Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/BZ-mprHseubqi0STTPfD1PpQjvI.cer
File: BZ-mprHseubqi0STTPfD1PpQjvI.cer (raw, json)
Hash identifier: bbEHVRzXtfESF+5mQFr/j01bupEtgt197WGixOGbQns=
Subject key identifier: 05:9F:A6:A6:B1:EC:7A:E6:EA:8B:44:93:4C:F7:C3:D4:FA:50:8E:F2
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC8DF98F7423E3DA72BAF40522157730F
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/c3/9200ca-a680-44d9-92f9-8d64df01c0c4/1/BZ-mprHseubqi0STTPfD1PpQjvI.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/c3/9200ca-a680-44d9-92f9-8d64df01c0c4/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 06:32:26 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 1741
IP: 86.50.0.0/16
IP: 128.214.0.0/16
IP: 185.229.128.0/22
IP: 193.166.0.0/15
IP: 195.148.0.0/16
IP: 2001:708::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:df:98:f7:42:3e:3d:a7:2b:af:40:52:21:57:73:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 06:32:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=059fa6a6b1ec7ae6ea8b44934cf7c3d4fa508ef2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:92:19:35:3a:4a:72:63:b4:b0:45:f8:14:e3:
7b:62:b5:70:a1:75:a0:10:a1:37:04:db:ef:27:49:
ff:25:6c:57:a0:0d:2b:09:41:51:d3:74:72:4a:51:
fd:a8:3a:d3:bf:b7:b4:76:fa:50:cc:90:3b:a2:4c:
d2:ae:0f:64:87:61:e2:15:58:1d:88:5a:82:7e:ed:
1a:7c:d2:68:96:31:ed:2d:2b:26:2b:ac:62:4c:ab:
ea:77:55:18:8f:1e:36:a3:dd:19:cb:26:df:b7:08:
90:3c:1d:94:16:2b:13:39:af:e9:5b:b6:12:5c:21:
63:ad:9d:1c:db:cf:0a:88:c5:79:c9:db:fc:11:0e:
7c:4e:d8:07:e3:3f:b8:75:71:e7:8a:29:59:6c:84:
94:a3:a0:cd:ad:1b:49:ea:1c:c0:a5:13:bd:fd:c5:
a7:df:94:ce:bb:e5:a1:6b:07:cc:64:f1:44:c6:7f:
cd:38:ef:98:b6:8d:de:52:c4:3e:f4:39:95:36:55:
31:39:b8:5d:2a:2d:bd:8c:e0:60:a6:19:90:7a:56:
8e:3a:b4:48:5d:ec:a0:b7:5f:bd:6c:55:36:30:5c:
9d:92:6b:c8:bb:4d:8e:00:7a:4d:24:c0:a0:92:35:
65:bd:4c:e7:cb:b2:4c:0f:97:72:88:a7:0e:eb:3b:
d3:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:9F:A6:A6:B1:EC:7A:E6:EA:8B:44:93:4C:F7:C3:D4:FA:50:8E:F2
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/9200ca-a680-44d9-92f9-8d64df01c0c4/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/9200ca-a680-44d9-92f9-8d64df01c0c4/1/BZ-mprHseubqi0STTPfD1PpQjvI.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.50.0.0/16
128.214.0.0/16
185.229.128.0/22
193.166.0.0/15
195.148.0.0/16
IPv6:
2001:708::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
1741
Signature Algorithm: sha256WithRSAEncryption
50:fb:b8:d6:f4:6c:c6:a7:8a:eb:20:d7:44:10:fd:9f:b1:6e:
b8:5e:0d:bb:46:2e:cf:e9:89:54:3f:67:b3:c2:ca:77:b2:dd:
64:21:dc:4a:3d:cd:06:9d:a4:09:b0:53:57:b2:13:46:23:1f:
ca:10:d0:4d:79:0d:d9:52:bc:f1:7e:8d:4c:97:b5:e2:2a:07:
6c:93:d0:cd:db:3a:78:89:95:b3:32:b2:4b:42:8e:9c:03:0a:
26:a1:4f:78:2f:d7:5e:da:14:2c:c6:b2:5c:85:da:d4:c7:67:
49:84:44:f4:ff:f5:47:75:c8:89:00:46:29:e7:ac:1e:05:75:
99:ee:28:74:dd:40:51:16:00:76:05:1f:a0:8c:57:b3:ec:90:
34:79:17:4b:be:49:f7:e1:07:54:6d:80:bc:73:0f:c9:be:b2:
34:88:8e:92:bd:4a:64:05:0f:f0:89:d5:24:51:73:16:e9:f6:
06:61:ed:72:20:bf:79:8a:30:76:37:7d:e7:71:0e:ad:ac:cf:
46:9c:ac:dd:fe:32:9d:8f:1b:4b:bc:b2:da:60:65:fc:4f:73:
88:5a:09:84:9a:d1:bf:d8:3a:27:25:81:1c:fb:f6:dc:f5:e0:
a8:53:7b:e8:57:69:4f:a8:41:fd:a4:b7:95:49:59:a9:26:1a:
3b:35:4e:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:25:10 2024 by rpki-client on console-ams.rpki-client.org