Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/B8QNcBYPMIZCEpobcq5a5S24g8Q.cer
File: B8QNcBYPMIZCEpobcq5a5S24g8Q.cer (raw, json)
Hash identifier: 2roXyxOKGyVdQwAXjyBFqoiyuxezSsTLZKJX7ohIA+s=
Subject key identifier: 07:C4:0D:70:16:0F:30:86:42:12:9A:1B:72:AE:5A:E5:2D:B8:83:C4
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC64B38C59C893D7742C8448A8638277C
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/82/e116c2-8f82-4cba-b5ae-97dcbb0086e3/1/B8QNcBYPMIZCEpobcq5a5S24g8Q.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/82/e116c2-8f82-4cba-b5ae-97dcbb0086e3/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 18:31:07 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 48166
AS: 59666
IP: 5.250.232.0/21
IP: 89.22.16.0/20
IP: 91.133.0.0/19
IP: 91.210.84.0/22
IP: 178.213.192.0/21
IP: 185.51.208.0/22
IP: 185.61.92.0/22
IP: 194.9.224.0/20
IP: 2a02:7760::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Dec 2024 06:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4b:38:c5:9c:89:3d:77:42:c8:44:8a:86:38:27:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 18:31:07 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=07c40d70160f308642129a1b72ae5ae52db883c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:8c:6b:e7:46:66:1e:9b:0b:2f:05:1b:f3:b1:
6b:99:53:14:f3:a0:72:87:3b:a4:f1:53:a5:d0:96:
81:43:ac:20:1d:57:7c:51:f5:4e:a1:97:fe:a9:ec:
92:72:ab:4e:d3:e8:31:86:a2:b9:33:32:24:38:fd:
51:64:ed:8a:dc:58:c7:ae:45:14:36:40:86:4c:ed:
21:30:40:ed:d8:df:64:91:79:7e:6a:83:a3:f0:af:
75:cb:5f:8e:44:af:0b:58:1b:4e:f3:d9:15:81:8e:
b8:a0:df:0c:83:e0:47:45:5a:9b:95:d2:9f:10:1c:
5f:39:b9:61:c6:8f:1b:3e:7f:02:75:d0:8b:cc:23:
99:94:30:c1:51:74:6d:a7:9d:52:42:3b:f0:14:cb:
df:97:d6:f2:c3:d0:fc:0d:09:43:05:6e:b8:40:e7:
f3:60:c3:07:d6:43:2a:fe:75:23:7b:f7:09:14:25:
77:76:c6:b9:f6:25:95:a0:57:37:ee:07:d0:8a:ac:
6e:46:cc:52:41:96:50:38:2c:36:51:4c:24:3d:83:
82:83:7b:33:66:ca:a0:cf:3c:69:3a:00:6f:58:3f:
8d:97:79:44:ec:c2:34:82:62:b3:2d:4f:3b:74:ab:
b1:38:26:c7:0f:9c:70:ae:9a:50:ff:a4:b6:24:02:
ee:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:C4:0D:70:16:0F:30:86:42:12:9A:1B:72:AE:5A:E5:2D:B8:83:C4
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/e116c2-8f82-4cba-b5ae-97dcbb0086e3/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/e116c2-8f82-4cba-b5ae-97dcbb0086e3/1/B8QNcBYPMIZCEpobcq5a5S24g8Q.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.250.232.0/21
89.22.16.0/20
91.133.0.0/19
91.210.84.0/22
178.213.192.0/21
185.51.208.0/22
185.61.92.0/22
194.9.224.0/20
IPv6:
2a02:7760::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
48166
59666
Signature Algorithm: sha256WithRSAEncryption
25:d3:e9:12:84:d1:a9:4d:ed:f7:93:a0:69:8d:37:ab:56:46:
1f:b7:6a:87:5b:65:6a:d4:05:ee:8a:7e:e6:7d:04:3e:6f:5d:
23:5b:b5:e2:cf:1f:73:c4:50:01:8d:ba:b5:60:47:37:09:a8:
e9:5c:59:0e:e5:6f:b9:9f:c7:4a:9d:65:45:39:55:ad:44:03:
bc:50:fa:47:9f:d7:35:14:8c:fc:5a:c2:14:2b:2d:40:ff:60:
b5:74:a3:6a:62:13:77:db:91:3b:bb:d0:a2:0d:22:88:92:86:
e6:c2:53:2b:46:1d:12:0c:13:04:cf:a2:8e:1e:06:63:e0:e6:
ee:08:19:7c:87:e7:83:a7:1c:51:18:34:78:c8:d9:a2:b2:df:
eb:94:56:bf:f4:eb:86:20:23:57:60:54:0a:d8:48:1a:ed:66:
31:9e:39:d7:f7:07:5b:19:fa:11:e6:88:ae:40:b7:68:1a:e0:
b3:b6:78:6c:99:cf:eb:d7:f9:a4:6d:32:bb:eb:82:4f:05:08:
50:75:80:17:88:44:76:4b:e7:f5:fb:73:e1:f0:cc:50:b6:d5:
db:95:22:ef:53:c8:bf:1e:5e:4d:4b:12:a5:71:d2:c5:f3:c1:
2c:55:10:a3:0f:90:d5:e7:ab:15:4a:9d:23:6d:1d:26:86:f7:
05:d5:0b:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Dec 26 17:01:53 2024 by rpki-client on console-fra.rpki-client.org