Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ASAlltXOzjfcNMhhBkV4_G2qXoY.cer
File: ASAlltXOzjfcNMhhBkV4_G2qXoY.cer (raw, json)
Hash identifier: PRHP3xcRwz50o4zHJIrl/pOHb3FTFlPt4HD6DHWSINI=
Subject key identifier: 01:20:25:96:D5:CE:CE:37:DC:34:C8:61:06:45:78:FC:6D:AA:5E:86
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC94D4FAB574A211CBEDDB898D12404B2
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/cb/986164-8030-4e47-98b5-481151acf329/1/ASAlltXOzjfcNMhhBkV4_G2qXoY.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/cb/986164-8030-4e47-98b5-481151acf329/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 08:32:16 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 61399
IP: 185.1.110.0/24
IP: 185.211.228.0/22
IP: 2001:7f8:3c::/48
IP: 2a0b:6e40::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 25 Apr 2024 11:00:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4d:4f:ab:57:4a:21:1c:be:dd:b8:98:d1:24:04:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 08:32:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=01202596d5cece37dc34c861064578fc6daa5e86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:65:99:0b:25:05:32:9b:e8:fd:3e:3e:07:6f:
05:71:cd:36:15:5d:0c:9e:8e:58:3f:a7:7e:33:b6:
1c:f2:dc:75:01:fc:68:7f:2a:5c:8b:fb:72:93:28:
1c:f4:f3:02:72:f1:c9:0a:06:6a:af:32:a7:ab:60:
f5:c2:2d:fa:f3:32:e2:d6:4c:4b:58:a4:f0:73:fd:
3e:6e:21:25:c8:8b:36:8e:5a:e6:13:7d:f0:e8:9c:
92:1f:ee:24:da:8a:2e:5f:e5:2e:7b:33:af:80:4d:
1a:69:d0:27:e7:86:b1:82:33:06:e6:f4:35:54:f1:
71:15:39:71:f2:12:59:d6:14:9b:84:02:04:be:53:
67:b1:d5:77:ef:3d:83:be:52:a9:b3:98:ea:15:7d:
16:91:b4:be:97:ba:1e:e2:e8:c7:5e:7e:d6:2e:56:
fc:3e:eb:25:20:e2:9c:37:12:d2:ca:89:ad:d2:4a:
b8:c1:20:c0:f4:20:2f:12:00:a8:5e:60:54:d5:f9:
20:db:e4:a4:9d:c5:5d:fb:00:56:ae:0e:a8:db:72:
32:c8:4d:d8:a0:eb:52:c4:0a:f2:df:64:69:30:de:
ef:7b:eb:32:f0:90:a3:10:87:37:a6:73:c7:86:8a:
0d:93:be:85:3a:83:84:07:52:14:1b:bb:6b:57:b3:
34:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:20:25:96:D5:CE:CE:37:DC:34:C8:61:06:45:78:FC:6D:AA:5E:86
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/986164-8030-4e47-98b5-481151acf329/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/986164-8030-4e47-98b5-481151acf329/1/ASAlltXOzjfcNMhhBkV4_G2qXoY.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.1.110.0/24
185.211.228.0/22
IPv6:
2001:7f8:3c::/48
2a0b:6e40::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
61399
Signature Algorithm: sha256WithRSAEncryption
aa:a5:a1:4c:1a:a1:88:ab:d3:e4:ff:11:72:92:9c:5a:68:47:
71:82:ab:7e:d4:39:68:e6:7d:3e:69:dc:8f:7b:8d:77:92:03:
01:5f:f0:8e:55:7c:ed:13:e3:33:39:c8:e9:28:dd:75:33:ef:
fb:1f:23:e3:54:16:e4:32:94:9c:4f:f7:76:41:d5:c4:0c:70:
3d:9e:0b:f2:3a:d8:af:e4:56:5d:fa:b8:7b:bb:7b:11:7f:29:
1d:02:b5:ef:7c:1e:6e:ef:88:af:b2:9c:da:e6:5b:b0:7b:0e:
a9:0c:2d:f1:86:04:de:03:aa:e5:ff:1d:0f:33:a8:2d:6d:b1:
5c:e9:3e:7c:85:8a:83:71:b7:54:a8:ad:58:b7:91:ff:83:2b:
48:d7:ce:a9:57:66:9b:fb:f0:03:d2:61:1b:93:26:4a:c5:f4:
33:78:0d:fc:f9:a4:62:6d:96:cd:9d:7b:7d:3b:5e:f4:41:fc:
0c:5d:aa:78:f4:7b:b7:d7:75:16:fa:1b:6d:55:dd:a5:ae:db:
62:fb:47:3d:46:b0:db:aa:9a:6d:37:fc:76:6d:aa:cb:9e:c6:
1b:17:7f:cf:09:f0:99:f1:8b:80:d3:f8:b3:2a:07:22:19:de:
13:c1:a2:f5:78:32:b1:0c:56:84:9c:bb:5d:5d:c5:c5:b5:dd:
a2:f5:07:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 24 14:00:18 2024 by rpki-client on console-ams.rpki-client.org