Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/Dh-2Nij-OhEGUYm9zxNX-_wG2t4.cer
File: Dh-2Nij-OhEGUYm9zxNX-_wG2t4.cer (raw, json)
Hash identifier: GZmhsg2UsQCeNIGh5gbWAIAcIwkmLOBOep/M71bePak=
Subject key identifier: 0E:1F:B6:36:28:FE:3A:11:06:51:89:BD:CF:13:57:FB:FC:06:DA:DE
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC86FF0A1C28F13A9E3ACEF92DAFCB282
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/2f/207b40-5fff-4f43-8b82-103b9f327924/1/Dh-2Nij-OhEGUYm9zxNX-_wG2t4.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/2f/207b40-5fff-4f43-8b82-103b9f327924/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 04:30:28 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 16003
IP: 77.83.56.0/22
IP: 2a09:7380::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 08 May 2024 14:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:f0:a1:c2:8f:13:a9:e3:ac:ef:92:da:fc:b2:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 04:30:28 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0e1fb63628fe3a11065189bdcf1357fbfc06dade
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:b3:48:5a:c3:3f:87:bb:6e:df:98:1a:99:e2:
ff:96:9d:8d:f2:24:85:80:7e:98:62:7a:21:ad:bb:
4b:94:cd:85:11:9a:69:ce:50:a1:6c:21:af:a9:45:
cf:ec:cf:9e:f1:ef:12:cb:9d:1f:78:92:6b:c3:b5:
c2:fe:95:97:35:5b:fb:e0:54:d1:e2:07:9d:48:41:
0e:e9:73:de:7a:e4:3c:87:c6:e8:d7:dc:f0:f9:f9:
ba:47:0c:57:cf:f1:5c:78:1f:c6:d0:52:df:2f:62:
0c:5e:f9:f9:96:2c:cb:7d:86:ea:09:e1:86:12:0b:
84:3c:e4:31:fb:87:5b:33:28:95:c5:76:0d:b1:e7:
94:b3:b7:be:bd:3b:37:47:22:7d:8c:14:64:b2:c0:
0b:1f:88:47:6b:f2:e1:e8:69:a0:13:c9:09:a5:84:
42:c8:ac:a1:a4:27:5c:24:f1:49:86:e8:0a:53:0b:
3e:44:64:d1:4a:5d:e4:3c:53:ac:89:00:e5:06:9b:
e3:5a:cb:c3:23:08:81:73:ae:08:9e:0e:d0:79:d0:
3d:76:f5:7d:65:c3:79:da:48:24:5f:72:53:32:6c:
3b:44:eb:49:29:26:52:b8:f3:6e:82:2a:e0:6b:5c:
99:23:fd:cf:cd:c1:0d:3e:56:09:96:5c:60:2a:72:
b5:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:1F:B6:36:28:FE:3A:11:06:51:89:BD:CF:13:57:FB:FC:06:DA:DE
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/207b40-5fff-4f43-8b82-103b9f327924/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/207b40-5fff-4f43-8b82-103b9f327924/1/Dh-2Nij-OhEGUYm9zxNX-_wG2t4.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.83.56.0/22
IPv6:
2a09:7380::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
16003
Signature Algorithm: sha256WithRSAEncryption
6e:e0:83:2d:88:28:f3:e5:4a:73:a4:f3:b2:70:9a:44:3b:90:
0a:1a:8b:90:07:10:67:af:14:70:1c:83:4f:f6:d6:55:fa:0b:
fe:49:49:63:ab:8a:00:8f:ed:14:e6:97:50:36:26:cf:85:3e:
22:97:20:6d:c4:43:93:3f:7b:5b:68:80:31:aa:38:f9:80:f6:
81:21:e8:d8:83:09:df:3c:2f:0e:07:17:74:04:55:d8:a0:48:
27:4d:c0:ec:06:ac:11:09:89:02:2f:dc:8a:05:b4:0d:f6:60:
ce:7e:ca:d7:a1:89:d5:6c:18:37:ec:57:f1:35:56:09:80:14:
c1:35:75:f0:32:0e:9c:4a:af:76:45:96:cc:b2:4d:71:1d:1c:
df:50:1c:61:6a:84:ef:e7:db:61:4b:b9:07:e7:d1:5f:8a:e7:
8b:36:36:cf:ce:bc:26:87:ea:a6:83:ac:7e:4d:4a:06:b5:74:
ed:c1:a2:aa:c9:b1:08:15:ff:d5:d0:86:84:f1:f6:eb:d6:da:
de:02:81:15:b1:28:73:73:75:bb:54:60:4b:cc:4b:f9:50:b2:
bd:fc:1b:f8:0f:ba:03:12:46:de:90:e7:ab:97:03:f6:5e:f2:
b9:29:71:82:c3:29:31:c6:52:a3:50:bd:90:29:e5:4d:e1:ad:
85:01:4d:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 7 20:04:29 2024 by rpki-client on console-ams.rpki-client.org