Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9QG54gYW1oa0BdqQavpZdjUGNkA.cer
File: 9QG54gYW1oa0BdqQavpZdjUGNkA.cer (raw, json)
Hash identifier: bF+AJE3gZnVHQgCr5ZRfIbEyVdPNV5aEbKRb23VCb78=
Subject key identifier: F5:01:B9:E2:06:16:D6:86:B4:05:DA:90:6A:FA:59:76:35:06:36:40
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC79510E79D16E647546E33F47B34B9E5
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/44/7afce4-218b-47ed-95ab-75d5843aa489/1/9QG54gYW1oa0BdqQavpZdjUGNkA.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/44/7afce4-218b-47ed-95ab-75d5843aa489/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 00:31:24 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 34204
IP: 195.95.222.0/23
IP: 195.135.244.0/22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 26 Apr 2024 08:00:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:95:10:e7:9d:16:e6:47:54:6e:33:f4:7b:34:b9:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 00:31:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f501b9e20616d686b405da906afa597635063640
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:ac:1d:a7:42:df:ee:c9:b6:3b:8d:e7:a9:31:
b1:bd:15:b9:e4:c3:db:51:3c:b4:1d:de:4f:bf:78:
fe:35:06:1c:5f:85:41:c8:3f:c0:0a:45:e8:0a:83:
79:dd:7e:e3:ee:26:02:02:38:97:3d:3c:9e:ce:59:
9d:29:5c:a6:7f:76:bb:c8:1d:26:f3:cb:5d:d2:39:
47:76:a6:29:fd:6f:02:5b:a6:24:10:0c:a0:cd:ce:
36:c4:93:be:9e:ae:c4:d3:89:7f:52:80:0e:9c:b8:
91:6f:f4:56:d6:cb:76:76:7b:c9:79:b3:72:7a:76:
4f:8b:1a:0a:64:64:20:8a:69:0a:0d:86:aa:7b:52:
ad:20:e4:b1:de:fd:88:d0:10:1d:ce:a7:4b:81:d7:
b6:bf:ea:c1:2f:fd:00:62:47:e8:85:4b:f4:9c:bb:
16:44:c5:24:ed:12:dd:b1:46:8f:ff:ac:eb:dd:91:
7a:03:2a:57:d0:dd:21:a5:5a:9c:c7:50:65:59:8f:
72:6e:15:56:c2:c6:61:15:f6:cd:7a:b0:29:aa:19:
fb:3d:c6:a3:63:6a:e6:ea:24:57:5e:d4:f8:e6:02:
43:d9:a2:c0:30:e3:8e:63:a1:4e:6c:43:2c:f1:1a:
99:c8:e7:66:45:88:df:a5:d8:13:9d:f6:7c:c6:06:
7d:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:01:B9:E2:06:16:D6:86:B4:05:DA:90:6A:FA:59:76:35:06:36:40
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/7afce4-218b-47ed-95ab-75d5843aa489/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/7afce4-218b-47ed-95ab-75d5843aa489/1/9QG54gYW1oa0BdqQavpZdjUGNkA.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.95.222.0/23
195.135.244.0/22
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
34204
Signature Algorithm: sha256WithRSAEncryption
78:d0:e9:4b:0c:45:25:f5:88:0a:c8:c9:f5:84:dc:0a:e6:96:
5f:bf:cc:2f:fc:b9:83:19:b9:7d:03:2e:7c:8e:59:41:6f:b3:
f8:1c:c0:17:dd:2e:57:c1:df:7b:90:cb:82:ab:63:41:03:86:
2f:81:6f:a9:8f:3f:07:ad:b9:67:65:b0:6e:ad:d6:38:d8:1a:
6d:25:da:35:9b:6c:7f:e9:1b:4b:c3:b6:bc:39:99:22:42:1f:
0a:7d:44:76:9d:8d:dd:49:66:c5:7a:6f:be:3b:fe:ba:45:e5:
ef:4a:89:c1:d7:af:67:df:d1:cd:ea:d0:57:53:91:55:65:d1:
bc:e6:60:17:ee:b0:9e:95:62:67:47:35:3c:11:52:c7:c8:65:
79:d3:0e:92:de:a8:ee:89:d5:d5:c1:ea:83:97:63:b9:b2:be:
e4:0b:b7:cc:60:2c:37:79:e0:d6:af:e1:08:44:53:2c:30:ed:
75:9e:b2:d4:6f:cb:24:cf:9c:b3:d8:08:97:b9:36:1f:ae:f9:
ef:75:c4:21:61:9e:2b:72:ed:28:2d:0a:52:08:93:51:63:e2:
73:75:ea:8c:7e:91:6a:dc:46:3b:85:b7:7f:36:17:dd:41:6e:
28:c9:5c:1a:8d:83:10:92:02:7a:50:a0:71:e9:51:82:f4:8b:
6b:ef:ed:15
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Apr 25 09:02:29 2024 by rpki-client on console-fra.rpki-client.org