Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/Hvlb_PWV9GUP8xIlQ2KtJmaxzWs.cer
File: Hvlb_PWV9GUP8xIlQ2KtJmaxzWs.cer (raw, json)
Hash identifier: O+b1kahHeJChZG05bpoKO/8gOgHhvhuO7SoXDjtTrPc=
Subject key identifier: 1E:F9:5B:FC:F5:95:F4:65:0F:F3:12:25:43:62:AD:26:66:B1:CD:6B
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018FBFE6C3E2DAA626B5867CBB5BCEE99035
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/f5/74d697-4a07-4020-9dda-550e1018fcbf/1/Hvlb_PWV9GUP8xIlQ2KtJmaxzWs.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/f5/74d697-4a07-4020-9dda-550e1018fcbf/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 28 May 2024 15:52:02 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 208013
IP: 5.182.0.0/22
IP: 2a0e:7800::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Sep 2024 14:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:bf:e6:c3:e2:da:a6:26:b5:86:7c:bb:5b:ce:e9:90:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: May 28 15:52:02 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1ef95bfcf595f4650ff312254362ad2666b1cd6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:04:78:54:2e:24:bf:7c:e7:51:df:bb:cf:2a:
8e:ae:a7:39:7c:74:f0:cf:81:52:3c:f8:6d:d5:e9:
75:36:7e:11:34:3a:bd:38:3e:02:a5:e5:05:f1:7d:
26:ed:56:41:93:bf:a4:31:a2:31:bc:dd:9d:b1:90:
aa:92:b2:28:d4:89:10:a0:b6:38:1d:64:70:6d:c7:
a1:43:f0:72:70:c8:59:06:16:f8:43:96:c9:94:4c:
9c:23:d7:c5:ac:71:95:44:70:9c:e4:43:6d:a5:6f:
e6:dc:18:01:90:2c:48:1d:9f:6e:e4:fe:1a:0d:75:
c5:6a:16:2a:80:27:c6:1c:8d:22:8b:23:87:5f:61:
11:44:f8:31:46:a8:63:c5:aa:9e:6d:e0:b2:38:4f:
ee:1e:8f:71:82:7e:5d:f1:d7:be:dd:e9:6d:85:46:
7d:9f:70:b7:1f:f6:ef:dc:87:ff:e5:e7:77:8c:29:
97:c0:92:19:78:70:b8:01:3c:53:b8:5e:39:1d:17:
7c:7b:f2:66:77:12:5e:3b:cf:43:c2:4d:de:98:27:
68:3e:13:f8:9b:da:08:cc:22:bc:00:30:ae:56:fe:
85:dc:fa:1a:f9:93:ce:b0:f8:fb:c3:a8:93:e1:e2:
12:cc:34:d2:aa:5d:2e:97:55:2d:fb:19:f8:5b:0e:
a6:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:F9:5B:FC:F5:95:F4:65:0F:F3:12:25:43:62:AD:26:66:B1:CD:6B
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/74d697-4a07-4020-9dda-550e1018fcbf/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/74d697-4a07-4020-9dda-550e1018fcbf/1/Hvlb_PWV9GUP8xIlQ2KtJmaxzWs.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.0.0/22
IPv6:
2a0e:7800::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
208013
Signature Algorithm: sha256WithRSAEncryption
03:b3:4d:58:64:61:fb:f8:b4:8c:e6:e2:95:5a:f1:bf:ec:be:
66:a2:54:98:28:2f:68:70:15:7e:2d:46:5b:b2:bf:3c:56:59:
2a:18:f6:e9:b8:6c:ae:f7:61:24:4c:94:be:ce:f3:2e:f9:96:
c1:43:2a:a3:59:da:7b:22:f3:c8:96:7c:a6:cf:5b:6e:ea:f1:
48:da:1e:e7:5c:05:b6:dc:1c:56:f6:fd:0d:c3:aa:5e:d2:00:
2d:24:f3:ba:cc:31:38:fe:d6:63:22:56:eb:49:73:cd:02:cf:
a7:61:f0:a0:6e:7b:46:bf:d4:59:07:4e:9b:44:58:83:c6:8a:
20:44:89:09:96:df:54:55:66:55:b1:8d:da:fc:a4:65:1b:92:
84:34:e9:6d:cd:9e:bc:72:18:6b:ab:0e:59:0e:c9:f9:1b:56:
65:eb:64:2d:aa:43:d8:b3:18:7f:1c:89:36:b8:ee:db:f7:09:
12:9a:67:6e:02:90:27:44:00:1a:44:9c:76:e9:79:19:9c:25:
66:cd:e9:cd:a9:10:cc:80:64:ce:8d:b3:d9:2f:ae:8b:42:51:
1b:12:32:3c:5e:bd:56:d1:f8:b0:c0:e3:89:db:75:2f:b8:c5:
6f:31:a7:b7:28:34:df:f5:99:bb:7a:8d:36:44:78:80:6d:85:
94:20:dd:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 7 21:00:24 2024 by rpki-client on console-fra.rpki-client.org