Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5XB6RVkqydFxmoV2lgMXeCm0bgo.cer
File: 5XB6RVkqydFxmoV2lgMXeCm0bgo.cer (raw, json)
Hash identifier: LYbs0nG4v85F0FgCXyVgLMKukAvEtOm2Yz1nIH5sFvw=
Subject key identifier: E5:70:7A:45:59:2A:C9:D1:71:9A:85:76:96:03:17:78:29:B4:6E:0A
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC64B14CAB22B111D7B59ABDDEC530029
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/f1/1446aa-6e41-45c0-b09a-32c3658b25be/1/5XB6RVkqydFxmoV2lgMXeCm0bgo.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/f1/1446aa-6e41-45c0-b09a-32c3658b25be/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 18:30:58 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 12347
IP: 93.189.64.0/21
IP: 2a02:410::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 15:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4b:14:ca:b2:2b:11:1d:7b:59:ab:dd:ec:53:00:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 18:30:58 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e5707a45592ac9d1719a85769603177829b46e0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:15:1f:f0:ba:a3:4b:2c:e1:ed:18:4c:26:15:
d8:a7:9d:eb:14:bf:fe:2f:69:12:0d:e8:60:3f:6b:
bf:d7:c1:39:aa:46:c2:4a:40:77:d0:fe:cb:cc:37:
94:10:b0:2d:80:85:e0:1f:79:a5:d3:58:f0:0b:a1:
2a:5f:8c:61:f3:0d:c5:c1:1e:ff:63:cb:76:7c:88:
16:cd:4c:5e:54:11:93:72:e6:13:76:0a:6c:30:59:
c8:71:a5:53:b2:4d:e9:ba:af:df:d5:aa:44:ff:e6:
a5:3d:b4:66:3d:5f:24:49:19:97:78:70:2f:8a:eb:
de:c6:47:16:b7:d9:38:f1:b9:ab:ba:a6:99:07:c3:
4f:34:fe:1d:be:e1:cb:df:57:50:13:72:7a:f4:ab:
97:be:25:9b:ca:60:0c:d8:71:5b:df:ca:e7:8e:04:
ca:fe:8c:2c:d1:bf:a7:14:17:23:71:70:03:28:b7:
68:b6:07:13:db:46:f6:66:87:5c:e2:b2:a9:ee:65:
8b:bf:c4:98:5f:bd:d2:67:eb:94:28:ea:fd:67:1d:
ff:e8:85:d1:cd:a1:b9:52:da:df:a7:68:78:46:d3:
d9:8d:3d:e4:46:30:db:27:57:01:50:39:2a:bf:12:
d8:2f:99:6a:a9:99:b3:4b:11:2f:bb:4e:3e:95:6d:
38:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:70:7A:45:59:2A:C9:D1:71:9A:85:76:96:03:17:78:29:B4:6E:0A
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/1446aa-6e41-45c0-b09a-32c3658b25be/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/1446aa-6e41-45c0-b09a-32c3658b25be/1/5XB6RVkqydFxmoV2lgMXeCm0bgo.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.189.64.0/21
IPv6:
2a02:410::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
12347
Signature Algorithm: sha256WithRSAEncryption
21:63:f5:a2:46:75:e3:53:8f:90:30:73:e8:7d:34:59:11:40:
fd:dd:72:1a:1d:a7:2e:dd:ff:76:ad:aa:4c:ae:e8:2c:07:91:
f4:e3:48:62:27:82:5a:05:6a:58:1f:ed:20:4e:dc:02:98:a7:
a0:ce:c4:37:f4:37:3a:e6:db:57:e0:48:71:d0:af:21:c1:5f:
19:93:1b:96:a6:96:c9:54:3b:f1:12:82:ea:97:f0:ae:a6:d4:
7f:2c:f8:0c:60:a3:0c:f2:a1:3a:8e:1b:91:e6:f2:7f:53:3c:
73:84:38:17:25:8c:58:2b:91:dc:82:73:43:a7:11:e0:04:79:
9d:eb:19:09:b6:7e:78:8b:9a:2b:05:3a:9a:1d:50:23:85:92:
87:97:d8:4e:84:4f:6c:9d:d4:6e:53:dc:a1:d1:a8:01:67:ab:
0a:59:9c:47:3c:56:81:67:2b:ca:17:3d:77:f6:13:4c:75:1c:
03:f0:2f:ff:3a:81:b1:06:54:db:64:1d:e8:2b:c7:78:95:1b:
53:18:53:0d:7c:e9:64:43:ab:7f:fc:7f:21:51:73:a7:7f:e3:
98:63:fd:85:28:6b:c2:3a:e8:d7:4f:0a:5e:5c:f4:61:2a:ca:
28:5f:b6:52:b1:fe:23:70:a2:cb:b8:e2:08:63:96:fd:d7:ef:
79:46:c0:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 19:02:20 2024 by rpki-client on console-fra.rpki-client.org