Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/AxlsieVU2-R3RSJ1mQbiWBoXRpQ.cer
File: AxlsieVU2-R3RSJ1mQbiWBoXRpQ.cer (raw, json)
Hash identifier: RZWTfLo8qrqlBmaHADCEoGbAsiYBYwnv7CkMUrqtu04=
Subject key identifier: 03:19:6C:89:E5:54:DB:E4:77:45:22:75:99:06:E2:58:1A:17:46:94
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018FBE892F0CCDE8845A33FDA6DCCC143D86
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/3b/9ed76b-35a6-4a9d-9fa6-8517a8f355ae/1/AxlsieVU2-R3RSJ1mQbiWBoXRpQ.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/3b/9ed76b-35a6-4a9d-9fa6-8517a8f355ae/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 28 May 2024 09:30:12 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 42893
AS: 215092
IP: 146.66.160.0 -- 146.66.207.255
IP: 178.252.64.0/18
IP: 2a0b:c0c0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 23:23:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:be:89:2f:0c:cd:e8:84:5a:33:fd:a6:dc:cc:14:3d:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: May 28 09:30:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=03196c89e554dbe4774522759906e2581a174694
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:3f:3a:fd:b2:94:69:df:51:1c:1f:5c:7e:b8:
32:9a:d4:5e:9c:ef:27:7d:1f:d1:a4:da:6d:b4:04:
fa:f5:36:d1:0b:a2:0e:2f:6f:b1:59:67:87:27:b7:
e5:1a:44:58:a1:04:db:3d:ca:e7:87:d8:bb:ce:2a:
36:0a:1c:68:bc:69:06:52:10:d4:48:e3:b4:8c:b8:
2c:2e:e4:64:f3:9b:87:89:38:a4:e2:55:88:b6:8b:
9b:e6:6f:76:06:b6:af:b0:19:d9:33:c0:e8:d3:03:
02:f1:0c:d1:d3:09:a3:15:f9:3e:9a:d7:c2:c8:58:
26:6a:3b:02:78:da:65:f7:e5:b8:8d:f8:62:3d:ba:
eb:b3:68:c2:ce:27:ff:c0:80:d2:6d:e5:9b:8d:cd:
bb:27:3a:9b:1c:34:b2:c7:e0:e6:3f:df:6e:23:9b:
bc:89:ae:ac:db:de:ae:cb:d1:fd:cb:07:ae:2f:9a:
45:d3:29:0b:44:7a:e6:04:35:37:95:2d:65:4f:ab:
94:95:d0:89:15:e4:2f:0f:9a:01:55:94:da:8e:4f:
1c:86:69:13:b9:0f:62:aa:e8:e5:f6:a4:f1:d7:9e:
cc:98:d3:02:2e:de:a4:d4:36:e1:40:62:6f:4c:29:
cc:cb:b6:b1:74:13:ea:b2:b2:f7:64:d6:c7:50:f4:
92:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:19:6C:89:E5:54:DB:E4:77:45:22:75:99:06:E2:58:1A:17:46:94
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/9ed76b-35a6-4a9d-9fa6-8517a8f355ae/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/9ed76b-35a6-4a9d-9fa6-8517a8f355ae/1/AxlsieVU2-R3RSJ1mQbiWBoXRpQ.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.66.160.0-146.66.207.255
178.252.64.0/18
IPv6:
2a0b:c0c0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
42893
215092
Signature Algorithm: sha256WithRSAEncryption
23:e1:3a:82:ec:3c:ad:8b:f6:09:99:55:cc:13:24:9f:8e:20:
ae:85:e1:a3:8d:e4:9a:40:46:54:ea:6a:b0:a0:c0:3b:ea:d5:
7b:e7:47:17:0f:28:c1:2c:14:63:bd:4f:45:17:42:20:71:5a:
b2:32:16:e4:8f:24:31:63:dd:1b:ff:24:68:14:fd:40:de:f4:
e6:e4:82:62:79:8b:7e:da:72:71:1b:fe:09:ba:bc:d0:e3:d3:
e4:c3:2f:23:18:03:ef:d2:b8:6e:5a:fa:df:b1:11:a0:1a:da:
6d:f3:6c:2a:65:c7:a4:ab:5d:f3:73:97:42:6d:7d:01:83:f4:
74:65:2c:38:99:b9:0a:67:5f:0f:dd:5a:5f:47:af:f7:e0:ec:
0a:cd:54:55:11:fc:cd:a4:08:dd:6e:29:7b:eb:2f:24:b5:ed:
ab:1f:4d:74:7a:9f:7d:34:ad:92:d6:41:97:76:cc:d8:da:7a:
7e:51:ba:bf:4d:9d:dc:9d:46:dc:de:4b:35:37:cf:d5:d7:7f:
dd:d6:79:2e:08:30:2e:cb:53:06:3b:e4:81:f8:fa:50:0d:b5:
3e:2a:63:63:81:58:a3:83:ad:32:cc:7c:de:24:ad:47:2e:bf:
f6:14:12:dc:6c:b5:6c:56:28:7f:18:5f:03:e1:97:b9:71:3a:
71:96:3b:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 26 03:04:24 2024 by rpki-client on console-fra.rpki-client.org