Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7HDF2GfeIA8BSGsaiAqUuEldciA.cer
File: 7HDF2GfeIA8BSGsaiAqUuEldciA.cer (raw, json)
Hash identifier: Hp/1HaCXS/wHoOoyZ1B42ngs5E2BbvJ/pFXKRke+ZbQ=
Subject key identifier: EC:70:C5:D8:67:DE:20:0F:01:48:6B:1A:88:0A:94:B8:49:5D:72:20
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC500FF0DA949B6A97F69F12BA3CE75FE
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/ea/6ef54c-b034-49e6-8da4-c5ad153c2d46/1/7HDF2GfeIA8BSGsaiAqUuEldciA.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/ea/6ef54c-b034-49e6-8da4-c5ad153c2d46/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 12:30:26 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 204454
IP: 185.244.52.0/22
IP: 2a0d:2880::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 21 Apr 2024 02:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:00:ff:0d:a9:49:b6:a9:7f:69:f1:2b:a3:ce:75:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 12:30:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ec70c5d867de200f01486b1a880a94b8495d7220
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:49:58:12:de:7b:77:b4:6a:41:31:6f:69:42:
2a:17:11:30:86:10:0d:19:bf:40:d8:08:f0:18:d3:
11:25:32:0e:ca:0a:27:ec:d0:01:c9:c5:cc:71:17:
fa:91:00:e1:cd:04:1d:a1:e5:14:6f:8c:21:bb:c2:
77:50:96:a5:22:6c:c3:1e:a3:d4:19:39:d4:2e:7e:
b1:cb:27:cc:1e:fc:c6:e6:86:18:10:f9:36:60:10:
aa:6f:f3:d8:60:32:f2:37:ae:58:47:15:27:e4:99:
d0:a1:90:f5:27:a2:ca:88:60:e8:5c:0e:0f:94:0c:
d5:ca:66:7a:ba:42:eb:3b:bd:15:7d:f4:d0:57:a1:
22:42:6c:3b:b1:04:7e:dc:b2:06:e0:68:42:2d:f9:
bf:9f:fa:01:0a:4f:4b:1b:6f:55:8d:7d:d2:4f:1e:
22:7e:94:b0:c2:39:49:db:96:16:c4:cb:1b:48:a5:
e5:f0:7b:8d:59:72:4d:d6:53:3a:13:52:de:ba:70:
7d:32:6c:f2:a0:d6:1b:20:14:da:34:74:d2:98:de:
76:70:f4:f8:35:40:cb:b8:60:60:b9:81:1e:c8:7b:
79:30:c5:a2:d5:c3:b5:6e:ee:cd:f2:59:ed:7e:49:
b1:81:98:24:77:57:af:c9:47:ee:4c:16:11:b6:96:
35:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:70:C5:D8:67:DE:20:0F:01:48:6B:1A:88:0A:94:B8:49:5D:72:20
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/6ef54c-b034-49e6-8da4-c5ad153c2d46/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/6ef54c-b034-49e6-8da4-c5ad153c2d46/1/7HDF2GfeIA8BSGsaiAqUuEldciA.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.244.52.0/22
IPv6:
2a0d:2880::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
204454
Signature Algorithm: sha256WithRSAEncryption
6c:b1:22:7a:df:06:10:98:0f:d3:ab:99:47:28:cd:ed:bc:00:
2c:2c:85:dd:ce:17:ae:7a:3e:33:c2:d9:c6:cf:c8:f2:92:cf:
5d:f7:4b:2d:3a:50:a4:49:1f:b8:ca:f3:8b:ff:25:ba:ed:c3:
1d:d7:43:1e:f1:4b:8c:11:41:96:60:2d:f5:a8:9d:a4:43:db:
3c:cd:75:7e:f5:f2:ee:be:be:5a:9e:bc:05:7b:d1:03:b2:5d:
3c:c5:51:80:7b:b6:86:e1:c6:62:d7:91:96:76:77:83:f6:69:
f6:32:ae:c8:ed:0e:f9:06:4d:d2:03:ab:4b:d1:29:2e:d0:df:
37:48:5d:64:9d:a9:d0:de:21:74:94:c0:3d:79:19:95:80:44:
b3:17:20:1d:f5:46:22:44:4f:44:2a:22:f6:99:ab:b0:f3:48:
f1:ca:65:81:f8:f1:f4:bc:f8:4a:eb:cf:7e:17:85:cc:c3:6d:
3b:8a:82:c6:cc:b2:20:1b:79:dc:cc:b5:8a:45:93:4d:10:2a:
d2:39:99:26:a9:8c:2c:7c:f7:17:4e:0b:e6:89:77:f4:a9:c8:
b6:c6:ad:df:f0:1c:8a:9b:ae:1c:63:56:c2:b8:44:c5:51:87:
bc:58:10:4a:c6:64:12:f6:7f:21:fe:1b:c8:e8:73:3f:23:de:
3f:26:74:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 20 09:47:45 2024 by rpki-client on console-fra.rpki-client.org