Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/Iv9bz3ObBzL7G823F-xxf28csOI.cer
File: Iv9bz3ObBzL7G823F-xxf28csOI.cer (raw, json)
Hash identifier: Mh8/wOoZHs7iG38FeKUTUZyvFiOfHnodCqyuPYhr9vc=
Subject key identifier: 22:FF:5B:CF:73:9B:07:32:FB:1B:CD:B7:17:EC:71:7F:6F:1C:B0:E2
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC56EDD7E582A517D4DF783E63AD7B4BC
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/29/d7bf0f-691a-4cec-b5ce-7603e5dd5707/1/Iv9bz3ObBzL7G823F-xxf28csOI.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/29/d7bf0f-691a-4cec-b5ce-7603e5dd5707/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 14:30:26 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 48260
IP: 185.77.196.0/22
IP: 2a03:1980::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 25 Apr 2024 21:23:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:dd:7e:58:2a:51:7d:4d:f7:83:e6:3a:d7:b4:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 14:30:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=22ff5bcf739b0732fb1bcdb717ec717f6f1cb0e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fa:d7:f7:3c:11:38:91:ec:d7:5a:57:f5:23:dd:
43:e8:5a:14:24:f0:03:32:0d:4a:1c:61:4f:03:56:
b1:90:a1:93:47:5c:ee:b6:42:ff:1a:33:1c:4b:53:
cd:7c:e2:33:b0:74:cc:fc:68:d6:88:e2:66:07:2f:
de:2f:a7:53:46:06:71:16:2c:a8:31:47:06:8e:c1:
ca:92:94:16:fb:61:45:e3:ab:47:ef:42:2e:30:fc:
e1:27:4b:ae:dd:99:ae:fa:eb:cd:66:ef:30:de:e4:
5b:14:d9:e1:42:cc:73:8c:07:77:f2:13:ef:05:1c:
3f:f6:0d:d1:b8:c8:ab:86:08:ea:a5:bd:66:3d:06:
f0:c2:3e:e8:d7:56:b4:75:bd:84:9c:db:b0:1d:be:
e2:86:25:00:e4:94:d2:53:6e:57:54:56:7b:bd:1f:
ae:7d:dd:53:c0:72:28:b5:86:a6:ae:7a:83:08:b9:
03:71:ec:e0:49:ef:b1:6a:97:71:02:f1:bd:f0:63:
56:28:67:ec:4f:a2:61:30:4e:dc:ff:75:93:24:80:
67:3b:d0:e4:e6:eb:80:8e:54:68:b9:64:df:9f:b5:
12:de:1f:ab:49:4c:89:cb:56:fd:9d:d3:6d:52:b9:
a2:fb:dc:97:35:97:10:83:a5:78:ce:4a:a1:f8:7b:
48:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:FF:5B:CF:73:9B:07:32:FB:1B:CD:B7:17:EC:71:7F:6F:1C:B0:E2
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/d7bf0f-691a-4cec-b5ce-7603e5dd5707/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/d7bf0f-691a-4cec-b5ce-7603e5dd5707/1/Iv9bz3ObBzL7G823F-xxf28csOI.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.77.196.0/22
IPv6:
2a03:1980::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
48260
Signature Algorithm: sha256WithRSAEncryption
76:63:b0:38:43:77:07:8c:19:af:24:af:38:47:7a:ec:78:69:
30:23:7b:c7:12:9f:45:d4:11:ba:1b:b8:78:05:4c:7f:54:a7:
95:9c:89:59:e9:f6:67:4c:3b:26:32:a6:5d:a1:c0:41:d4:84:
70:65:0c:6d:f6:93:b7:8e:c7:a8:70:6a:da:51:97:63:e8:af:
bd:6a:18:81:17:ae:94:a5:79:2e:eb:ca:e0:c8:08:8c:84:92:
af:60:43:e5:ea:ee:fd:71:9d:5d:58:a4:d9:b4:19:55:23:74:
08:f2:38:07:82:92:01:5c:87:6f:cd:be:9e:4a:e2:1c:3d:32:
ad:15:da:fd:1e:9b:5f:5a:7f:23:1b:b2:ee:6c:ff:37:9d:8e:
2c:85:78:5c:c3:b8:b9:64:37:21:de:85:af:d3:fa:da:d4:20:
fb:93:ea:10:e1:c5:0e:5c:4d:92:1c:9d:42:2a:34:5a:3b:81:
46:27:fe:33:43:69:c3:ee:d9:c1:81:5c:bd:4d:08:89:ab:41:
f2:82:64:de:aa:e6:c5:c7:cc:17:a4:fe:d4:a9:43:36:d7:b2:
54:a2:67:22:fd:bb:d8:ef:27:c0:57:0c:9d:bf:cf:33:98:9f:
11:0f:37:fb:55:6f:d6:48:32:d1:0e:92:15:e8:59:5e:75:4f:
c6:e0:dc:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 00:25:08 2024 by rpki-client on console-ams.rpki-client.org