Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/BbvbYp_dDxwzv7GsfPRBIbxebq0.cer
File: BbvbYp_dDxwzv7GsfPRBIbxebq0.cer (raw, json)
Hash identifier: 0IXAoyyvztt20lRaY+tkSvjcUAqmC0XBhiIAl5PwUkE=
Subject key identifier: 05:BB:DB:62:9F:DD:0F:1C:33:BF:B1:AC:7C:F4:41:21:BC:5E:6E:AD
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC4922826A830B31768BBB63CFC434376
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rsync.paas.rpki.ripe.net/repository/93f083b7-7818-4ccf-8663-9191f8a8616a/0/05BBDB629FDD0F1C33BFB1AC7CF44121BC5E6EAD.mft
caRepository: rsync://rsync.paas.rpki.ripe.net/repository/93f083b7-7818-4ccf-8663-9191f8a8616a/0/
Notify URL: https://rrdp.paas.rpki.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 10:29:22 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 50788
IP: 84.38.254.0/24
IP: 2a0c:31c0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:92:28:26:a8:30:b3:17:68:bb:b6:3c:fc:43:43:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 10:29:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=05bbdb629fdd0f1c33bfb1ac7cf44121bc5e6ead
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:88:a9:53:f3:4e:68:eb:1e:ec:c6:ef:03:66:
30:39:e1:07:9a:22:45:f8:de:5a:89:69:3a:81:78:
b1:e6:09:41:dc:70:5d:dd:b3:dd:a5:b3:11:19:9b:
93:ca:0d:a7:94:cd:a2:bb:a1:d2:6b:e8:72:29:16:
b1:dc:72:4a:9e:ff:0c:d1:fc:d8:2e:6a:c2:b2:21:
d8:38:f9:3a:8f:9a:0c:49:fd:84:8d:64:fa:94:ce:
a3:a1:95:59:56:50:67:4e:14:73:96:96:89:f0:76:
64:dd:3d:b5:0a:c3:f2:99:09:7b:fc:4f:01:12:ed:
48:70:2e:ea:9a:90:43:42:8e:0c:04:d9:75:21:5f:
04:d2:26:d1:3d:b3:6d:b8:04:33:40:b1:b1:a3:ac:
47:7a:fa:32:d7:36:54:c0:8a:df:77:77:43:bc:6f:
97:cf:65:4b:e9:92:1f:f3:4c:1f:af:00:52:a4:51:
9d:2a:0c:0f:64:6d:fd:3c:65:ae:74:9a:9f:a8:c0:
f5:91:91:8c:c2:79:a8:ca:df:49:57:1a:57:54:d1:
d1:4a:89:1c:0a:72:2d:c6:c9:14:dc:cf:49:be:e1:
44:a6:eb:4b:13:68:d4:7c:7a:34:99:8f:9f:62:c7:
3a:50:da:7c:05:52:25:54:6d:13:60:32:86:00:66:
29:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:BB:DB:62:9F:DD:0F:1C:33:BF:B1:AC:7C:F4:41:21:BC:5E:6E:AD
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rsync.paas.rpki.ripe.net/repository/93f083b7-7818-4ccf-8663-9191f8a8616a/0/
RPKI Manifest - URI:rsync://rsync.paas.rpki.ripe.net/repository/93f083b7-7818-4ccf-8663-9191f8a8616a/0/05BBDB629FDD0F1C33BFB1AC7CF44121BC5E6EAD.mft
RPKI Notify - URI:https://rrdp.paas.rpki.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.38.254.0/24
IPv6:
2a0c:31c0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
50788
Signature Algorithm: sha256WithRSAEncryption
a0:59:7b:92:12:aa:3f:5c:29:bd:a2:60:cd:d6:9c:ec:b2:bd:
df:d7:35:4d:5c:0b:d5:5a:f2:12:16:fd:ee:12:a5:ae:a9:e0:
24:65:82:56:3e:ac:e8:37:01:66:f4:a5:40:7d:f9:a4:76:4a:
de:ca:8a:12:9b:03:c4:33:ca:2c:47:30:c5:2c:82:8c:7e:92:
cb:2d:2c:07:a0:91:95:14:4c:a1:0b:b4:34:55:60:5b:b6:99:
8c:5b:58:92:e7:24:ef:e0:2e:3f:66:99:d1:c0:eb:57:0f:09:
7c:c1:af:a2:16:6a:6e:3e:38:88:ea:1e:23:93:d3:6b:dd:52:
86:36:7e:4e:37:e9:d9:79:bf:da:ee:08:5d:c7:1b:3d:45:37:
d6:9b:d2:93:04:9e:19:57:87:72:cc:ca:3c:3f:70:e3:05:91:
21:6c:97:55:24:82:c9:74:7b:15:72:21:19:15:25:9c:ec:c3:
b3:ad:1c:84:fd:76:75:b0:0c:82:1d:e1:fe:cd:2b:e4:ab:9f:
80:30:d8:eb:f8:ec:0d:34:75:3d:3a:e9:01:a4:ad:78:f8:84:
b8:81:61:95:d6:77:a2:5a:ad:40:1e:ca:53:8a:64:39:f8:47:
9c:5a:dc:1a:6c:71:55:7e:90:b4:34:05:ee:1e:5f:58:3e:03:
c1:ab:23:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 09:47:17 2024 by rpki-client on console-fra.rpki-client.org