Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/DRoxMf6L6pyCWDE6DyS6KlYLWNM.cer
File: DRoxMf6L6pyCWDE6DyS6KlYLWNM.cer (raw, json)
Hash identifier: aGMnlI4jFUKXyiSxOTaMfpObhNzGWjXqurNNkgDMgms=
Subject key identifier: 0D:1A:31:31:FE:8B:EA:9C:82:58:31:3A:0F:24:BA:2A:56:0B:58:D3
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC2DB2D697F4341CFB370D9450B2E98C8
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/ce/13b165-0986-4e93-b1b4-bbf7c70ef4b3/1/DRoxMf6L6pyCWDE6DyS6KlYLWNM.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/ce/13b165-0986-4e93-b1b4-bbf7c70ef4b3/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 02:29:53 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 207056
IP: 185.167.120.0/22
IP: 2a0b:6a00::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 20 Apr 2024 17:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:db:2d:69:7f:43:41:cf:b3:70:d9:45:0b:2e:98:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 02:29:53 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0d1a3131fe8bea9c8258313a0f24ba2a560b58d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:f5:19:82:15:da:20:80:e2:1c:19:da:82:9c:
87:46:67:43:cc:a1:32:68:e6:3e:81:5c:7b:d6:c9:
1a:b3:e9:d2:bd:e5:82:6f:61:76:c2:50:09:ae:f5:
61:16:10:97:4b:04:23:53:3d:94:da:bf:f3:9f:4e:
97:6f:60:15:b9:79:c6:7a:94:b6:71:44:10:d0:2c:
eb:a1:72:90:22:21:c3:ab:c4:b0:9f:97:f1:40:1f:
a4:d7:c7:53:d0:b0:80:46:9c:d6:95:75:9c:f8:92:
7f:bd:56:6d:51:e0:75:94:e8:a9:4c:60:1a:b3:89:
63:53:1a:ef:2b:2e:ae:83:b2:2a:68:ff:ee:51:06:
2c:37:b5:91:5c:54:ff:b9:81:91:b9:2a:cd:08:09:
a0:4f:ea:b3:6f:82:db:3d:69:ae:c7:e2:8a:2c:f3:
bd:c5:d3:14:bf:ac:fa:97:fc:72:60:29:e0:13:5f:
6a:2d:e2:48:93:d4:7e:bb:b6:db:e7:03:72:06:12:
25:c3:3a:c3:7a:fc:cd:5b:96:c3:d5:8c:ae:03:08:
3d:52:76:b8:ae:d3:bb:b7:51:a9:d2:73:1b:69:ad:
45:a8:c2:2d:4b:37:75:bc:8e:57:a6:b5:80:c2:76:
28:18:b0:1e:a4:92:cc:f9:ab:1d:f7:b3:fc:d7:4b:
44:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:1A:31:31:FE:8B:EA:9C:82:58:31:3A:0F:24:BA:2A:56:0B:58:D3
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/13b165-0986-4e93-b1b4-bbf7c70ef4b3/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/13b165-0986-4e93-b1b4-bbf7c70ef4b3/1/DRoxMf6L6pyCWDE6DyS6KlYLWNM.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.167.120.0/22
IPv6:
2a0b:6a00::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
207056
Signature Algorithm: sha256WithRSAEncryption
79:7f:83:0d:9e:b0:9d:7f:a0:f5:9c:7d:8c:b9:67:59:6f:99:
d9:fb:cb:a1:84:43:72:bb:71:05:e2:ce:2f:a3:f1:61:81:08:
fa:ee:85:7d:0b:74:bf:01:d8:09:f4:a2:8b:27:f4:1d:e6:f7:
00:3b:ef:8e:a1:6e:92:4d:de:dd:d8:df:d8:aa:93:40:9c:d9:
3a:7f:b5:dd:df:9c:44:5a:52:37:89:73:97:b2:15:57:27:ab:
39:28:b0:6b:1d:0c:d3:6b:dd:05:fd:57:32:dd:83:f8:78:db:
ee:1c:0b:08:ac:85:2e:dc:83:31:5a:b0:27:fe:c0:ca:45:88:
26:ad:4d:7d:70:2b:71:37:9e:a3:0c:42:fa:2a:31:89:5a:f5:
e1:c0:33:d7:7a:82:33:51:fb:7d:ed:8b:93:36:5d:ad:f3:2d:
7a:67:0f:bf:18:a9:bd:99:bb:96:3b:69:86:e3:be:26:ca:c5:
b7:47:cd:1b:38:58:db:e8:b2:a8:9b:77:e0:e2:a7:e4:fe:1f:
07:e1:d9:c4:8c:ba:9a:fd:59:92:0f:62:d3:06:4f:4a:64:93:
a4:3e:35:52:fa:16:f1:c0:74:0f:ed:49:94:33:af:01:92:cb:
ce:93:90:66:55:4a:06:fd:f1:34:a0:07:c5:da:ea:af:70:b4:
0a:78:54:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 19 23:16:24 2024 by rpki-client on console-ams.rpki-client.org