Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/GE__PPkA52quDSzS533-riTF0kw.cer
File: GE__PPkA52quDSzS533-riTF0kw.cer (raw, json)
Hash identifier: 2oDUkURUhSmnUOujCTb9WBFd29YDgQ9JPrXHdedeKE0=
Subject key identifier: 18:4F:FF:3C:F9:00:E7:6A:AE:0D:2C:D2:E7:7D:FE:AE:24:C5:D2:4C
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC348FBD481AA4D0E23C1C2E5D9D8BC28
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/f5/a9666e-fcf0-4fb6-a452-38b392c6e1bf/1/GE__PPkA52quDSzS533-riTF0kw.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/f5/a9666e-fcf0-4fb6-a452-38b392c6e1bf/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 04:29:49 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 198312
IP: 37.0.96.0/21
IP: 2a03:6a60::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 25 Apr 2024 01:58:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:48:fb:d4:81:aa:4d:0e:23:c1:c2:e5:d9:d8:bc:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 04:29:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=184fff3cf900e76aae0d2cd2e77dfeae24c5d24c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:1e:3a:55:f6:90:dc:a1:ba:70:08:ae:4e:a3:
b5:ec:d2:53:51:3a:e2:0b:40:80:d8:52:d6:02:5b:
71:6f:33:ba:58:4c:f8:24:0c:b2:fe:d2:4a:4c:00:
03:cf:94:2c:05:6d:71:6d:bf:29:26:70:d2:38:bc:
d9:f0:57:0c:0f:be:eb:ab:8e:91:e1:f5:ca:b8:ba:
66:b7:47:25:34:ec:08:3f:d1:d2:06:7b:dd:aa:29:
14:60:b6:c6:b8:27:e2:b9:44:c2:06:c2:33:8e:bd:
70:42:81:d9:09:f5:fb:83:c0:cb:da:f8:6c:d6:fe:
b8:68:c2:8a:10:dd:07:27:08:41:f2:c8:36:31:9c:
fd:e3:50:bd:aa:cd:97:c1:cc:16:7c:89:f6:1c:96:
ba:6c:42:ce:a2:6e:fc:bb:db:4e:d4:6f:3a:5a:f6:
35:bc:f2:b3:9d:fa:8b:a6:47:4b:63:6b:6c:ba:33:
52:56:a3:9c:f2:c2:8b:c2:9b:a7:7b:3a:67:7a:19:
3d:2f:b3:c9:68:b0:97:c0:c3:f3:0c:05:fe:9b:e0:
ba:c4:63:bf:44:5c:24:8a:2f:f1:63:38:c0:d9:3a:
ef:a9:06:c1:ba:c1:c8:a9:38:28:e7:66:63:d6:b1:
39:a6:8a:ed:fb:bf:e5:51:7e:62:15:d5:d0:d8:fe:
1e:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:4F:FF:3C:F9:00:E7:6A:AE:0D:2C:D2:E7:7D:FE:AE:24:C5:D2:4C
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/a9666e-fcf0-4fb6-a452-38b392c6e1bf/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/a9666e-fcf0-4fb6-a452-38b392c6e1bf/1/GE__PPkA52quDSzS533-riTF0kw.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.0.96.0/21
IPv6:
2a03:6a60::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
198312
Signature Algorithm: sha256WithRSAEncryption
ad:58:18:d5:37:57:c4:a3:80:a6:c8:6f:8a:95:89:ff:17:bc:
90:e3:de:cc:28:44:cd:a3:c3:82:cb:1a:f0:10:0c:83:b7:c2:
1a:6f:88:02:04:5a:60:95:c3:d8:9a:73:e8:0c:60:8b:93:dd:
9c:56:73:f1:ba:ae:af:60:bf:81:2a:98:a8:17:9d:e2:87:3b:
69:8e:34:75:8a:59:8f:49:bc:b2:b0:c9:9f:42:35:fa:83:e1:
45:65:4a:52:e1:14:5b:5c:44:28:53:08:b0:47:8f:c9:db:f8:
32:ae:c1:d0:51:19:67:6a:ba:bd:f6:24:20:29:a8:6e:e0:69:
6f:81:f9:14:6f:f0:21:90:3b:eb:09:68:fe:01:ee:84:5d:d1:
af:30:b5:99:f3:80:bd:ca:af:34:36:1f:f3:d5:0d:1f:b8:6e:
6e:40:62:18:ee:e2:df:20:f7:7f:8d:dc:4e:00:cb:75:05:55:
ba:08:76:b9:88:2e:3f:e3:c5:9c:42:56:f6:99:a9:0d:0c:72:
b4:4d:28:b1:05:1e:1a:20:00:65:b9:15:c7:0f:86:6a:cf:11:
d9:fd:58:8b:0e:65:91:59:60:10:5b:75:2b:dd:df:c8:00:e1:
8c:7b:df:87:a7:33:18:25:1e:bb:b4:66:b2:ae:af:16:ea:73:
9a:85:a4:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 24 03:58:07 2024 by rpki-client on console-ams.rpki-client.org