Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/Ea1JxH4tDkDPybNqK9LFFOKmJns.cer
File: Ea1JxH4tDkDPybNqK9LFFOKmJns.cer (raw, json)
Hash identifier: wfe9XdPvGMGr+/S34u6nB3uarOMCEoTLwAwlWHM38/I=
Subject key identifier: 11:AD:49:C4:7E:2D:0E:40:CF:C9:B3:6A:2B:D2:C5:14:E2:A6:26:7B
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01884CA7A697ED5E16044C3797CAD8E4E3F5
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/11AD49C47E2D0E40CFC9B36A2BD2C514E2A6267B.mft
caRepository: rsync://rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/
Notify URL: https://rrdp.paas.rpki.ripe.net/notification.xml
Certificate not before: Wed 24 May 2023 07:27:15 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: AS: 202359
AS: 207960
IP: 193.3.165.0/24
IP: 2001:678:fc8::/48
IP: 2a11:f2c0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/Kn3R14fXk-TIr1bhl9Tu2Sr2uhM.crl
rsync://rpki.ripe.net/repository/aca/Kn3R14fXk-TIr1bhl9Tu2Sr2uhM.mft
rsync://rpki.ripe.net/repository/2a7dd1d787d793e4c8af56e197d4eed92af6ba13.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 20 Jul 2023 14:08:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:4c:a7:a6:97:ed:5e:16:04:4c:37:97:ca:d8:e4:e3:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: May 24 07:27:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=11ad49c47e2d0e40cfc9b36a2bd2c514e2a6267b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:48:d8:c0:40:2f:55:4a:53:4f:09:80:82:8a:
f0:ce:11:a4:01:37:a2:4c:54:a8:64:8a:c3:8b:54:
64:7d:a8:48:c2:4f:1d:a1:ea:f2:e6:d8:a5:8f:05:
e8:9f:4c:b2:d0:35:c4:b4:a1:26:9d:58:59:9d:8b:
03:e3:1b:25:56:53:b4:fc:b0:97:c5:c5:41:a5:4d:
4d:13:ed:c3:34:ec:9d:33:fd:c1:39:68:07:10:27:
07:2a:7a:0c:20:35:a4:a1:7c:9e:6a:3f:e9:79:17:
12:b0:58:86:72:e7:c7:79:5a:6b:76:5d:2a:6a:40:
11:0a:4c:c2:9f:5a:e3:76:14:95:db:5c:6e:ca:9f:
43:8e:ca:c1:38:a7:a8:56:26:d1:8c:5b:87:cd:6b:
8c:2b:d6:16:e5:f7:2f:22:60:6d:f9:5e:be:13:fe:
f0:34:44:b8:ef:a6:bc:06:6d:3e:fb:83:40:2b:43:
65:3f:a5:ea:b0:3b:2f:c7:aa:93:48:2f:69:5c:4b:
dd:5a:9b:f2:f1:0d:72:7f:c7:72:28:a1:ae:c5:74:
e1:21:fd:cc:79:24:32:54:c1:cb:f2:ea:ba:77:68:
38:bb:e3:56:b2:b3:0c:d6:3e:e7:12:a5:2a:0c:0d:
09:d5:41:f3:f9:f5:06:9c:15:6d:f7:17:b7:f7:27:
34:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:AD:49:C4:7E:2D:0E:40:CF:C9:B3:6A:2B:D2:C5:14:E2:A6:26:7B
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/
RPKI Manifest - URI:rsync://rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/11AD49C47E2D0E40CFC9B36A2BD2C514E2A6267B.mft
RPKI Notify - URI:https://rrdp.paas.rpki.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.3.165.0/24
IPv6:
2001:678:fc8::/48
2a11:f2c0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
202359
207960
Signature Algorithm: sha256WithRSAEncryption
b1:a5:4d:3c:b1:d1:ec:61:d3:5b:16:b4:86:e3:f9:43:db:2f:
9a:c9:4b:77:9b:93:fb:d5:50:e1:6b:68:02:fe:e6:f1:9f:0f:
81:05:1a:bd:47:8a:38:a9:ea:3c:98:be:74:de:ba:a1:65:7f:
cc:f7:3e:cb:99:c7:81:ad:d5:08:a6:0f:1e:1a:b9:8f:3c:72:
1a:ba:82:73:e6:d5:c3:84:6f:a9:17:2d:6c:91:b4:a2:51:0c:
4d:f7:3a:48:60:25:84:f9:53:d3:f6:3a:9f:0b:8e:ce:39:ef:
db:56:c2:ab:38:b4:c7:23:ba:58:16:43:de:ed:b7:89:6b:3f:
9f:1f:e1:15:6b:4b:81:9a:16:a1:c0:b7:d9:e7:c6:56:08:cb:
7c:62:63:8f:9b:e5:bd:f2:5d:f8:6a:78:11:8d:62:07:40:04:
65:8b:ee:c3:09:c4:c0:7c:bc:6a:52:ad:af:10:35:79:fc:28:
a7:83:e0:0f:7f:62:95:e2:0a:25:0d:17:28:e4:22:26:40:b6:
ec:68:25:ad:ab:10:f7:b9:a1:f0:e2:16:8f:07:4e:e0:81:e8:
27:d7:f9:93:54:57:83:91:c8:b5:a2:9e:c4:44:af:30:97:9e:
32:46:c9:20:e7:c1:89:b3:37:7e:a0:2d:f2:22:8e:07:ef:36:
11:11:a6:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 22:56:24 2023 by rpki-client on console-fra.rpki-client.org