Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a4BhsaCMBS8LELQTqZQv1zLmXY.cer
File: 7a4BhsaCMBS8LELQTqZQv1zLmXY.cer (raw, json)
Hash identifier: 9YBZqShHs8WkRbAr1BSK5k9S+4WQQn118c0gdX6RlAQ=
Subject key identifier: ED:AE:01:86:C6:82:30:14:BC:2C:42:D0:4E:A6:50:BF:5C:CB:99:76
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC6B92822D7AEEEDA6D8A5F6C4978F7E7
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/5f/29a52e-58a0-4238-aeb1-8b7a4abf1ca2/1/7a4BhsaCMBS8LELQTqZQv1zLmXY.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/5f/29a52e-58a0-4238-aeb1-8b7a4abf1ca2/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 20:31:12 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 200319
IP: 194.48.224.0/22
IP: 2a0c:f440::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 21 Apr 2024 00:45:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b9:28:22:d7:ae:ee:da:6d:8a:5f:6c:49:78:f7:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 20:31:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=edae0186c6823014bc2c42d04ea650bf5ccb9976
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:94:84:45:bb:25:19:08:14:cb:c8:25:7b:15:
48:3a:cd:65:cb:9e:44:7e:a1:e2:a0:fe:e4:4d:9f:
a6:e5:a4:94:b7:2a:4a:da:50:f4:a7:ca:ea:73:4d:
22:3d:05:b0:91:97:ff:c6:86:b1:89:38:a7:cc:b5:
50:16:66:c4:b1:ef:57:23:b3:ac:0b:a0:4a:0b:f6:
a5:94:66:70:b0:c8:1a:e7:1d:d6:1f:fe:fc:7b:0c:
37:cb:58:aa:de:af:af:47:e6:76:21:cc:8c:ba:d8:
34:97:80:2f:35:0c:7b:53:02:88:22:87:de:e9:1e:
09:a2:a7:46:e9:61:63:c5:2d:46:a9:aa:1a:c2:0d:
8f:a6:cf:d8:c0:ff:47:0c:9a:06:ef:ed:51:a3:c9:
0b:72:ab:4e:23:b2:01:5c:82:bc:b6:18:85:b9:bb:
cd:9c:b8:e0:26:92:14:7a:f9:c3:6f:87:fc:f3:6a:
8f:ef:e3:c8:bb:6a:8f:71:23:20:42:3e:e0:c5:fd:
f4:7b:ef:ea:8f:d2:6c:a1:24:6b:2e:ed:57:08:e9:
a6:4e:37:5e:1d:19:71:e7:2e:43:ec:0e:1a:08:47:
01:c6:0d:1c:d5:2c:c0:e4:55:dd:51:71:e2:88:d4:
76:76:f8:c0:26:1e:70:b7:e5:cb:6c:c5:ad:8f:1b:
dd:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:AE:01:86:C6:82:30:14:BC:2C:42:D0:4E:A6:50:BF:5C:CB:99:76
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/29a52e-58a0-4238-aeb1-8b7a4abf1ca2/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/29a52e-58a0-4238-aeb1-8b7a4abf1ca2/1/7a4BhsaCMBS8LELQTqZQv1zLmXY.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.48.224.0/22
IPv6:
2a0c:f440::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
200319
Signature Algorithm: sha256WithRSAEncryption
95:d1:f4:c1:de:f1:d2:be:f6:ba:91:fd:f1:a1:8e:17:d6:e6:
c0:c1:e4:e0:07:99:76:11:d1:bc:58:36:b0:29:98:a0:ce:55:
d4:07:3f:41:66:a9:58:9f:bb:bb:1a:fc:d4:1b:27:ed:97:57:
99:b2:62:98:43:8a:d0:1c:c7:6f:67:26:b3:2c:34:19:c6:29:
21:61:6e:07:e8:71:31:c4:7c:d0:fb:ec:83:a5:18:a3:96:73:
bf:48:06:b3:2e:46:3a:7f:ca:3c:35:52:ef:79:e9:be:c6:d5:
ae:79:1d:be:a2:d7:6d:d1:b7:02:62:bf:c8:79:35:45:ee:41:
70:ab:e0:cc:f6:a0:08:82:57:f2:db:47:62:66:bf:b5:af:d6:
a3:e0:7f:1f:ee:a0:4d:16:e6:6f:dc:52:81:71:1f:a8:b3:26:
b0:ff:68:b2:48:02:b5:4f:da:9c:3a:b0:6c:33:8d:73:66:02:
7b:3d:00:33:24:57:01:0f:39:4e:fb:17:ed:d9:02:a0:24:41:
90:07:65:79:17:12:90:eb:21:d0:d3:1b:78:b4:e1:d1:08:77:
1b:05:f5:6a:01:83:2f:bd:fe:06:29:a6:95:e4:2b:99:2a:99:
46:18:52:7d:17:62:13:35:ab:3b:a8:5c:99:ee:11:8b:58:61:
8e:27:a2:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 20 03:30:51 2024 by rpki-client on console-ams.rpki-client.org