Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/IAxw024BOwfk5tjsPqTuQTtKqpg.cer
File: IAxw024BOwfk5tjsPqTuQTtKqpg.cer (raw, json)
Hash identifier: HiOYOz1C4ALbIfuoq2uTASOXwI/cbs2QrWSN16PchYY=
Subject key identifier: 20:0C:70:D3:6E:01:3B:07:E4:E6:D8:EC:3E:A4:EE:41:3B:4A:AA:98
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC64B0DB93A3C2CE5F228435A6332A98C
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/4b/d5ee0d-475f-41d7-9c25-15803ffb1746/1/IAxw024BOwfk5tjsPqTuQTtKqpg.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/4b/d5ee0d-475f-41d7-9c25-15803ffb1746/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 18:30:56 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 212763
IP: 185.165.0.0/22
IP: 2a0a:5fc0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Dec 2024 06:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4b:0d:b9:3a:3c:2c:e5:f2:28:43:5a:63:32:a9:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 18:30:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=200c70d36e013b07e4e6d8ec3ea4ee413b4aaa98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:36:78:65:15:60:fc:d4:7b:b9:92:f0:b6:1a:
51:82:3e:ac:07:c1:b5:a5:11:16:45:5d:d6:27:dd:
2d:f9:36:bb:b8:0f:ab:91:ce:7a:66:31:58:26:b3:
fd:4e:c8:8c:26:e1:57:0c:79:57:6b:84:62:5c:68:
2d:9e:7d:e6:66:95:fe:af:3d:f5:15:b4:82:32:84:
a6:d3:67:ae:85:07:0e:0a:dd:5e:f2:1f:13:f0:8a:
00:c7:53:4f:97:0e:15:37:d9:af:37:99:66:14:f5:
a9:74:fd:da:24:a0:f2:6e:5f:ce:43:40:c0:3f:e3:
2c:1c:1b:df:42:82:31:37:75:ff:c2:fe:df:1b:10:
64:32:3e:f4:4c:d4:89:4b:da:37:df:10:03:ba:2f:
99:12:bb:12:5a:72:b0:0c:26:b8:fd:18:9a:f2:64:
0a:f1:1a:81:e7:e3:73:9b:01:4a:95:23:33:22:22:
51:5f:59:1e:29:e6:6a:65:f3:7e:fb:61:09:a2:e4:
90:54:cf:0c:b7:a8:40:34:d5:ef:7e:3d:51:f3:f5:
5f:2d:ef:4f:d8:34:88:20:af:5a:fe:0d:b6:f4:3f:
ce:e7:68:b8:d7:b7:93:8f:80:2f:5f:b9:0c:fc:b8:
ec:80:f8:d4:69:0a:6a:1d:56:ba:39:d6:c3:ba:32:
f8:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:0C:70:D3:6E:01:3B:07:E4:E6:D8:EC:3E:A4:EE:41:3B:4A:AA:98
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/d5ee0d-475f-41d7-9c25-15803ffb1746/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/d5ee0d-475f-41d7-9c25-15803ffb1746/1/IAxw024BOwfk5tjsPqTuQTtKqpg.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.165.0.0/22
IPv6:
2a0a:5fc0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
212763
Signature Algorithm: sha256WithRSAEncryption
2a:ba:f3:9e:67:75:50:f4:df:c5:6e:ec:65:91:53:42:7b:03:
76:97:6d:69:89:8d:28:61:2d:70:13:2a:28:07:80:a3:f6:c2:
f7:ef:3f:90:16:59:47:0b:d4:a4:f8:23:1c:a0:85:83:b8:09:
9b:6a:76:40:0b:ba:ff:5b:22:2f:95:12:9f:72:d5:5f:f6:70:
f0:67:a1:8b:73:5d:a6:0e:44:6e:e2:12:a0:cd:2b:3a:12:44:
44:ff:f8:a7:b6:03:26:4c:9c:3c:6b:2a:d7:43:77:ed:e3:4d:
4d:d7:77:0a:9c:26:0e:2c:96:5f:f1:a0:71:05:5a:98:46:8c:
c1:5c:82:16:54:55:69:15:be:25:60:19:f4:29:3c:62:3b:f2:
18:5d:da:56:6f:6d:b9:f9:57:6e:78:c7:5c:b0:2a:0b:83:43:
8d:05:5f:0a:e5:d7:4d:8c:96:ce:9e:32:b4:60:9f:d9:14:f3:
19:7d:94:84:90:76:03:60:39:2d:e8:cf:c6:34:9c:8c:83:70:
a4:62:2a:41:39:98:71:a8:b9:98:2e:75:d0:f8:6c:bd:28:5a:
87:77:8f:5c:04:bb:05:6b:17:9e:52:23:be:10:ff:65:f8:be:
05:31:30:2c:f1:22:e6:cf:48:76:59:5a:fa:65:f4:4e:40:51:
1e:b1:c1:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Dec 26 17:03:48 2024 by rpki-client on console-fra.rpki-client.org