Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/FTXSThc2fkBbeA9xEEnl940QHxY.cer
File: FTXSThc2fkBbeA9xEEnl940QHxY.cer (raw, json)
Hash identifier: 3cMGHVqlyXi4+tdp3LajX2wYSxjLH5KTY6fArSgZbjQ=
Subject key identifier: 15:35:D2:4E:17:36:7E:40:5B:78:0F:71:10:49:E5:F7:8D:10:1F:16
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC8019761F971F4C388B970040CD7919E
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/31/6a89f0-0b22-452c-a659-42a7af882e09/1/FTXSThc2fkBbeA9xEEnl940QHxY.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/31/6a89f0-0b22-452c-a659-42a7af882e09/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 02:29:56 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 62176
IP: 185.38.188.0/22
IP: 2a04:77c0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:97:61:f9:71:f4:c3:88:b9:70:04:0c:d7:91:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 02:29:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1535d24e17367e405b780f711049e5f78d101f16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:a7:e4:02:7e:60:a6:07:ef:96:22:cd:74:8a:
31:77:c2:2c:ab:d8:ec:5e:54:1c:09:c7:15:20:a6:
13:98:e4:01:c0:90:4c:fa:59:01:51:97:b7:0f:ba:
73:56:c3:e0:13:16:62:07:42:2c:e0:73:f5:1c:13:
99:41:1c:74:12:1b:6e:63:85:cb:f1:bd:f3:c6:65:
a0:b6:04:26:3b:b4:80:be:52:52:fc:8d:46:4d:df:
fc:1d:6c:02:4e:97:3e:64:77:76:74:56:ba:4b:e5:
6a:30:b3:8b:cc:52:f1:b1:92:de:8c:62:96:1b:b9:
91:59:75:20:50:79:f9:9b:df:3e:a9:a7:ef:59:1a:
e1:b9:44:1a:84:97:5c:36:31:57:4d:84:43:4f:8b:
7f:20:9a:79:4d:8d:42:83:0f:0b:50:e8:26:5a:5f:
11:f4:8f:0a:c8:c8:e8:9e:d5:b4:3d:dd:20:83:33:
ba:2a:0a:43:07:9e:3f:b6:d3:2d:40:a1:4a:06:3c:
ad:c4:83:03:39:82:6a:c4:d2:8f:06:e1:28:fd:92:
a2:ea:ad:76:50:04:b4:22:e8:0b:fd:6b:fc:1e:b5:
ba:2d:54:cf:a2:52:36:a7:38:19:22:c6:1d:ac:be:
1c:3e:f5:dc:41:57:d2:f3:e4:55:8d:40:14:36:93:
7a:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:35:D2:4E:17:36:7E:40:5B:78:0F:71:10:49:E5:F7:8D:10:1F:16
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/6a89f0-0b22-452c-a659-42a7af882e09/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/6a89f0-0b22-452c-a659-42a7af882e09/1/FTXSThc2fkBbeA9xEEnl940QHxY.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.38.188.0/22
IPv6:
2a04:77c0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
62176
Signature Algorithm: sha256WithRSAEncryption
6b:0e:10:34:73:ec:5b:02:fc:92:92:d4:6c:87:ef:87:3d:18:
92:31:60:f0:29:cf:58:66:7f:db:5d:69:25:15:9f:50:6e:10:
ec:5d:da:f9:06:b4:c4:8f:0b:50:7b:fc:a4:e1:5a:f1:16:ef:
ae:b0:15:e3:b4:af:c2:60:11:1e:4a:ac:8d:70:8f:19:c9:12:
35:6c:7f:e1:0c:3b:a8:57:15:83:86:92:b7:79:1d:3f:bb:a7:
b0:63:7f:ce:9f:30:6c:df:44:ac:54:c9:17:df:c7:c4:b4:77:
c4:b6:36:21:05:70:ca:07:67:f2:34:b4:3f:7d:b8:4f:10:df:
1a:c4:a9:11:60:f2:fd:d4:b5:32:43:00:70:7a:d3:84:56:e1:
f3:25:9d:82:c9:0e:c4:91:7a:e7:90:f7:48:5f:0e:d5:c7:c5:
ba:0c:69:9c:85:93:a7:2e:87:c0:f4:d6:6b:fc:52:7c:98:74:
fe:a9:10:1a:d6:62:7b:4b:67:6c:4a:c4:72:a4:bd:50:7f:df:
5f:fe:5b:b2:ef:4a:3c:7d:64:d1:a8:f1:6d:c4:49:6e:48:06:
fe:c1:83:86:f2:ab:89:23:20:40:9f:bf:89:75:40:71:f4:b6:
3f:8d:70:57:61:1f:39:40:e6:b9:a8:71:39:c6:46:4e:a7:ec:
b2:5e:b3:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:06:00 2024 by rpki-client on console-fra.rpki-client.org