCB8B6EFB4500D808E5F9F6C995562C
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/18/0e8b5d-ee98-47fb-a389-03fa7a9c371e/1/5ARKnRChnmsaztrJ_3eNT0CQaMs.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/18/0e8b5d-ee98-47fb-a389-03fa7a9c371e/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 09 Jan 2024 10:36:28 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 203011
IP: 80.75.209.0/24
IP: 193.28.176.0/24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 27 Apr 2024 08:00:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ed:cb:8b:6e:fb:45:00:d8:08:e5:f9:f6:c9:95:56:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 9 10:36:28 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e4044a9d10a19e6b1acedac9ff778d4f409068cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:92:d4:40:c9:ec:ac:2b:a9:7d:59:ef:30:9f:
30:43:51:28:bf:f9:02:62:c5:7b:00:77:20:2e:00:
51:93:32:5c:a5:b4:81:b3:d9:58:6a:35:7c:40:47:
dd:f2:33:db:31:d2:67:6f:03:08:8b:5f:c1:e4:4f:
bb:24:b1:45:c1:74:c9:dd:8d:de:d8:2b:26:f6:81:
aa:af:0b:34:d3:7b:9e:b1:90:90:b3:c8:fe:34:0e:
0a:a8:17:16:c3:32:25:42:bd:25:e8:64:c5:06:5c:
e4:7f:55:ef:e0:2e:b8:e2:95:fa:3d:e7:c5:82:79:
1a:cb:14:77:52:96:3b:0d:7d:40:96:00:67:a8:76:
5a:44:4c:39:59:0d:83:65:67:9d:ce:86:36:77:7a:
ed:66:ca:5b:eb:7b:c2:69:e8:d5:4c:f5:75:e5:bb:
cc:60:db:36:23:d2:a5:d1:61:ef:98:63:49:83:72:
ac:87:b2:0e:86:38:44:66:bc:ca:64:bf:0b:97:f9:
20:a2:0e:39:99:8d:50:2c:a0:cd:a0:39:a0:b5:7a:
7d:b9:33:10:93:06:3a:3a:8f:a7:ed:4c:c4:6a:3a:
9d:bd:bf:c8:93:0e:21:0a:3a:5f:0c:71:f4:dc:5c:
3f:f7:66:d0:eb:0c:03:2f:93:ac:25:44:89:67:7c:
26:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:04:4A:9D:10:A1:9E:6B:1A:CE:DA:C9:FF:77:8D:4F:40:90:68:CB
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/0e8b5d-ee98-47fb-a389-03fa7a9c371e/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/0e8b5d-ee98-47fb-a389-03fa7a9c371e/1/5ARKnRChnmsaztrJ_3eNT0CQaMs.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.75.209.0/24
193.28.176.0/24
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
203011
Signature Algorithm: sha256WithRSAEncryption
28:f0:c3:1a:85:5b:22:0d:52:62:78:77:9a:09:d7:b1:51:03:
0a:95:b8:a9:8b:c9:cc:12:46:0e:51:85:76:33:2b:de:c8:bc:
2b:50:17:93:8d:22:93:5b:47:12:d5:9d:d3:f5:28:c9:9d:af:
31:90:b1:08:d3:7a:1c:c9:b1:96:d0:1d:1c:27:3b:f7:7d:9e:
86:89:ba:71:57:9a:5f:a7:fc:56:eb:7b:f3:09:94:87:14:76:
1f:71:4c:42:06:f6:7c:3a:60:f7:71:61:a0:eb:b3:29:20:19:
60:9b:74:d3:6c:46:cf:b8:12:22:c8:7a:d6:2e:b6:4f:1f:7a:
6a:a9:db:1a:47:d7:8c:86:2c:53:31:d1:47:25:b8:d6:5f:f3:
51:4c:d9:39:58:85:50:f6:32:23:a6:4b:13:27:de:d5:20:8b:
ac:6b:be:2b:fe:2a:25:01:5e:35:c7:0e:66:46:fa:f9:73:00:
ed:d3:bc:bc:c1:79:bb:7c:60:78:63:57:b2:af:49:90:cd:c7:
f7:3d:00:20:fd:03:c1:65:3a:ce:88:e9:98:f3:50:80:cc:ba:
a8:91:8a:11:91:90:82:b1:09:fa:b8:a9:48:ac:39:a7:73:b1:
be:41:a6:23:13:c4:c9:4f:29:ea:44:4f:82:79:88:20:76:b2:
63:53:f8:d9
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Fri Apr 26 11:37:13 2024 by rpki-client on console-ams.rpki-client.org