Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5qirioB4uztX5W_3wL1Npj7oLIs.cer
File: 5qirioB4uztX5W_3wL1Npj7oLIs.cer (raw, json)
Hash identifier: flCrIHbpB+A9yXhR6SiH+kMo69k3SN2EPh/on+rZPIk=
Subject key identifier: E6:A8:AB:8A:80:78:BB:3B:57:E5:6F:F7:C0:BD:4D:A6:3E:E8:2C:8B
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC348969FEF6DD58CABF70167882AE875
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/26/228e16-f808-4471-a984-364ee2859f2c/1/5qirioB4uztX5W_3wL1Npj7oLIs.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/26/228e16-f808-4471-a984-364ee2859f2c/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 04:29:23 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 60086
IP: 185.59.0.0/22
IP: 2a02:66a0::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 26 Apr 2024 14:10:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:48:96:9f:ef:6d:d5:8c:ab:f7:01:67:88:2a:e8:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 04:29:23 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e6a8ab8a8078bb3b57e56ff7c0bd4da63ee82c8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:0d:da:d8:05:87:95:aa:92:6f:1d:a1:c5:eb:
f4:41:47:6a:08:a8:1a:04:61:85:75:93:cf:b8:4e:
d8:3b:a1:c8:6b:02:bf:e7:ae:1c:6b:34:8f:58:60:
7c:9b:03:9d:d5:b6:52:9b:ba:99:0a:5f:b1:40:86:
44:99:69:69:35:a3:a3:1f:08:66:37:27:77:e6:46:
b1:4a:52:a4:60:e0:cf:65:37:77:ba:62:e6:17:09:
f4:80:79:d2:52:e4:6d:b6:e7:cb:3e:57:ba:a9:d7:
40:f0:64:5d:14:8e:50:49:7b:ec:f0:2a:8d:b5:71:
c0:c6:63:b3:14:07:96:83:7e:19:ac:a4:f6:c4:64:
a0:2f:8a:5b:69:34:1c:c1:9c:e0:5c:9a:42:07:3d:
05:87:ae:db:6f:ac:bd:b2:c5:92:ea:5a:23:3c:8f:
73:7f:b0:3f:fd:1c:29:37:58:ee:bb:37:68:62:b7:
be:0b:ba:b4:fd:0a:48:9e:43:f4:b9:e0:83:7d:01:
48:6d:84:d1:71:28:29:b3:44:c2:75:22:0b:7a:97:
5d:d6:36:80:00:24:5e:ff:2b:c5:e8:f5:01:44:38:
16:68:09:33:20:f8:92:54:5a:a0:f5:e1:db:6f:a1:
46:e9:b6:6e:fe:44:63:10:62:bb:66:0d:d8:9f:a5:
b5:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:A8:AB:8A:80:78:BB:3B:57:E5:6F:F7:C0:BD:4D:A6:3E:E8:2C:8B
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/228e16-f808-4471-a984-364ee2859f2c/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/228e16-f808-4471-a984-364ee2859f2c/1/5qirioB4uztX5W_3wL1Npj7oLIs.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.59.0.0/22
IPv6:
2a02:66a0::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
60086
Signature Algorithm: sha256WithRSAEncryption
69:2d:2d:36:5c:0b:30:0e:00:08:78:59:bf:03:f8:42:96:32:
3c:22:8e:66:3b:37:4f:60:71:db:63:f1:2f:45:25:9a:f7:ea:
a7:70:44:95:b4:94:d5:b9:ba:8d:30:32:20:11:a5:f8:27:6d:
e1:0a:8d:ad:fa:3b:c5:3c:0a:be:98:40:d2:a6:c7:f0:b7:17:
4e:5f:2d:8e:70:2f:2b:82:32:06:b9:04:6e:b5:9b:b4:18:fa:
11:a5:64:9e:bd:95:2c:27:69:76:bc:57:82:d5:25:49:8f:1d:
89:d6:c7:97:2c:0a:83:09:82:60:0c:ca:7c:84:9a:8e:fa:16:
96:83:51:e9:e8:87:d2:d0:26:13:a0:9c:14:1f:0b:e2:c8:88:
68:80:97:d9:f8:90:1a:10:6d:d1:b6:64:26:e7:7a:35:bb:ae:
7b:8d:52:8b:c8:c7:6c:8c:1e:e2:20:fd:d1:6f:0a:70:5b:ac:
03:8f:87:d5:1d:80:39:56:92:57:05:e9:1c:9c:28:55:a5:3d:
67:37:0f:3a:bf:11:a9:b7:73:98:82:51:35:10:f4:b3:5b:c3:
5e:95:1a:f3:bf:18:90:73:2f:23:9c:dd:6f:a1:4f:67:a7:64:
8d:49:01:f8:72:4d:c1:86:8d:54:cc:35:32:97:9f:ba:34:09:
11:e9:28:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 23:05:54 2024 by rpki-client on console-fra.rpki-client.org