Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/A5aaE8t8Nxi9NxdxJijnqxszsKU.cer
File: A5aaE8t8Nxi9NxdxJijnqxszsKU.cer (raw, json)
Hash identifier: cenaOXT670Uz4qpI9F0/X4oERVrd4qd6MDTk/Gb9Obs=
Subject key identifier: 03:96:9A:13:CB:7C:37:18:BD:37:17:71:26:28:E7:AB:1B:33:B0:A5
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018D317B284DCD28A49124F1C83D470765ED
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/91/c129ab-79a7-4bc0-9a3b-41efeace7a71/1/A5aaE8t8Nxi9NxdxJijnqxszsKU.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/91/c129ab-79a7-4bc0-9a3b-41efeace7a71/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 22 Jan 2024 14:02:51 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 49326
IP: 80.244.0.0/24
IP: 2a13:7340::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Dec 2024 06:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:31:7b:28:4d:cd:28:a4:91:24:f1:c8:3d:47:07:65:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 22 14:02:51 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=03969a13cb7c3718bd3717712628e7ab1b33b0a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:43:ad:5d:d6:f9:af:f5:2f:25:d0:a7:c2:3c:
fd:0d:ad:c4:9e:ba:2f:59:fc:9a:2b:4f:50:f2:41:
7d:b0:a5:a5:36:54:a9:4e:e5:6a:78:f1:1b:e9:8e:
7b:0d:4f:99:ee:7d:8a:1d:69:85:87:b0:55:92:69:
e4:3e:8d:1e:1e:b1:eb:89:c8:d6:30:8f:e8:f0:9f:
3b:99:e8:fe:db:38:8f:a7:55:b7:20:1a:8f:8f:11:
ac:b3:41:80:5c:8a:97:36:bc:98:9e:9a:4f:22:2c:
a5:57:cf:63:a4:0f:29:86:3d:36:7f:69:84:1b:cd:
4b:82:cf:29:98:2b:de:38:e9:c6:fc:5d:0e:e9:d4:
b4:63:25:b5:b8:70:ca:5f:3f:f2:49:0e:98:f3:3a:
e7:1e:3f:7f:d1:a1:70:2c:62:95:a5:f4:06:9f:5d:
db:70:3a:af:7f:d7:c2:b5:ad:9d:bf:a5:2c:8d:fd:
06:b5:f3:a7:92:06:3c:5f:85:06:33:00:c8:d8:a3:
1d:d3:4b:27:59:5b:0d:8d:53:5b:0c:98:51:27:21:
9e:2b:3d:c3:d6:cc:c8:34:32:6f:b8:4e:47:6b:02:
00:16:5a:cc:5c:a1:66:2d:52:1f:cd:36:49:f6:c3:
51:95:03:9c:bb:09:64:7e:bd:5d:87:cc:86:1f:66:
f3:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:96:9A:13:CB:7C:37:18:BD:37:17:71:26:28:E7:AB:1B:33:B0:A5
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/c129ab-79a7-4bc0-9a3b-41efeace7a71/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/c129ab-79a7-4bc0-9a3b-41efeace7a71/1/A5aaE8t8Nxi9NxdxJijnqxszsKU.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.244.0.0/24
IPv6:
2a13:7340::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
49326
Signature Algorithm: sha256WithRSAEncryption
90:84:57:c7:46:79:de:80:e2:0a:aa:53:19:ff:a3:e5:77:3a:
fe:4b:1e:d3:df:71:d7:43:79:7d:75:3d:3e:a2:71:1b:26:c5:
e2:34:2f:09:aa:2e:a4:8f:f5:02:bd:d3:43:a7:0a:a8:06:d3:
1f:41:36:ce:b7:29:58:67:3e:1a:81:58:92:f6:e3:ab:62:f0:
b0:d0:fc:f0:09:e7:38:2a:c9:0e:dd:c6:7f:f4:65:f8:03:17:
4d:25:41:74:8f:6d:c3:02:89:e0:36:19:41:65:e2:4d:51:74:
05:45:4a:99:72:ec:8a:15:22:0d:9e:e8:ac:49:20:30:57:d7:
7c:16:e8:27:04:6a:58:de:5d:b1:c7:b8:ff:a5:d2:d2:53:4f:
9f:91:0c:17:07:5d:c1:9f:e1:f9:af:9d:c6:cf:5f:05:ec:44:
2b:5e:8e:33:28:56:a2:4d:c5:49:7e:7a:e6:91:0c:63:09:2a:
8e:c8:f5:1c:aa:a3:db:28:90:72:eb:7e:f8:e9:6b:73:c3:5e:
57:e2:43:e9:0d:42:78:29:a4:7f:56:66:08:7b:db:91:88:2c:
59:d7:17:0a:13:a2:6b:de:8d:d0:b3:10:cf:4c:7a:66:37:b4:
dc:ad:00:00:e3:d0:75:d5:7f:21:a7:46:ea:90:49:61:82:15:
9d:5e:ad:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Dec 26 17:01:36 2024 by rpki-client on console-fra.rpki-client.org