Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/CzWsvzBVlmjqGOo_ELKX7mTI5JM.cer
File: CzWsvzBVlmjqGOo_ELKX7mTI5JM.cer (raw, json)
Hash identifier: GR9nyXeGK/8qAR71pVYLsr2g3JvrlPDjTJ53cAPnfRc=
Subject key identifier: 0B:35:AC:BF:30:55:96:68:EA:18:EA:3F:10:B2:97:EE:64:C8:E4:93
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC8011A4414CCA814BC08E48AFFB1D564
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/6d/72fb45-30c7-4a53-a2db-b4c9e2b0d156/1/CzWsvzBVlmjqGOo_ELKX7mTI5JM.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/6d/72fb45-30c7-4a53-a2db-b4c9e2b0d156/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 02:29:24 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 212886
IP: 193.107.76.0/22
IP: 2a09:99c0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:1a:44:14:cc:a8:14:bc:08:e4:8a:ff:b1:d5:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 02:29:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0b35acbf30559668ea18ea3f10b297ee64c8e493
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:a1:3b:9b:18:3d:59:f0:c0:4b:b0:b8:88:0e:
d8:ed:4b:fe:f4:cd:cf:f0:b4:22:10:2b:da:0a:dd:
0d:f6:86:6e:05:65:c1:88:4b:d3:e0:4a:aa:78:22:
29:c7:81:f4:06:71:63:fb:75:99:04:35:43:0a:c6:
e8:40:65:9f:2b:db:80:20:3d:cb:58:0a:ef:69:74:
2e:aa:f3:70:d5:4c:be:0e:5a:71:2a:0a:47:63:38:
c2:cd:9d:7a:1c:8b:a9:68:8c:06:b7:38:c1:c2:5b:
43:ac:c2:10:a6:44:6e:4d:dd:0d:e6:b5:22:e4:e7:
22:65:48:9e:39:69:93:39:fd:1d:87:40:79:40:8d:
cc:a5:33:f9:0d:8a:31:1f:0c:dd:e7:32:30:67:f3:
b2:ea:84:9e:8b:af:b8:5d:5d:87:24:87:0b:4e:b4:
a7:da:08:8d:f1:1c:21:77:d2:42:ea:d1:55:b3:17:
0e:c6:da:e4:39:d3:fb:98:63:40:7a:2f:23:a8:b2:
33:e8:35:84:f9:b7:43:63:8b:2c:2a:a6:36:6c:9a:
11:05:1a:79:bc:7e:2e:4e:55:a1:5a:cb:3b:7c:3d:
d2:55:0f:93:84:d0:fd:f6:5d:93:53:fd:72:20:1f:
43:14:d8:93:27:b1:89:ac:20:08:e1:f2:fc:7f:27:
d9:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:35:AC:BF:30:55:96:68:EA:18:EA:3F:10:B2:97:EE:64:C8:E4:93
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/72fb45-30c7-4a53-a2db-b4c9e2b0d156/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/72fb45-30c7-4a53-a2db-b4c9e2b0d156/1/CzWsvzBVlmjqGOo_ELKX7mTI5JM.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.107.76.0/22
IPv6:
2a09:99c0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
212886
Signature Algorithm: sha256WithRSAEncryption
87:f2:57:e3:96:bf:35:9c:fd:18:a2:ba:49:bf:a3:22:9d:29:
95:4c:73:47:2e:04:fd:07:e8:8e:43:44:61:c8:d6:61:18:ff:
c3:3c:ba:98:4f:23:aa:70:de:26:a3:d9:9b:46:50:cf:70:73:
09:f0:be:26:f4:bb:e1:69:ca:79:a2:3d:91:4b:29:57:c6:83:
bd:a4:90:aa:9a:87:29:12:2b:1b:7d:85:c0:4c:80:74:52:7f:
8f:ce:56:08:ac:d7:e5:4a:d8:c7:3e:e4:f6:5a:3f:f9:fb:e4:
e6:e1:85:9d:2c:15:c3:d3:5d:fb:3e:52:c7:a9:8a:5a:b4:b5:
17:2c:db:7b:a1:8e:bc:10:28:c5:ac:13:40:71:88:a7:99:c5:
e0:c6:a5:5f:e6:b2:f8:35:e0:0a:93:ca:65:ca:5e:3b:a9:87:
a9:0d:8e:f2:80:20:73:9c:74:01:ef:d8:1e:dc:5b:ee:27:23:
00:92:3c:c2:1d:6d:d3:37:4e:55:c0:11:d7:05:89:62:c2:d3:
18:e4:ca:83:0e:12:bb:19:e7:bf:9a:7b:b9:66:2b:77:b1:ae:
c6:28:9e:a6:24:ca:f0:d1:0b:73:a1:b6:b7:09:90:f1:2f:ac:
a9:e7:d2:c0:bb:64:7d:54:0e:ff:4f:97:67:f6:15:85:63:40:
f3:45:fd:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:46:47 2024 by rpki-client on console-ams.rpki-client.org