Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5WzVePQvjeBnI2dnxs_CusvBbgU.cer
File: 5WzVePQvjeBnI2dnxs_CusvBbgU.cer (raw, json)
Hash identifier: hlMn6jIYguP6oowf8im7AvsL8WZlXXkEFcfrYVol9so=
Subject key identifier: E5:6C:D5:78:F4:2F:8D:E0:67:23:67:67:C6:CF:C2:BA:CB:C1:6E:05
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CCA2A805EDED0A68686A47A2EE3897A8B
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/14/29de46-c2e9-48fb-92d4-b7a564afb04b/1/5WzVePQvjeBnI2dnxs_CusvBbgU.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/14/29de46-c2e9-48fb-92d4-b7a564afb04b/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 12:33:52 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 61418
IP: 195.206.236.0/24
IP: 2a10:2cc0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:2a:80:5e:de:d0:a6:86:86:a4:7a:2e:e3:89:7a:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 12:33:52 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e56cd578f42f8de067236767c6cfc2bacbc16e05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:ba:f4:ae:79:f5:d5:ed:8b:d0:39:ef:44:99:
39:88:0b:53:28:12:3e:de:7b:2f:80:18:b2:9e:4c:
15:fc:45:da:c3:45:6a:3f:01:d8:c2:e8:d2:1a:e5:
ae:c5:10:b3:66:0e:df:9b:43:01:a1:fa:24:01:78:
9d:c1:4e:28:96:7c:ab:1c:29:5d:af:0a:d2:1a:47:
9b:ea:79:3d:fe:7f:85:8c:41:96:7b:7e:a9:ec:a1:
2b:69:06:90:b5:bb:a9:e0:41:b1:a7:38:05:97:62:
e0:84:a3:ce:79:03:a4:78:97:96:30:53:cb:39:2c:
c2:fe:22:e9:e1:12:04:9e:72:05:01:71:31:12:f1:
db:59:6a:a5:01:c6:ba:ec:3a:ad:31:28:40:42:07:
7d:c1:99:15:9a:3b:60:d7:9a:f7:a2:29:4c:03:ff:
a5:67:2f:ed:ba:4f:66:30:53:9a:2d:f1:e2:70:02:
09:36:05:02:fd:bc:ff:1b:94:3e:cf:bc:6e:39:c0:
0c:e7:96:16:08:a2:dd:cd:88:22:02:d8:91:c8:33:
54:be:ea:b8:98:0d:ed:2d:40:4f:dd:41:e6:8d:20:
1b:b8:68:71:6f:10:3b:8f:a2:02:33:6c:26:6b:30:
7a:92:36:90:b8:14:c5:76:6f:cb:e1:e9:66:93:e4:
f4:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:6C:D5:78:F4:2F:8D:E0:67:23:67:67:C6:CF:C2:BA:CB:C1:6E:05
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/29de46-c2e9-48fb-92d4-b7a564afb04b/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/29de46-c2e9-48fb-92d4-b7a564afb04b/1/5WzVePQvjeBnI2dnxs_CusvBbgU.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.206.236.0/24
IPv6:
2a10:2cc0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
61418
Signature Algorithm: sha256WithRSAEncryption
64:d6:db:b1:13:84:56:fe:67:8e:fe:f6:e3:20:03:03:f2:38:
7e:1b:62:47:c8:cf:d4:ae:f3:04:66:8a:c8:dd:af:31:01:84:
8e:b5:66:42:ed:2a:8f:f5:ba:d6:92:fa:45:40:49:c8:91:ed:
ea:b4:dd:1d:68:a1:4a:33:db:fb:60:24:24:be:20:e4:46:c1:
c5:64:fd:48:12:51:fe:76:c7:fc:ef:e7:7c:c8:0d:26:5b:03:
d4:35:43:03:df:f1:b6:5f:7d:e2:d0:41:7f:fc:ae:00:f4:99:
a3:73:6d:61:eb:b1:a9:3f:e4:47:ef:76:ee:8d:9f:5b:94:50:
8c:e2:e1:29:b9:08:24:10:61:1a:eb:5d:2f:22:ad:6e:d8:a0:
7b:4c:cf:e2:42:13:c1:f9:17:ce:a4:59:49:e4:cf:9f:05:78:
33:24:6f:ab:a0:48:b8:c7:84:95:49:b6:70:dd:08:de:64:c0:
60:46:08:da:19:e6:2a:3b:35:f2:6f:95:9b:8f:87:ca:d2:2f:
b5:f4:34:ec:4e:0e:67:e7:01:7f:84:cb:c7:3d:98:ba:6e:28:
17:37:f7:4d:e3:7c:c6:1e:c6:2f:0a:e6:f8:5b:2a:5b:4d:eb:
8f:5a:25:6f:9a:83:36:b0:12:3e:04:31:c9:4a:29:22:6c:cb:
4b:1a:58:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 03:20:57 2024 by rpki-client on console-fra.rpki-client.org