Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5LEwYQHMnsn86YUoDB2w83wTWjo.cer
File: 5LEwYQHMnsn86YUoDB2w83wTWjo.cer (raw, json)
Hash identifier: qNbsYXoU91HhxguJo3e9zQfqkL5gYNQKTtbh25rCB4g=
Subject key identifier: E4:B1:30:61:01:CC:9E:C9:FC:E9:85:28:0C:1D:B0:F3:7C:13:5A:3A
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC9BCDF360474CC6EB7598951BAF3210D
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/61/4d089e-5d1c-4e34-9465-fa6348f695b5/1/5LEwYQHMnsn86YUoDB2w83wTWjo.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/61/4d089e-5d1c-4e34-9465-fa6348f695b5/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 10:34:07 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 47165
IP: 46.233.192.0/18
IP: 62.182.192.0/21
IP: 94.137.0.0/18
IP: 109.120.0.0/18
IP: 176.62.64.0/18
IP: 178.74.64.0/18
IP: 185.13.176.0/22
IP: 217.25.208.0/20
IP: 2a02:ddc0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 20 Apr 2024 17:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:df:36:04:74:cc:6e:b7:59:89:51:ba:f3:21:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 10:34:07 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e4b1306101cc9ec9fce985280c1db0f37c135a3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:45:ce:9a:03:b0:62:53:c5:b4:ca:a1:34:0c:
aa:07:f7:58:d9:67:9c:ea:f7:05:62:9f:c0:82:df:
0b:14:83:98:f0:53:ad:c9:c1:0d:ec:d3:92:7b:34:
14:5e:02:62:2d:51:1e:cb:fb:e5:68:8f:95:82:d8:
fe:8c:d5:f0:eb:fa:34:ee:b3:92:b6:ea:bd:50:b2:
40:e7:41:d1:f2:a2:64:74:91:63:e0:0f:16:de:95:
a3:b3:79:ae:50:a1:d9:f4:9f:9e:6a:65:26:33:6c:
68:5b:62:a0:45:11:ed:b2:27:20:7b:4a:a9:90:c3:
83:b5:f3:8c:7b:b0:8a:9f:78:ab:a6:3d:ff:55:10:
cc:ff:35:ba:c5:45:7c:53:63:68:fa:49:88:88:c9:
6b:7d:16:21:af:5c:ea:e7:51:63:89:14:c5:36:cb:
33:50:f2:f5:1f:2e:e3:bd:76:63:1c:76:05:36:01:
a8:84:13:b0:32:0a:38:c7:7d:f7:60:0b:5f:28:0c:
15:63:e1:71:48:ba:86:12:4f:4f:d9:f7:f9:57:00:
3b:89:66:4a:7d:a6:b6:b5:23:72:dc:b5:e2:bf:96:
9c:74:b3:36:a0:64:b0:c2:d2:f0:f3:e9:b3:65:e6:
d5:f4:14:a4:15:46:4a:6d:3d:42:07:c1:31:7c:fe:
7b:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:B1:30:61:01:CC:9E:C9:FC:E9:85:28:0C:1D:B0:F3:7C:13:5A:3A
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/4d089e-5d1c-4e34-9465-fa6348f695b5/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/4d089e-5d1c-4e34-9465-fa6348f695b5/1/5LEwYQHMnsn86YUoDB2w83wTWjo.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.233.192.0/18
62.182.192.0/21
94.137.0.0/18
109.120.0.0/18
176.62.64.0/18
178.74.64.0/18
185.13.176.0/22
217.25.208.0/20
IPv6:
2a02:ddc0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
47165
Signature Algorithm: sha256WithRSAEncryption
96:8d:7e:c3:ca:a8:d6:b9:47:53:fa:b6:cd:26:5d:91:1d:94:
f5:33:ad:8b:e8:98:59:13:5d:61:bc:64:bd:b1:8f:63:54:be:
88:15:80:71:4b:c8:e7:d1:33:04:bf:13:f3:a0:0e:13:d6:ae:
b3:dd:91:d1:4d:be:39:c4:fd:e3:0b:61:8b:f4:8c:16:81:62:
49:17:6f:a8:84:36:79:76:a3:e0:f4:2a:85:97:52:22:ca:c2:
8d:da:50:4c:71:9a:a7:a2:5e:dd:ec:d3:71:08:76:f7:27:af:
7d:8e:79:d0:7b:32:82:21:1a:ab:3f:d1:18:f3:93:ef:4e:49:
19:eb:f8:50:6b:f1:c9:fe:39:b2:81:fc:9f:55:34:30:fb:49:
c3:ad:45:7a:3d:38:88:71:6b:a2:f8:73:a7:f9:32:ca:7a:74:
17:9d:41:e5:a3:7d:7a:fe:2e:8e:06:17:95:1b:56:f0:43:6f:
00:4e:4b:6a:45:c2:52:36:6c:f9:2a:f2:5b:5e:d4:25:ab:b5:
c4:9c:ef:98:27:7d:30:74:b0:5b:3b:46:c4:45:72:e8:8c:5c:
4f:31:1f:59:c2:ec:c5:11:3f:08:a2:74:5e:6a:00:12:af:5c:
50:90:f0:5f:c4:34:d0:4b:28:0f:87:f9:75:64:c1:ad:56:e2:
c9:53:c5:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 19 22:38:08 2024 by rpki-client on console-fra.rpki-client.org