Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/BysethAMDKVkRDcFjUL0_XIjNoE.cer
File: BysethAMDKVkRDcFjUL0_XIjNoE.cer (raw, json)
Hash identifier: Pdw/2weE7J+dvZW6l0EJxK/Z6o3kGz67N5MU1qpdJOU=
Subject key identifier: 07:2B:1E:B6:10:0C:0C:A5:64:44:37:05:8D:42:F4:FD:72:23:36:81
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC50067BFC7716EEB4327C3F91B13B45D
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/95/f3f273-3424-4651-9a21-0e07e5a66d59/1/BysethAMDKVkRDcFjUL0_XIjNoE.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/95/f3f273-3424-4651-9a21-0e07e5a66d59/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 12:29:47 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 16265
AS: 38930
AS: 60626
AS: 202134
AS: 203774
AS: 203928
IP: 31.31.32.0/21
IP: 46.182.120.0/21
IP: 87.255.32.0/19
IP: 89.255.248.0/21
IP: 185.28.68.0/22
IP: 185.100.132.0/22
IP: 2a00:ec8::/32
IP: 2a00:9d20::/32
IP: 2a03:2280::/32
IP: 2a06:1780::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 19 Apr 2024 23:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:00:67:bf:c7:71:6e:eb:43:27:c3:f9:1b:13:b4:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 12:29:47 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=072b1eb6100c0ca5644437058d42f4fd72233681
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:c8:a7:b0:4f:a9:85:a2:c1:3e:bc:ee:94:57:
2c:05:1b:d6:33:c2:59:d5:3f:91:35:97:85:80:eb:
7a:60:fa:e3:81:b5:f7:ba:29:6e:37:7e:54:ba:f6:
8c:ec:fd:31:0f:cb:be:a0:a3:5c:ba:23:a6:53:78:
23:78:29:b8:e3:c8:87:39:87:c1:17:83:04:98:d2:
dd:6c:b2:5e:96:7d:e8:b3:82:bb:bc:f9:18:86:6a:
14:2f:ff:61:f5:2c:49:d7:81:15:55:93:c6:7c:fc:
d8:ca:43:c7:09:59:58:2b:ca:9e:15:d0:7a:c2:c0:
7e:6c:1c:9b:c2:72:7d:ca:d9:da:cd:01:59:d3:16:
2d:4f:d6:09:94:42:ae:14:65:db:e1:fd:b5:5a:de:
93:d6:55:b6:fe:65:5d:1e:68:58:8d:e2:06:75:16:
2c:ed:fe:80:05:b0:c5:fa:3f:d1:4d:15:00:08:68:
e5:81:f3:2b:ea:34:b0:37:48:cb:04:85:a0:3b:b6:
83:2e:bc:00:f3:b5:21:ae:bf:ad:67:40:a5:f3:77:
79:87:24:10:ad:5b:0a:b1:22:3a:ea:64:22:d9:44:
6a:08:44:ba:27:1d:a9:d1:ac:5f:33:0f:3c:64:e8:
08:c2:51:d2:98:5d:80:8c:13:a3:82:74:02:47:0b:
7f:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:2B:1E:B6:10:0C:0C:A5:64:44:37:05:8D:42:F4:FD:72:23:36:81
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/f3f273-3424-4651-9a21-0e07e5a66d59/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/f3f273-3424-4651-9a21-0e07e5a66d59/1/BysethAMDKVkRDcFjUL0_XIjNoE.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.31.32.0/21
46.182.120.0/21
87.255.32.0/19
89.255.248.0/21
185.28.68.0/22
185.100.132.0/22
IPv6:
2a00:ec8::/32
2a00:9d20::/32
2a03:2280::/32
2a06:1780::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
16265
38930
60626
202134
203774
203928
Signature Algorithm: sha256WithRSAEncryption
2b:70:d4:6a:70:50:b8:ef:16:1f:c2:3a:8f:5c:a0:17:2a:f5:
b8:c9:b6:00:c3:a6:84:12:ad:d1:2d:5f:3d:1d:0a:22:0a:17:
66:4d:f9:f5:69:6d:ab:7a:c6:8d:9d:57:e7:17:3a:6b:07:84:
4f:cf:53:88:9b:b3:aa:0d:36:7a:f1:10:f6:2d:f7:d6:a9:ca:
2d:f1:04:0f:ba:f7:cf:e1:9a:58:90:ca:be:3b:24:cc:5e:f6:
cc:18:96:f5:93:43:37:ad:d8:e5:fa:89:40:e1:98:46:07:cf:
9f:ba:74:bc:e1:bd:51:51:2c:a9:a7:7d:63:07:de:8c:89:55:
92:d1:73:85:84:43:72:65:4f:13:5e:e4:7c:d4:8a:c5:fd:41:
22:60:48:27:da:25:77:29:5f:2c:6e:02:91:64:f9:e4:81:25:
38:23:4a:38:08:04:a9:cf:8e:1d:b4:e9:23:1c:35:46:f3:04:
06:df:ff:c7:62:af:87:5c:dc:f1:18:dd:d6:72:5c:b9:4c:51:
09:e9:80:f4:36:78:04:2b:73:07:12:55:0c:a5:77:ca:09:43:
8c:e0:4c:7b:9a:a0:39:1b:ef:4d:f0:d5:1d:e6:06:ad:98:ee:
86:5e:40:47:11:db:3c:ff:79:bf:b1:b6:2c:ff:4a:e7:43:e5:
88:8b:df:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 19 08:15:51 2024 by rpki-client on console-fra.rpki-client.org