Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8u5baEnIyB9adjWVWIprpoIedns.cer
File: 8u5baEnIyB9adjWVWIprpoIedns.cer (raw, json)
Hash identifier: /6qQxgiNrTnrBxk8iofIwavv1gZ/v95/z0L7a/1Rels=
Subject key identifier: F2:EE:5B:68:49:C8:C8:1F:5A:76:35:95:58:8A:6B:A6:82:1E:76:7B
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CCA29B3E688E61396EB73A9442C8ADFDA
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/a5/002a88-3a85-476f-b452-60a039dd1bca/1/8u5baEnIyB9adjWVWIprpoIedns.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/a5/002a88-3a85-476f-b452-60a039dd1bca/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 12:32:59 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 200497
IP: 5.252.16.0/22
IP: 194.4.144.0/22
IP: 194.9.8.0/23
IP: 194.9.18.0/23
IP: 2a0c:e440::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:29:b3:e6:88:e6:13:96:eb:73:a9:44:2c:8a:df:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 12:32:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f2ee5b6849c8c81f5a763595588a6ba6821e767b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:25:4b:26:e9:c5:54:a0:c3:37:17:db:fd:3c:
b8:6d:e5:88:de:b8:a7:74:4e:61:11:d8:4e:07:72:
9b:05:33:0e:3a:40:4b:67:ee:9b:f9:87:0b:d9:3a:
c5:7e:45:5b:ed:f5:1b:87:8c:89:a2:84:11:ff:d1:
d6:05:9c:48:77:2d:eb:68:c8:03:c1:11:98:4f:6f:
32:83:35:16:4e:b2:fe:66:8a:b1:3b:e0:95:90:9e:
42:d2:98:54:ae:22:4f:fc:e1:8d:42:68:8a:0b:2b:
76:18:38:bc:88:56:30:52:0f:ce:e5:47:54:7d:e1:
92:a7:7a:70:68:ae:79:dd:f1:03:75:f9:65:cb:ed:
be:ff:cf:ed:ef:93:df:54:e6:32:00:04:0d:75:c5:
00:07:54:40:91:a5:e8:cf:41:22:d5:f7:c7:e0:88:
05:95:d8:5b:0c:98:85:96:54:0a:88:de:28:ed:2f:
54:2a:a2:09:25:25:8e:96:05:e4:ba:7d:7d:69:89:
46:3e:d5:4e:62:e7:1d:ca:b7:92:14:ac:2e:78:d9:
de:e9:bc:ec:43:ac:cf:8d:ca:f9:2d:f9:61:37:2c:
f4:49:e2:ba:b0:b2:06:c3:f7:62:fa:b0:69:1e:b4:
fa:a7:71:34:2c:0c:16:61:fe:0d:81:d7:f0:fa:24:
36:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:EE:5B:68:49:C8:C8:1F:5A:76:35:95:58:8A:6B:A6:82:1E:76:7B
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/002a88-3a85-476f-b452-60a039dd1bca/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/002a88-3a85-476f-b452-60a039dd1bca/1/8u5baEnIyB9adjWVWIprpoIedns.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.252.16.0/22
194.4.144.0/22
194.9.8.0/23
194.9.18.0/23
IPv6:
2a0c:e440::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
200497
Signature Algorithm: sha256WithRSAEncryption
2c:a1:df:a8:88:91:c1:93:5d:ca:ad:4f:6c:71:70:f6:2b:9d:
d0:b0:77:a0:bb:41:c1:73:67:75:24:dd:43:9f:c3:c0:14:e8:
b8:1b:07:d5:b8:30:6b:0f:c1:b7:5c:d6:d9:c5:e2:94:b2:e2:
69:cf:84:fd:83:43:f8:79:31:f9:39:9f:f3:46:37:d7:e7:87:
4c:91:b5:22:8b:0c:04:70:05:ce:d6:e9:66:04:04:96:52:b5:
83:7a:e5:38:ce:5b:d8:54:ac:10:93:f6:91:ac:ff:5c:3d:1e:
c2:26:fa:e7:cd:ad:29:f6:b2:55:46:4a:cf:94:88:6e:cf:b6:
e8:a4:f3:9f:d5:bb:8c:e8:6d:30:ae:e1:81:47:df:04:34:6f:
8f:90:2a:fc:9c:14:15:b6:b0:c8:f7:12:f5:0f:8c:f7:b0:0c:
c6:d1:22:8a:f3:0c:a9:cd:3f:d0:cc:fe:9e:28:e5:08:69:15:
5d:af:92:3d:9b:49:0e:bc:b4:0b:28:0f:99:3e:07:d1:6b:e2:
6b:16:15:8c:cb:69:72:da:b5:ee:89:66:82:d1:36:dd:1d:3a:
28:8c:1e:01:20:bb:7e:cb:9f:19:77:d4:ec:00:26:4a:18:d8:
94:50:6c:08:2c:99:b3:0a:9b:4b:60:63:6d:bf:c6:4c:ea:ee:
2a:d0:87:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:03:18 2024 by rpki-client on console-fra.rpki-client.org