Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/B52QU3F6FqdsEK6Dj1YlBVvgSB8.cer
File: B52QU3F6FqdsEK6Dj1YlBVvgSB8.cer (raw, json)
Hash identifier: FAPgBNuH+h+9yplXn/7MBlBOVbLL/KeXtmczGGZzXB4=
Subject key identifier: 07:9D:90:53:71:7A:16:A7:6C:10:AE:83:8F:56:25:05:5B:E0:48:1F
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018DD0C34326680230738D6CA94D22FC1A31
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/f5/68d16a-82e5-4f4a-8730-27d03e393fb7/1/B52QU3F6FqdsEK6Dj1YlBVvgSB8.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/f5/68d16a-82e5-4f4a-8730-27d03e393fb7/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 22 Feb 2024 12:21:14 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 50941
AS: 206192
IP: 31.169.91.0/24
IP: 178.18.192.0/20
IP: 185.21.4.0/24
IP: 185.21.6.0/23
IP: 185.33.61.0/24
IP: 185.88.132.0/24
IP: 185.93.249.0 -- 185.93.251.255
IP: 185.193.4.0/22
IP: 2a00:54a0::/32
IP: 2a05:c9c0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 25 Apr 2024 14:05:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:d0:c3:43:26:68:02:30:73:8d:6c:a9:4d:22:fc:1a:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Feb 22 12:21:14 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=079d9053717a16a76c10ae838f5625055be0481f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:05:ed:32:d8:68:28:6c:f5:b9:e8:8f:ef:d8:
c2:0b:53:af:9e:49:09:b0:59:28:63:82:d0:0f:ae:
73:78:9b:67:d2:1a:42:d2:9e:73:48:5f:00:de:67:
40:21:7d:06:fd:d1:9e:55:ef:5f:d3:b5:3c:db:a1:
26:87:7b:5f:4e:7f:a8:bd:ba:94:e9:15:1d:65:ca:
75:1a:05:cd:be:78:4e:50:6d:a9:6f:c1:7b:2c:60:
98:eb:e1:f2:25:c0:5a:58:f8:2e:d6:34:f1:07:73:
2d:47:ee:43:1d:ae:9a:d6:48:d4:2b:01:2b:90:ed:
db:65:ed:c7:2a:93:56:0c:1e:9c:b1:39:54:4b:27:
63:e7:b0:d6:4e:08:98:f4:89:7b:4e:f4:ff:0d:e1:
1e:00:c9:4b:67:09:83:97:18:44:b5:84:38:d3:c0:
5b:a8:ff:13:5c:6b:65:bf:3e:7e:46:28:b8:ef:65:
5a:2e:2c:6d:f7:f1:07:03:64:ef:43:02:62:6d:75:
d5:71:8e:90:d0:82:70:42:93:b1:94:0f:7e:4c:24:
29:b4:a1:87:62:d0:1c:3b:be:16:ec:63:06:ae:56:
12:28:a2:f4:0c:be:42:2d:c1:02:43:4a:c9:96:57:
72:ef:cf:f1:52:9d:58:60:b5:0f:2c:b6:a1:d7:2e:
04:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:9D:90:53:71:7A:16:A7:6C:10:AE:83:8F:56:25:05:5B:E0:48:1F
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/68d16a-82e5-4f4a-8730-27d03e393fb7/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/68d16a-82e5-4f4a-8730-27d03e393fb7/1/B52QU3F6FqdsEK6Dj1YlBVvgSB8.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.169.91.0/24
178.18.192.0/20
185.21.4.0/24
185.21.6.0/23
185.33.61.0/24
185.88.132.0/24
185.93.249.0-185.93.251.255
185.193.4.0/22
IPv6:
2a00:54a0::/32
2a05:c9c0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
50941
206192
Signature Algorithm: sha256WithRSAEncryption
9c:a9:b8:42:2e:61:fb:80:64:68:c5:49:b2:47:00:f9:5f:42:
0d:2b:ec:c6:6d:c9:ed:4d:ba:b8:3d:a6:cc:bc:77:96:f7:24:
31:ba:51:ff:64:a2:ec:3c:90:af:59:eb:bf:4e:7a:37:ca:80:
54:10:ad:d1:fd:0d:e6:45:cb:d6:da:0a:d3:2b:82:4f:66:e1:
98:00:70:b2:ad:c1:e2:0b:0b:c6:b1:7c:4e:e6:ea:9a:ab:1f:
e5:14:09:3b:dd:33:9f:95:a2:42:c9:91:84:73:df:35:51:42:
4b:06:ae:e8:25:1c:8c:a0:cf:a6:5a:25:68:0d:09:f4:a4:43:
55:dc:e5:b0:b7:6a:b3:fd:12:9e:59:55:b6:20:1b:a2:41:d2:
a9:a1:d7:fa:ad:6b:2d:1c:00:3c:dc:0b:7c:2f:4c:df:dc:4f:
3b:8e:8a:bd:78:ad:ff:ee:2e:c8:b7:ea:1e:66:64:28:8f:c6:
08:8b:56:8d:da:a6:34:ba:57:c2:ca:d0:9b:c1:0e:c7:ae:60:
58:4e:54:cd:49:4a:2a:b6:e9:84:d9:b5:4f:0c:a8:7f:2c:69:
53:a4:c5:e8:94:ac:c2:98:06:6f:f8:59:00:bc:5f:dc:74:74:
e7:9b:84:a0:71:6f:91:79:fc:c4:e3:45:24:5f:09:2c:48:1d:
2b:59:08:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 24 23:10:26 2024 by rpki-client on console-fra.rpki-client.org