Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5oClYQES3yA5h_MvDl4VrTXnENI.cer
File: 5oClYQES3yA5h_MvDl4VrTXnENI.cer (raw, json)
Hash identifier: TnNsvjmBmnwH8pcbloLoqUhTpb5DUxemnhSjh9eB7lc=
Subject key identifier: E6:80:A5:61:01:12:DF:20:39:87:F3:2F:0E:5E:15:AD:35:E7:10:D2
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018D0515B9040622A8AAF5C0286A671585D7
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/b9/b40d25-f444-4f60-b162-d1502f7cf234/1/5oClYQES3yA5h_MvDl4VrTXnENI.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/b9/b40d25-f444-4f60-b162-d1502f7cf234/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Sat 13 Jan 2024 23:08:46 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: IP: 213.134.2.0/24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:05:15:b9:04:06:22:a8:aa:f5:c0:28:6a:67:15:85:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 13 23:08:46 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e680a5610112df203987f32f0e5e15ad35e710d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:aa:33:04:dd:ef:3a:f5:08:d7:4e:8b:2d:93:
f3:5a:0b:cf:1a:19:bd:59:84:a7:93:44:c0:f6:60:
3f:29:03:e7:66:6c:70:5a:41:09:a8:36:a2:da:29:
60:0c:6c:c7:a5:90:0b:c4:b2:bb:8c:ad:7d:d9:9c:
cb:64:1f:75:f2:8c:36:8e:0e:bd:e0:55:7c:33:71:
ae:ae:d6:89:6a:9e:1c:3b:9b:fa:3d:c5:9e:0e:bf:
1b:83:c7:26:9c:0e:55:dd:c8:85:04:44:ce:9e:de:
93:9e:70:0d:72:4d:a0:fa:3c:d8:24:3c:77:c5:b7:
98:6f:38:bd:7a:91:7c:b9:9a:1a:33:97:d0:f2:78:
eb:12:ee:66:95:fa:05:68:d1:c9:6f:73:61:d5:f6:
08:55:69:f1:ae:64:de:9e:87:0e:03:2e:a8:b2:8a:
cc:48:fd:b1:f0:6a:17:ea:d1:ca:c9:e8:44:26:5b:
00:8d:d6:53:3c:e1:3d:45:48:c5:85:20:9a:27:8b:
a4:76:1e:e4:08:68:8c:7a:96:24:69:27:bd:33:ad:
c9:af:e6:18:f1:9e:9a:c1:ad:4e:9f:55:76:a3:57:
55:97:f4:a5:fe:d8:30:ec:34:1e:1a:b1:88:8d:ac:
7c:a8:d1:61:47:e9:8b:9a:d5:3b:0c:71:7d:69:39:
94:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:80:A5:61:01:12:DF:20:39:87:F3:2F:0E:5E:15:AD:35:E7:10:D2
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/b40d25-f444-4f60-b162-d1502f7cf234/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/b40d25-f444-4f60-b162-d1502f7cf234/1/5oClYQES3yA5h_MvDl4VrTXnENI.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.134.2.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:83:6f:59:c6:6f:f8:92:5d:92:70:ca:6f:cc:01:7a:8f:71:
bb:fb:56:3f:cb:47:1b:ea:db:66:06:28:42:6c:d2:a2:ac:5d:
d7:d0:58:0e:28:84:a9:26:62:c7:be:dd:4b:b8:19:4d:b8:82:
8f:55:0e:1c:53:47:2b:b3:d0:29:6d:89:64:f1:3f:44:43:79:
2e:eb:18:07:c3:65:70:72:ca:e0:65:70:4a:6c:b7:fb:69:4a:
0f:aa:60:59:5e:c4:a1:8b:bb:34:62:e9:04:a6:c0:e9:b8:56:
52:78:af:a6:94:b4:ef:d4:67:c6:ed:13:82:c8:15:ae:4d:62:
11:f4:da:23:af:b4:50:ea:40:c8:aa:b7:96:3e:2f:4a:7f:88:
da:9e:d0:23:2e:ee:b4:df:f4:6e:3a:21:8a:66:db:48:8a:a4:
72:f9:37:e6:36:cd:77:87:c1:5a:97:21:06:b5:55:f7:fe:7f:
ea:75:1e:a5:05:02:c2:f9:0d:f9:18:86:25:5d:79:6d:2a:51:
86:95:08:cf:6f:93:2f:9b:5b:17:ba:49:70:ec:bf:5c:da:7e:
a2:84:10:09:4d:2e:5c:b4:86:42:2c:6d:ca:bd:7a:83:05:98:
ad:24:ff:0a:9a:5d:30:93:d2:43:92:a3:db:07:8e:4e:68:91:
76:86:d4:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 08:44:01 2024 by rpki-client on console-ams.rpki-client.org