Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/BcgcgJdDfNF58xkYPAKC6mzRylE.cer
File: BcgcgJdDfNF58xkYPAKC6mzRylE.cer (raw, json)
Hash identifier: lrnjZ4r+vJRVe6u/9ivFdzx6rJwPx6hpi3bCe6O2/So=
Subject key identifier: 05:C8:1C:80:97:43:7C:D1:79:F3:19:18:3C:02:82:EA:6C:D1:CA:51
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018D369FB767203E48CBB8200968EF46B64B
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/ee/d93153-4609-4672-85b4-974fd239b0ed/1/BcgcgJdDfNF58xkYPAKC6mzRylE.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/ee/d93153-4609-4672-85b4-974fd239b0ed/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 23 Jan 2024 14:00:53 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 41616
IP: 81.163.80.0/21
IP: 91.247.152.0/21
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:36:9f:b7:67:20:3e:48:cb:b8:20:09:68:ef:46:b6:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 23 14:00:53 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=05c81c8097437cd179f319183c0282ea6cd1ca51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:99:20:93:2e:3d:50:37:a9:da:51:ab:24:d4:
70:f3:10:ba:ac:9b:14:84:15:f3:80:83:0a:ae:f8:
29:b2:a7:4e:3f:dc:24:19:73:0f:51:a0:29:49:ef:
b9:48:9d:08:4a:aa:a5:a2:19:6d:09:92:bc:82:9d:
87:65:53:e4:58:fa:8e:2e:d8:95:9a:3b:ce:4b:cf:
d9:dd:a4:7b:27:06:05:fe:53:36:82:8c:07:91:6d:
f5:77:cb:39:6c:86:51:95:83:e6:a1:b5:a9:be:f0:
49:cc:d1:af:05:08:75:06:90:8f:b0:fd:f8:51:cf:
18:b9:34:fe:10:79:24:f3:fa:b7:2a:a1:62:30:83:
6c:34:5f:35:12:94:fc:11:76:0d:0d:32:2d:48:b5:
f1:e6:97:bc:7e:c2:62:a3:00:61:f5:27:75:65:2b:
90:c2:ea:25:b2:3b:08:b9:28:fd:b2:5d:11:f2:04:
b4:7f:99:82:38:31:c8:5a:0c:20:b0:72:7b:42:b3:
15:36:56:8a:0a:5e:7d:c5:9b:48:46:bf:d3:5a:fb:
a1:be:e4:3a:ab:37:2f:46:7c:e1:07:67:7f:d9:60:
26:fd:86:f7:a9:74:14:db:58:ba:66:bb:84:04:12:
67:8c:c0:5f:26:d5:34:98:80:7b:3c:3f:63:ed:64:
42:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:C8:1C:80:97:43:7C:D1:79:F3:19:18:3C:02:82:EA:6C:D1:CA:51
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/d93153-4609-4672-85b4-974fd239b0ed/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/d93153-4609-4672-85b4-974fd239b0ed/1/BcgcgJdDfNF58xkYPAKC6mzRylE.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.163.80.0/21
91.247.152.0/21
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
41616
Signature Algorithm: sha256WithRSAEncryption
32:41:70:f1:92:79:54:0d:0f:e8:58:b4:90:a9:dd:d1:20:1e:
2f:eb:4f:0a:d7:6b:25:6c:6f:eb:2b:48:67:04:4e:1f:be:d4:
c5:b0:7d:17:80:6d:36:64:a9:10:3e:9b:67:b8:61:22:12:da:
30:f0:77:48:3c:e3:36:ba:5e:c8:51:c5:ef:cb:a4:57:52:80:
a5:7f:f0:3b:78:6e:5b:17:95:dc:2d:80:85:9a:33:00:6e:0d:
a0:42:7f:44:f8:e5:50:26:dd:61:2e:77:f9:0f:dd:f4:4c:e9:
29:d4:c4:0e:b3:0c:9f:8d:d9:fd:d3:96:9c:e2:94:67:c6:05:
5e:bc:1b:c6:ca:63:5f:01:8f:00:5d:4a:04:d8:2c:a7:22:03:
78:6e:3f:82:fd:9f:4c:75:82:a7:3f:61:28:db:55:50:6e:b2:
8d:2b:64:c6:95:85:cd:f9:5b:a6:ad:f1:43:34:45:ca:c6:ad:
55:58:b6:a8:f5:a8:41:57:c8:69:7d:a4:0f:a9:ca:5d:d7:ef:
0e:78:c0:04:d1:a4:df:c5:2b:96:ba:ed:f1:c9:79:2c:d6:7a:
98:08:d3:63:d9:f3:a3:7d:dd:8f:7c:60:f4:5c:1b:cb:d8:91:
84:93:60:d4:2b:7d:b0:56:e3:a9:ba:9e:2c:68:97:ff:18:2e:
d5:e0:8d:af
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sat Nov 23 10:05:02 2024 by rpki-client on console-fra.rpki-client.org