Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9bMQ6dROhHDWzYAJWQZssA8pHvo.cer
File: 9bMQ6dROhHDWzYAJWQZssA8pHvo.cer (raw, json)
Hash identifier: j/GbN0AKSRFXX3K973hv4ZMwL3SEfJN8EmhhppxOztc=
Subject key identifier: F5:B3:10:E9:D4:4E:84:70:D6:CD:80:09:59:06:6C:B0:0F:29:1E:FA
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018DC1FD083AD1879DFD4E516F259AB39A0B
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/18/f48de1-9f33-4f0a-8676-e836eb3d2f1f/1/9bMQ6dROhHDWzYAJWQZssA8pHvo.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/18/f48de1-9f33-4f0a-8676-e836eb3d2f1f/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 19 Feb 2024 15:30:01 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 21308
IP: 193.239.142.0/23
IP: 2001:67c:e00::/48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 20 Apr 2024 08:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:c1:fd:08:3a:d1:87:9d:fd:4e:51:6f:25:9a:b3:9a:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Feb 19 15:30:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f5b310e9d44e8470d6cd800959066cb00f291efa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:ff:4e:78:20:7e:b1:da:7c:47:fb:b1:46:b5:
a5:b8:b0:16:1c:82:f1:c1:68:f9:68:ee:ea:05:44:
18:f4:61:09:32:95:2e:80:25:eb:4b:16:e1:96:9d:
08:ab:dd:43:a5:77:3a:a0:c9:88:ea:b4:7a:8e:e8:
6f:ef:e0:26:ff:eb:03:28:57:76:11:5e:16:4a:ee:
ab:eb:a7:3b:4e:ce:83:f2:d7:d7:68:d2:c3:9b:75:
27:22:bf:f8:72:11:d4:a8:8a:9e:74:7c:4a:1e:1d:
f9:5f:ad:35:99:35:22:9e:2e:88:ef:85:b6:3a:54:
b7:f5:c1:7a:21:bd:48:ca:9d:1e:a7:a9:a1:b6:9a:
0e:00:6a:1a:43:76:8b:65:35:6a:3d:d5:b7:f6:43:
c8:9b:4a:84:39:21:fe:21:f2:1d:ae:44:9d:97:9d:
6d:bd:74:b5:50:6a:fd:80:12:a3:68:c8:a6:87:a2:
99:60:bf:ea:dc:b3:2d:f4:6c:c1:77:32:07:3f:97:
c8:34:a6:e0:93:c3:66:bb:b6:e2:25:e4:6e:24:b5:
36:cc:7c:2d:e3:38:f5:31:b2:b7:09:f9:e4:f3:41:
1f:c2:42:84:0f:6d:87:8d:a1:c8:98:07:29:be:32:
38:c2:5f:14:1f:e4:47:7b:ce:27:0c:ea:b2:b3:0e:
bf:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:B3:10:E9:D4:4E:84:70:D6:CD:80:09:59:06:6C:B0:0F:29:1E:FA
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/f48de1-9f33-4f0a-8676-e836eb3d2f1f/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/f48de1-9f33-4f0a-8676-e836eb3d2f1f/1/9bMQ6dROhHDWzYAJWQZssA8pHvo.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.239.142.0/23
IPv6:
2001:67c:e00::/48
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
21308
Signature Algorithm: sha256WithRSAEncryption
2d:51:bf:fc:c2:3e:b4:cb:6f:a7:17:06:7a:00:3e:b3:c9:e3:
57:ad:fd:f2:3d:57:d3:60:36:92:e6:cc:a9:20:b2:59:4a:91:
ef:90:3d:f6:e0:e2:7d:fb:ad:b0:d3:55:37:8c:b2:ca:ac:52:
f7:1e:64:10:c6:e5:21:ae:e0:82:3a:0b:93:57:d0:0d:f7:9e:
6a:fd:97:85:f7:b4:19:ef:5e:c5:46:58:38:ea:92:9d:4d:67:
5e:c4:8a:7d:ed:e6:9a:7e:30:89:8b:0e:0d:d3:e3:b8:e2:02:
d8:7e:94:82:df:3f:d1:0d:e2:56:7a:c8:0b:95:33:7c:bd:f8:
62:9b:83:dd:6e:0c:59:62:43:70:1b:fd:3a:8d:86:16:49:dc:
39:97:9d:c9:40:67:56:80:9a:9c:6e:97:54:e3:68:5d:fc:a5:
11:87:fa:95:1a:b4:19:6a:40:c5:25:6c:c7:57:ff:70:4f:1e:
2c:d3:05:be:bc:b4:ee:28:53:b8:8b:21:4c:43:b9:a9:15:e5:
a0:13:c3:49:54:c8:33:b7:47:e2:a7:4b:12:5e:27:7c:35:94:
6e:a6:de:69:b0:cf:65:fe:db:94:00:73:3a:ea:3a:aa:67:b0:
50:56:1f:64:0f:00:40:37:8f:8d:b7:49:26:f1:47:dd:18:86:
3f:fc:4f:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 19 17:52:50 2024 by rpki-client on console-fra.rpki-client.org