Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7rWbeRx6EdIyqVx-8WkoXK6mlbw.cer
File: 7rWbeRx6EdIyqVx-8WkoXK6mlbw.cer (raw, json)
Hash identifier: sg8QHnbjKPIPuklLDirtP7pJkP3LYGX+Kf9csyu7fjE=
Subject key identifier: EE:B5:9B:79:1C:7A:11:D2:32:A9:5C:7E:F1:69:28:5C:AE:A6:95:BC
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC500662011A280F4E73F8F514D6BAD4B
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/09/efff71-7d11-4a1a-8ad3-a67d8c7ed7ca/1/7rWbeRx6EdIyqVx-8WkoXK6mlbw.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/09/efff71-7d11-4a1a-8ad3-a67d8c7ed7ca/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 12:29:46 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 201922
AS: 207167
AS: 208143
AS: 211085
IP: 85.209.28.0/22
IP: 185.59.144.0/22
IP: 185.179.32.0/22
IP: 185.234.132.0/22
IP: 2a02:6c20::/32
IP: 2a0a:7780::/29
IP: 2a10:d4c0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:00:66:20:11:a2:80:f4:e7:3f:8f:51:4d:6b:ad:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 12:29:46 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=eeb59b791c7a11d232a95c7ef169285caea695bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:46:92:f3:91:7b:ae:6e:8c:c0:a2:72:a6:a5:
a6:f1:19:4e:15:c0:8e:c1:69:b4:f2:6a:2b:95:25:
9e:20:52:0d:66:56:dc:ac:7b:34:3d:e3:72:d3:19:
7b:92:e1:c3:cb:99:84:a5:9c:9b:92:db:38:70:55:
1b:f5:24:51:2d:41:46:a8:5d:d2:12:bf:5a:8c:1c:
95:9e:4f:07:fe:bf:0f:f7:db:a3:ac:06:9a:24:eb:
48:b8:cf:57:95:16:6e:2c:94:5d:9a:d0:83:84:04:
15:7b:e9:ba:c3:11:38:4b:aa:75:bc:91:5f:a7:e8:
dc:7f:43:29:a4:43:10:8d:3f:f2:9f:de:6a:97:56:
fd:84:41:43:bd:b4:14:13:5a:66:91:40:2d:8c:c1:
1e:98:1d:3b:4a:7e:fd:74:40:84:8e:92:04:53:27:
5e:ae:4e:65:98:8f:4a:f6:24:d3:93:e1:fe:0a:4a:
be:b3:bb:55:71:d3:0d:0d:34:f1:9f:cf:98:7c:15:
11:01:d9:38:f9:ba:de:17:3d:ce:59:c4:33:b1:78:
65:a5:4f:4a:c4:26:37:90:db:ac:66:a7:b6:a7:ba:
bd:3a:3c:41:d2:e8:a2:6d:82:64:58:a7:cf:5a:6d:
39:3a:af:30:bb:a0:cf:99:3e:42:8f:2c:61:96:b2:
05:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:B5:9B:79:1C:7A:11:D2:32:A9:5C:7E:F1:69:28:5C:AE:A6:95:BC
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/efff71-7d11-4a1a-8ad3-a67d8c7ed7ca/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/efff71-7d11-4a1a-8ad3-a67d8c7ed7ca/1/7rWbeRx6EdIyqVx-8WkoXK6mlbw.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.209.28.0/22
185.59.144.0/22
185.179.32.0/22
185.234.132.0/22
IPv6:
2a02:6c20::/32
2a0a:7780::/29
2a10:d4c0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
201922
207167
208143
211085
Signature Algorithm: sha256WithRSAEncryption
1b:92:96:6d:e6:60:e5:76:75:f3:45:a9:d7:64:62:30:f0:0e:
27:2e:37:3d:37:ef:13:1d:56:dd:b9:10:7b:ac:7c:8e:f8:e0:
fa:32:0b:74:68:94:12:e1:54:ec:f0:76:0e:55:30:1f:14:da:
fc:c8:69:02:9a:83:3a:ae:de:84:92:61:72:0f:c6:92:75:96:
0b:43:13:a5:4a:6f:91:b9:15:b2:67:7f:b6:d5:0a:d3:15:3c:
48:0e:ec:90:08:ae:5c:c6:79:2a:31:7c:d3:76:d3:7d:2a:e4:
99:6a:33:b9:b4:73:5e:a1:b6:48:af:e3:05:f7:95:ca:04:be:
fc:7f:16:c2:f8:b5:8d:e8:83:a7:7e:c7:44:6a:21:63:48:96:
a6:19:db:f9:21:6b:73:50:32:ca:b4:b5:b7:4c:f4:97:87:3c:
5c:6a:32:d4:f7:b2:a4:27:5c:84:4a:e4:80:02:1c:54:c8:10:
5c:e7:f0:43:5b:04:72:67:6b:18:c0:d0:8d:3d:58:4d:77:e8:
5e:37:c4:00:2d:5d:3d:e8:62:ea:43:50:c7:21:3a:da:35:6d:
ec:de:6a:d2:24:6a:40:bd:0b:b0:a2:a9:87:fa:dc:9b:91:18:
ab:9d:fb:b1:c3:1b:82:91:b7:95:36:5b:a6:5e:61:85:8f:b0:
f3:0f:bb:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 07:09:52 2024 by rpki-client on console-fra.rpki-client.org