Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/BSAFu2w9aGW4nBDzOwuZS3Svljs.cer
File: BSAFu2w9aGW4nBDzOwuZS3Svljs.cer (raw, json)
Hash identifier: sn5jOjw24zFT6l+Q8vCIlFd/yxOP+KeomrrawskOIvM=
Subject key identifier: 05:20:05:BB:6C:3D:68:65:B8:9C:10:F3:3B:0B:99:4B:74:AF:96:3B
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC26D773784EDEB87B1E2EB8E663DAC5C
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/9b/83eb09-3a14-455b-8895-ba0a76f43704/1/BSAFu2w9aGW4nBDzOwuZS3Svljs.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/9b/83eb09-3a14-455b-8895-ba0a76f43704/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 00:30:03 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 57527
IP: 185.98.124.0/22
IP: 2a06:e00::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 26 Apr 2024 14:10:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:6d:77:37:84:ed:eb:87:b1:e2:eb:8e:66:3d:ac:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 00:30:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=052005bb6c3d6865b89c10f33b0b994b74af963b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:a2:74:3f:aa:ab:d4:0f:59:e4:14:ab:ef:09:
82:f5:89:7c:1d:cc:9a:10:a7:2e:e0:b3:6e:ce:63:
e3:7c:2f:bd:dc:1e:18:78:63:5f:f4:32:32:9c:94:
d8:e8:0b:e1:68:8a:db:07:fa:00:af:3a:93:16:b4:
40:95:de:82:c7:0a:3d:b6:55:32:97:3f:76:e8:ea:
58:fa:ea:e9:74:8d:5d:b4:26:f6:9e:14:d6:5b:b4:
e1:c0:97:eb:6c:f1:e4:fa:45:43:06:dc:ac:77:58:
cf:83:84:c4:93:2f:da:d6:07:46:23:fa:17:8b:3b:
f8:78:25:74:a5:b4:59:c3:8f:17:70:16:8d:bd:fc:
2d:2e:a3:61:4f:7b:31:92:51:bd:b9:01:2f:d7:41:
73:9d:f3:e0:3d:42:a6:9f:ed:36:75:a3:76:19:d7:
28:e7:92:47:4c:ab:07:6c:07:0e:c2:86:b0:ce:13:
65:00:9d:d1:84:8e:0e:2b:7b:f2:d2:0f:d7:4e:6a:
a5:39:9f:b4:d6:b6:26:f4:9e:d8:94:0c:82:e6:59:
5a:e3:d5:ab:16:85:99:7d:69:55:aa:e3:f5:c8:b5:
fc:a5:e4:23:2e:70:9e:44:9f:95:a9:ee:c7:2e:7f:
c6:5d:99:63:b6:13:79:5c:33:93:af:dc:cc:23:d4:
4f:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:20:05:BB:6C:3D:68:65:B8:9C:10:F3:3B:0B:99:4B:74:AF:96:3B
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/83eb09-3a14-455b-8895-ba0a76f43704/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/83eb09-3a14-455b-8895-ba0a76f43704/1/BSAFu2w9aGW4nBDzOwuZS3Svljs.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.98.124.0/22
IPv6:
2a06:e00::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
57527
Signature Algorithm: sha256WithRSAEncryption
01:fd:ae:ff:5d:9b:73:54:0a:e2:54:36:3b:33:7e:4d:48:8a:
93:31:b7:57:59:4f:f9:d0:c4:76:00:93:21:7e:03:41:f0:d0:
b4:90:a4:32:c5:22:85:bc:88:e2:59:a2:92:10:9c:dd:c8:7e:
29:b3:db:c0:49:68:fe:d6:60:3f:42:56:8a:f5:85:12:10:e0:
10:c6:55:37:f5:af:5a:46:45:6a:72:d6:dd:80:e5:0b:18:e9:
ba:b6:a8:65:62:0f:a4:a8:2d:dd:fc:cb:ee:f9:1e:90:44:2f:
dc:df:64:ad:7c:d7:10:50:4b:7d:5b:11:1b:ec:51:3e:71:bf:
d1:74:af:8f:63:40:b6:0e:ec:56:30:a5:f1:c3:1e:5b:22:3b:
1d:90:5e:64:a3:fa:e2:16:7f:4b:84:ed:38:39:8c:c2:78:b6:
af:ca:3d:7d:5c:5c:68:44:22:9c:15:1f:88:50:c9:32:4c:b0:
8d:00:09:68:c0:78:52:18:cf:2b:47:c2:1d:75:7e:95:51:89:
69:f0:ae:2e:e9:e3:ff:55:df:c1:c7:c4:1f:9e:66:fb:e4:83:
e7:da:99:00:74:09:b6:c8:14:3b:a3:2e:e3:ff:e3:e0:93:7b:
7a:4b:98:b7:4d:3a:b7:48:6a:d3:04:83:03:99:9f:22:6b:cb:
f5:61:75:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 23:18:42 2024 by rpki-client on console-fra.rpki-client.org