Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/BgecQppxRvH5qgSb20LKlRRLdNo.cer
File: BgecQppxRvH5qgSb20LKlRRLdNo.cer (raw, json)
Hash identifier: Pzy/aidsKzjfWSGFJm0Uj2VGoCojgOAJNganY1Urn1Y=
Subject key identifier: 06:07:9C:42:9A:71:46:F1:F9:AA:04:9B:DB:42:CA:95:14:4B:74:DA
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC3B71B22F2226A2333BCC588B62E9FDC
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/92/740589-85cd-497a-90c1-a2f9a8a51bb0/1/BgecQppxRvH5qgSb20LKlRRLdNo.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/92/740589-85cd-497a-90c1-a2f9a8a51bb0/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 06:30:06 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 13020
IP: 94.45.224.0/19
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 25 Apr 2024 21:23:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:b7:1b:22:f2:22:6a:23:33:bc:c5:88:b6:2e:9f:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 06:30:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=06079c429a7146f1f9aa049bdb42ca95144b74da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:7a:d8:d9:31:f4:4a:dc:70:85:63:fd:54:c5:
f6:67:88:39:96:3f:51:6c:ed:ca:76:50:2c:f2:b6:
8c:ef:9e:51:81:f6:19:28:17:1e:f7:c7:45:ae:c8:
34:f1:28:2b:be:b6:88:ad:7a:4c:8f:20:e9:7f:28:
fc:ed:7c:03:17:80:b6:3f:2d:73:f7:64:41:6e:bb:
50:ce:5f:02:00:8c:44:42:f5:e8:3d:7f:18:ba:22:
e3:74:da:b5:6a:ed:36:37:33:60:fb:7c:eb:0c:a2:
5c:7a:a0:9b:9f:5d:e2:04:82:be:3d:47:51:79:88:
a2:61:1f:c9:6f:f7:13:03:29:5d:ac:2d:27:e1:87:
b6:1f:53:3d:56:94:67:76:7b:3f:9e:b3:b3:05:41:
47:cd:f4:56:f0:75:f8:c3:d1:36:c8:b3:fd:b2:79:
1b:bb:85:e6:79:d0:48:45:63:13:98:e0:dd:0b:03:
dc:d3:da:a0:de:06:57:a3:cc:53:ef:bc:fd:d8:b8:
8a:a6:73:9e:78:a8:2a:b6:b1:5c:b9:41:e0:da:72:
98:ef:bc:1a:72:43:fb:64:d4:0c:0c:39:25:1d:1b:
16:ab:db:f3:7e:ee:44:51:1c:53:6b:e9:13:0c:02:
08:4d:25:14:cb:52:ec:b9:c4:b5:d5:17:7a:e9:9a:
d3:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:07:9C:42:9A:71:46:F1:F9:AA:04:9B:DB:42:CA:95:14:4B:74:DA
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/740589-85cd-497a-90c1-a2f9a8a51bb0/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/740589-85cd-497a-90c1-a2f9a8a51bb0/1/BgecQppxRvH5qgSb20LKlRRLdNo.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.45.224.0/19
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
13020
Signature Algorithm: sha256WithRSAEncryption
49:e0:01:63:bc:8e:1d:a9:a6:da:41:0c:76:61:1e:17:6a:1d:
85:f5:a4:60:c6:3a:ce:5b:d2:e8:7c:42:fb:50:c0:3c:96:50:
15:2e:c6:c2:b4:a4:7a:55:89:70:59:d2:22:35:c1:88:08:de:
67:cb:81:f4:a9:3c:55:90:7c:13:50:65:53:5a:ef:56:6f:e2:
88:d4:76:e7:f8:14:c3:85:59:84:06:81:b7:7a:3b:fc:b8:34:
21:02:84:d1:af:5b:d2:d8:21:df:58:d5:50:96:76:f7:c7:49:
55:83:c2:d8:20:34:b6:18:33:0d:0c:0b:b7:f9:16:94:78:0d:
76:43:64:e9:ee:51:75:45:6e:75:87:84:5e:54:54:5a:80:38:
04:ae:f5:d2:72:55:18:18:91:6a:2c:6d:8e:dc:00:f6:7b:05:
04:b3:ba:19:12:34:17:70:55:2b:eb:9b:16:eb:a9:63:98:61:
7b:a3:78:a0:f3:e8:94:51:95:b4:4e:0e:15:f4:69:21:57:9a:
e0:b9:eb:21:6f:1d:a7:02:e7:f1:b2:6f:78:6b:93:40:b6:d7:
c4:53:a6:c1:26:9a:72:bb:6e:97:26:ce:55:29:0a:9d:e6:93:
ec:8d:b6:21:7f:21:06:6f:30:35:4e:bc:e2:7f:1e:93:78:ea:
b5:60:b1:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 00:20:51 2024 by rpki-client on console-ams.rpki-client.org