Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/FQt_-bwZYuvOwL5DXMwnLXUaHBY.cer
File: FQt_-bwZYuvOwL5DXMwnLXUaHBY.cer (raw, json)
Hash identifier: cMA/cqcCBKgV37C+/964JM2C+Gbf3x6LSFN/QVhgMBY=
Subject key identifier: 15:0B:7F:F9:BC:19:62:EB:CE:C0:BE:43:5C:CC:27:2D:75:1A:1C:16
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC3B688C9F18F9FCBD7DE2BA9390DDACB
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/a1/76f921-6217-4e95-b445-10cd20fab386/1/FQt_-bwZYuvOwL5DXMwnLXUaHBY.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/a1/76f921-6217-4e95-b445-10cd20fab386/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 06:29:28 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 197825
IP: 176.10.56.0/21
IP: 2a06:2080::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 20 Apr 2024 17:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:b6:88:c9:f1:8f:9f:cb:d7:de:2b:a9:39:0d:da:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 06:29:28 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=150b7ff9bc1962ebcec0be435ccc272d751a1c16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:17:52:27:10:12:50:f4:16:db:83:28:a1:09:
27:ca:15:9b:e9:09:30:56:9a:2e:07:13:39:4d:53:
d3:95:04:3c:42:13:fa:cb:81:66:13:4a:d5:d6:a9:
b3:f2:3d:55:44:5b:15:bf:b5:70:71:18:41:37:38:
9e:47:da:ef:34:0f:00:4e:0a:06:ad:f3:9f:0e:ce:
3c:35:71:0f:46:1b:73:8f:35:8a:23:44:5f:d3:34:
80:75:a7:49:e6:b4:aa:3f:d8:8a:82:ab:a9:48:74:
80:10:99:db:02:3c:0c:68:07:a0:67:d7:14:7a:31:
bc:47:b8:f1:2a:e8:cc:58:ba:1e:d1:9c:e7:29:dd:
23:0b:a9:fa:24:bc:db:38:a7:52:46:e4:68:8f:e0:
61:65:d3:93:8e:7d:4b:44:19:0f:9e:3a:63:b3:87:
83:e7:39:74:f0:fd:a4:5a:5b:4c:b2:bb:81:44:26:
a5:a4:79:86:89:3e:9a:da:ac:d0:94:bd:16:ca:dd:
a4:16:08:8d:15:80:de:f9:46:54:eb:a1:db:84:8b:
59:28:b0:2f:eb:1a:91:73:29:9e:0b:7a:98:4b:7a:
27:f8:a8:57:22:ec:80:21:a1:84:cf:e9:36:ad:35:
80:62:07:13:a2:30:2e:b1:0c:af:19:16:b5:95:10:
d6:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:0B:7F:F9:BC:19:62:EB:CE:C0:BE:43:5C:CC:27:2D:75:1A:1C:16
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/76f921-6217-4e95-b445-10cd20fab386/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/76f921-6217-4e95-b445-10cd20fab386/1/FQt_-bwZYuvOwL5DXMwnLXUaHBY.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.10.56.0/21
IPv6:
2a06:2080::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
197825
Signature Algorithm: sha256WithRSAEncryption
a4:59:3b:7a:6c:03:3a:d4:2e:78:1a:72:97:33:1f:41:d3:11:
3f:d5:b0:83:0d:57:d3:fb:8e:51:fa:99:95:9b:18:1a:bc:de:
be:6f:cb:72:7e:6b:4c:bf:05:4d:b0:93:45:41:15:28:b4:ed:
89:2b:0a:9b:f8:af:3c:71:70:e0:8b:a4:ba:42:23:04:b1:f8:
5d:3d:8b:5e:65:10:70:e9:f0:fa:af:54:2c:65:e6:88:f8:e4:
e5:84:cb:0e:59:9a:7c:ef:67:97:07:ec:b5:57:dc:fe:bb:50:
61:03:50:12:72:8e:b1:ab:91:01:97:17:79:44:99:33:8d:a8:
a5:6e:bc:03:ed:ed:53:88:e0:72:b6:24:72:52:a0:97:9d:de:
12:61:96:27:75:eb:72:f9:f6:7b:8a:c1:c2:8c:59:b4:29:df:
ed:5b:ec:bc:84:3e:87:6c:e3:d0:17:dd:63:14:88:64:81:3a:
99:ea:8a:d4:52:46:bb:37:4e:92:4a:fb:4f:b8:e3:41:e2:a2:
a2:f6:de:08:0d:ff:d1:dd:0d:c8:5b:49:70:72:7c:2b:f3:34:
d0:02:53:00:59:48:fd:78:f6:db:55:a9:19:b5:32:54:b9:ba:
f1:64:dd:de:e8:0a:5d:7c:74:93:98:d1:43:04:ba:ca:c1:0a:
64:81:be:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 20 02:34:53 2024 by rpki-client on console-fra.rpki-client.org