Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9pVNAQOno-ZSNUp0SJ-G2vmhpZ0.cer
File: 9pVNAQOno-ZSNUp0SJ-G2vmhpZ0.cer (raw, json)
Hash identifier: doDU+MEsxRoCo0oLDBnPY5gOUDmTeOEKxOoYJxNuT6g=
Subject key identifier: F6:95:4D:01:03:A7:A3:E6:52:35:4A:74:48:9F:86:DA:F9:A1:A5:9D
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC349419CAF4202C3D1021843E8781064
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/e3/940550-daab-4c9d-8440-f8c9e0962354/1/9pVNAQOno-ZSNUp0SJ-G2vmhpZ0.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/e3/940550-daab-4c9d-8440-f8c9e0962354/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 04:30:07 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 58265
IP: 185.200.224.0/22
IP: 193.138.156.0/22
IP: 193.169.184.0/23
IP: 2a0a:b940::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 26 Apr 2024 14:10:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:49:41:9c:af:42:02:c3:d1:02:18:43:e8:78:10:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 04:30:07 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f6954d0103a7a3e652354a74489f86daf9a1a59d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:81:87:a9:1a:78:c4:db:b2:ee:a0:f8:aa:a8:
2f:e1:cf:e8:78:ab:31:2f:a1:e4:f1:6b:64:5b:81:
dd:90:2d:bf:2d:b6:85:25:a0:fc:62:7b:a1:15:74:
10:4c:c3:3c:2f:0c:e0:51:0d:96:b3:20:ed:fc:64:
2e:45:60:c4:8d:bc:d2:c8:3b:e0:f1:f0:c3:6a:fe:
2b:3a:ed:bf:1b:f3:a6:2d:fe:a6:8c:e0:c8:93:20:
6e:3f:68:5d:4f:4a:57:28:50:88:2b:eb:06:d9:31:
6b:5f:2b:b5:12:7d:89:20:02:d7:af:b6:18:d1:09:
8a:29:b4:0a:90:6a:fb:ef:b0:35:0b:df:f4:81:51:
22:fe:a0:b3:ec:a8:a5:ec:bf:55:9d:59:70:0c:ec:
76:07:6d:66:42:13:3c:05:ed:2b:7c:3a:07:58:6b:
66:3a:94:fe:d9:4f:17:70:9e:e6:c5:33:af:a6:b6:
3c:29:e4:a3:b3:7e:f4:0a:67:f2:7d:71:d5:04:4e:
5f:47:e3:1c:fb:83:52:02:91:bf:ce:c8:b3:18:cc:
44:74:d6:52:87:43:b8:7f:dc:b4:ae:6a:29:4d:2c:
15:72:94:93:53:5b:69:87:dc:9a:91:cf:18:d5:cb:
cc:a6:6c:e3:57:67:39:45:e3:dc:24:1b:13:83:c0:
a6:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:95:4D:01:03:A7:A3:E6:52:35:4A:74:48:9F:86:DA:F9:A1:A5:9D
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/940550-daab-4c9d-8440-f8c9e0962354/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/940550-daab-4c9d-8440-f8c9e0962354/1/9pVNAQOno-ZSNUp0SJ-G2vmhpZ0.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.200.224.0/22
193.138.156.0/22
193.169.184.0/23
IPv6:
2a0a:b940::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
58265
Signature Algorithm: sha256WithRSAEncryption
47:d1:a6:77:2d:7f:e9:85:19:0b:b2:ad:38:cb:ba:3a:76:58:
19:80:89:a5:ca:95:42:92:56:c3:e9:1c:57:ef:a6:d8:09:da:
3e:b2:87:75:cc:15:b4:c8:87:c6:fa:34:db:16:90:c8:25:83:
cb:f7:3c:e7:01:f8:f5:79:95:d5:a3:a3:14:a1:1d:53:a9:4d:
82:9b:b1:08:cb:f1:10:b0:95:88:85:70:2e:8a:c4:c2:39:e8:
79:31:71:e4:57:2a:15:2c:19:a8:cd:9e:31:a4:80:9e:28:72:
13:b6:69:f2:f5:b0:52:5e:6c:45:cd:d0:aa:f6:03:f0:a7:49:
01:7a:e2:d0:e4:21:d3:cc:a0:f5:f6:96:8f:bd:0c:8e:7a:ac:
78:59:b9:de:1b:bb:e9:08:8a:40:21:58:07:87:47:3f:f2:95:
26:be:f0:88:c2:27:14:5c:2d:1a:5c:44:ad:56:11:11:70:d0:
9e:75:2c:11:b7:62:df:e5:cf:7d:7c:55:92:2f:49:50:1b:70:
fc:2c:25:25:fe:49:9d:9c:f6:20:87:59:f1:6d:32:2a:3b:99:
97:6f:8a:e2:c7:c8:87:94:13:ec:9e:eb:42:46:2d:b6:19:6e:
07:b1:0e:28:f8:66:a2:b4:67:d0:ae:57:8e:1f:fe:ef:16:b2:
4e:72:4e:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 22:01:23 2024 by rpki-client on console-ams.rpki-client.org