Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/I9SAsHlWF-Libm4YJkN356lsePM.cer
File: I9SAsHlWF-Libm4YJkN356lsePM.cer (raw, json)
Hash identifier: vzZt7A427GqcXXx/wsc9VLaHwNLlD9D6BHnLHocV4AY=
Subject key identifier: 23:D4:80:B0:79:56:17:E2:E2:6E:6E:18:26:43:77:E7:A9:6C:78:F3
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018EA32A72ACC7A908BFD8DB0D5F3E0ED7A7
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/f3/664cab-ba9a-4c40-97f4-af98e49f11ae/1/I9SAsHlWF-Libm4YJkN356lsePM.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/f3/664cab-ba9a-4c40-97f4-af98e49f11ae/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 03 Apr 2024 08:54:11 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 31059
AS: 215182
IP: 46.227.160.0 -- 46.227.164.255
IP: 46.227.166.0/23
IP: 95.143.0.0/20
IP: 185.72.224.0/22
IP: 193.242.176.0/22
IP: 2a02:1328::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 17 Apr 2024 16:38:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:a3:2a:72:ac:c7:a9:08:bf:d8:db:0d:5f:3e:0e:d7:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Apr 3 08:54:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=23d480b0795617e2e26e6e18264377e7a96c78f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:5f:bb:e9:44:2e:82:54:05:25:6d:e2:ec:2c:
fb:e0:2d:55:61:29:e4:e5:5d:58:4f:f9:ff:a6:7d:
0f:8b:9d:cc:2d:ba:9a:ce:b5:2b:c8:d9:88:ad:31:
f5:40:e7:41:20:61:17:99:0f:3d:6e:81:31:42:36:
e5:d7:0e:5a:b9:a3:a0:4f:81:fd:88:01:52:bd:af:
53:bf:2f:17:3d:b4:b1:ee:cb:4f:86:4e:48:b6:db:
f7:1d:0c:e0:26:68:b5:76:e3:f7:48:22:84:62:2e:
44:99:50:d6:7c:02:1b:a9:60:64:94:eb:87:24:7c:
39:14:9c:f1:60:98:b3:cb:58:96:67:3d:45:c2:8b:
77:68:a1:23:1e:b2:01:fc:87:7b:ad:92:4a:f0:ec:
a1:b8:fe:94:91:af:fa:a0:03:20:c6:78:89:e1:63:
f7:7c:50:d6:88:aa:69:a9:44:f4:8d:1c:c8:9f:53:
24:3f:47:9a:a7:7d:05:1a:ee:bd:7d:43:70:55:48:
98:19:80:a5:d7:14:b2:64:93:dc:2f:c2:3d:37:ee:
af:a3:43:bf:ff:77:79:52:c6:ea:bd:e8:d0:93:49:
97:8e:f2:92:cb:7c:49:d1:17:1f:bd:e1:3d:7e:c7:
23:94:59:e2:94:3e:e9:d0:ee:98:0d:f8:7b:5c:81:
28:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:D4:80:B0:79:56:17:E2:E2:6E:6E:18:26:43:77:E7:A9:6C:78:F3
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/664cab-ba9a-4c40-97f4-af98e49f11ae/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/664cab-ba9a-4c40-97f4-af98e49f11ae/1/I9SAsHlWF-Libm4YJkN356lsePM.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.227.160.0-46.227.164.255
46.227.166.0/23
95.143.0.0/20
185.72.224.0/22
193.242.176.0/22
IPv6:
2a02:1328::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
31059
215182
Signature Algorithm: sha256WithRSAEncryption
56:07:92:25:46:3b:e4:b1:14:2f:31:d0:7f:ae:99:e4:01:fc:
bf:7e:1c:2a:c2:9c:ef:c3:6d:b4:25:3b:7b:41:30:75:02:7a:
a1:94:54:e3:2f:6c:58:10:93:02:b9:4f:0e:c1:cb:01:3e:00:
65:15:53:16:17:c6:a1:f1:c7:02:8e:52:9e:24:5b:80:b0:43:
3f:13:94:0d:fa:6e:e4:f2:00:7f:6e:c7:b9:4e:1b:e9:18:45:
7e:5d:eb:8c:f2:60:fb:77:5e:1f:95:57:30:01:42:ac:af:df:
c2:7e:0d:2d:de:59:4a:6c:60:aa:1f:b4:3f:b6:9d:1e:67:78:
22:6a:00:81:84:77:c3:71:fe:70:37:c1:16:9b:0c:68:e5:e8:
d9:08:8a:ea:df:f5:4c:77:3a:95:0c:fc:fd:fd:35:b5:30:25:
a5:7a:52:0b:84:03:8b:99:ad:0b:1d:7e:8e:04:9c:a7:fb:83:
f1:70:d9:ef:94:4c:fb:51:f1:9b:14:70:cd:85:10:05:77:98:
a9:0a:90:8b:db:2d:80:f3:b6:1d:88:a9:67:d8:9d:19:a8:4f:
2e:30:5e:ae:9a:61:93:fc:11:11:bf:f3:47:70:18:fc:fd:ad:
85:6f:22:63:4e:1d:b3:c5:a6:5a:2a:51:13:9f:ee:8e:b9:f0:
76:22:a1:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 16 19:09:13 2024 by rpki-client on console-fra.rpki-client.org