Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/J5ZpV5s85h7o7n1q9-MUsPcmNh8.cer
File: J5ZpV5s85h7o7n1q9-MUsPcmNh8.cer (raw, json)
Hash identifier: 2JXJwXHO/YDgJD4fTAg9boXzlOa3qO5UeVQdZS4k2Ic=
Subject key identifier: 27:96:69:57:9B:3C:E6:1E:E8:EE:7D:6A:F7:E3:14:B0:F7:26:36:1F
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC50016B800B1EE1FA1DA454CE694986B
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/8a/118413-b7aa-459c-99fa-4de1b520a594/1/J5ZpV5s85h7o7n1q9-MUsPcmNh8.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/8a/118413-b7aa-459c-99fa-4de1b520a594/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 12:29:26 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 203512
IP: 185.129.120.0/22
IP: 2a04:73c0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:00:16:b8:00:b1:ee:1f:a1:da:45:4c:e6:94:98:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 12:29:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=279669579b3ce61ee8ee7d6af7e314b0f726361f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:05:bf:b5:07:b6:9e:d8:21:1a:4b:0f:60:04:
b2:20:6a:96:98:22:8f:3a:2e:c4:ac:b2:d1:79:0b:
cb:ff:95:2b:d1:6a:a4:da:0f:e1:75:4c:64:f2:d2:
9a:d4:5f:b8:a8:a3:0d:4a:e0:57:ba:28:9f:37:72:
b6:e0:c4:1d:7c:a1:6e:d9:4d:d9:a6:15:ce:c0:b5:
f2:11:05:34:9a:34:36:e2:28:6f:69:60:23:bd:22:
2f:33:7f:75:76:b0:3a:ba:71:6a:15:de:2a:7f:6e:
55:8b:76:2e:b9:b2:a1:3b:22:53:64:56:52:31:a6:
af:38:93:6c:51:d7:d2:ca:cc:37:87:df:7d:6c:0f:
12:90:43:76:64:ed:58:65:e6:12:e2:db:a9:6e:f1:
6c:19:22:12:c5:67:ef:e9:dd:c2:c7:1b:c6:ac:59:
d6:67:2a:5e:76:9a:32:cb:7e:f5:d1:44:93:32:4b:
68:0d:11:71:14:60:6b:10:f7:11:6d:77:7b:5c:b4:
b3:ee:91:98:ce:64:65:d3:9a:ab:05:13:bd:dd:32:
0b:a6:df:0c:45:a7:22:35:84:c2:87:fc:01:70:10:
53:ea:a4:f3:c3:0f:64:0a:f5:16:1b:a2:6c:ba:c6:
a6:5e:d3:00:fb:37:0a:d0:ac:88:6b:8d:72:54:89:
2d:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:96:69:57:9B:3C:E6:1E:E8:EE:7D:6A:F7:E3:14:B0:F7:26:36:1F
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/118413-b7aa-459c-99fa-4de1b520a594/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/118413-b7aa-459c-99fa-4de1b520a594/1/J5ZpV5s85h7o7n1q9-MUsPcmNh8.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.129.120.0/22
IPv6:
2a04:73c0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
203512
Signature Algorithm: sha256WithRSAEncryption
4d:45:ba:57:64:c4:1c:78:e8:c0:11:da:31:85:9f:31:6c:7b:
f7:60:da:2d:c9:2b:99:9c:b7:4f:15:7f:08:02:db:5f:b0:64:
1d:12:2c:51:d8:fe:0e:de:c3:83:6a:d2:3e:2f:36:3f:38:a7:
e8:d8:d9:e3:7b:1c:22:a0:2a:bd:03:d6:2c:75:f1:9f:85:91:
28:51:f6:53:87:47:f1:0d:8a:0d:58:69:b9:62:da:ff:ed:9f:
8e:71:bd:70:73:71:fb:55:09:ae:e3:42:06:33:91:21:41:15:
88:2f:cc:b9:3d:f2:6e:1b:8f:a4:b6:6f:38:14:27:07:99:2e:
aa:00:25:b5:88:10:1d:e8:51:5b:19:3c:f2:d3:0a:79:39:7b:
b0:b8:bd:d9:e7:b0:cf:d0:3a:c3:0b:c0:dc:25:8f:c1:9b:e6:
87:eb:1a:bd:ec:64:eb:21:05:d5:f6:d8:ae:6d:21:56:5b:13:
16:ae:d7:2e:78:fa:a8:e8:1c:78:db:e9:a4:7c:ef:e6:4b:ea:
24:5e:b8:52:7a:49:3e:76:ff:81:bf:0b:39:79:98:3a:4e:e9:
06:97:b5:75:b7:8c:fc:d3:11:c5:59:7a:cb:e3:22:56:8c:c2:
3e:eb:d3:df:07:7c:21:0e:66:5e:d3:86:1b:36:dd:9d:e2:44:
3f:1d:1c:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 09:58:40 2024 by rpki-client on console-ams.rpki-client.org