Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/H-AtvuYsmPAfIPR3DRakf3mr4yw.cer
File: H-AtvuYsmPAfIPR3DRakf3mr4yw.cer (raw, json)
Hash identifier: /+QUO7gAuByTvoP/Gzc6IxPW8ZzptwKYxzR53+7mRCI=
Subject key identifier: 1F:E0:2D:BE:E6:2C:98:F0:1F:20:F4:77:0D:16:A4:7F:79:AB:E3:2C
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC801B0605939D774A17F309365661676
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/6d/a12a30-d60f-4032-8863-21253ea9f3a4/1/H-AtvuYsmPAfIPR3DRakf3mr4yw.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/6d/a12a30-d60f-4032-8863-21253ea9f3a4/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 02:30:03 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 41495
AS: 206202
IP: 46.227.200.0/21
IP: 185.134.196.0/22
IP: 2a01:9e00::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 25 Apr 2024 02:00:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:b0:60:59:39:d7:74:a1:7f:30:93:65:66:16:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 02:30:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1fe02dbee62c98f01f20f4770d16a47f79abe32c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:4b:11:5a:07:47:61:96:71:1d:f3:1a:ab:d9:
4d:6e:2b:dd:b0:14:5e:04:94:64:cd:ea:9b:42:c5:
9a:a4:56:ce:8b:02:1f:86:ce:d0:b5:ab:ed:6a:fc:
8e:4c:b3:4a:22:92:ea:20:4b:f2:5b:ab:2c:d2:e8:
06:1a:49:4b:7e:ab:33:9c:43:a2:13:71:cc:22:c0:
57:5b:6f:ca:f7:b0:15:98:6f:ad:66:37:cb:f5:9c:
49:64:6a:db:03:46:a3:6e:54:f8:c5:11:65:b9:27:
0c:cb:16:9d:db:ca:87:92:ca:ad:66:5b:ac:c8:8d:
9f:7b:2a:32:de:c8:d0:63:c2:29:ce:10:89:09:3c:
ad:f4:13:bb:7a:37:5e:8c:5d:5d:61:2f:1e:04:dd:
9a:6b:7b:33:52:d5:9c:7e:32:f1:b6:91:d7:52:fb:
44:bb:53:b8:6b:39:d1:63:b0:bd:e2:4c:19:79:41:
14:3e:07:b4:6d:61:40:18:e6:3a:55:45:60:52:e5:
02:51:a0:38:80:b6:06:64:01:4a:0b:33:88:34:45:
e8:2f:84:6e:66:08:d0:c5:e8:ce:0c:c2:e8:61:87:
6c:6f:80:03:f2:fe:7a:34:a6:55:97:fd:eb:1e:c0:
59:5a:82:cf:fd:dc:f5:e5:c9:4c:f0:67:7c:35:6c:
70:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:E0:2D:BE:E6:2C:98:F0:1F:20:F4:77:0D:16:A4:7F:79:AB:E3:2C
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/a12a30-d60f-4032-8863-21253ea9f3a4/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/a12a30-d60f-4032-8863-21253ea9f3a4/1/H-AtvuYsmPAfIPR3DRakf3mr4yw.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.227.200.0/21
185.134.196.0/22
IPv6:
2a01:9e00::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
41495
206202
Signature Algorithm: sha256WithRSAEncryption
0d:61:97:bc:3d:57:a3:f3:db:b9:c2:f0:28:32:67:38:05:e5:
54:0e:74:1f:14:47:90:69:1e:58:d9:a5:77:9e:27:39:df:bf:
72:8a:5e:ac:b8:72:a1:85:0b:8d:19:a6:22:18:46:c0:c1:81:
91:04:eb:0c:ea:32:4c:27:87:83:3c:9a:6b:d9:e7:74:c4:e5:
e4:43:4e:63:30:43:e6:34:65:79:df:d6:9c:3f:a6:58:84:79:
fd:04:1c:b7:06:56:4a:19:05:4b:16:3c:02:d0:da:86:21:7c:
f6:ac:d7:10:8a:14:b9:3b:7c:51:49:6f:e3:93:80:6a:33:b4:
11:eb:31:4d:31:b0:c2:e9:45:4a:53:09:2e:ad:d3:15:d8:04:
e1:b2:3d:5f:48:0e:88:87:5a:b7:72:26:2b:e5:a5:f3:44:7d:
3e:35:66:df:11:13:d8:04:9b:1d:72:e8:74:50:c1:63:41:15:
81:2b:c5:51:8e:30:c9:c2:73:10:8a:c9:28:9d:c8:0c:80:ff:
d1:f6:c9:be:86:f2:7c:0f:f2:72:b2:89:5e:c2:0e:4f:2a:29:
d3:48:b5:f1:e8:46:37:82:30:7a:ad:1a:d4:c0:d8:1e:04:b4:
2c:b8:52:a9:49:7e:32:32:02:eb:fc:48:37:6b:81:69:da:15:
e6:fa:b7:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 24 11:13:29 2024 by rpki-client on console-fra.rpki-client.org