Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/J7ITMhmYnmoy1xFY0IUqUW62958.cer
File: J7ITMhmYnmoy1xFY0IUqUW62958.cer (raw, json)
Hash identifier: s/vDwyR1t4OYcUn1AhytWS8Gl+zwOcVqIJmaRpvjnvE=
Subject key identifier: 27:B2:13:32:19:98:9E:6A:32:D7:11:58:D0:85:2A:51:6E:B6:F7:9F
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC94E649178588F9A521F327A7093EE58
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/d3/c66606-2ae8-4ada-b35b-c2e8a0303fc3/1/J7ITMhmYnmoy1xFY0IUqUW62958.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/d3/c66606-2ae8-4ada-b35b-c2e8a0303fc3/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 08:33:27 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 202675
IP: 185.17.106.0/23
IP: 185.56.218.0/23
IP: 2a02:5620::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4e:64:91:78:58:8f:9a:52:1f:32:7a:70:93:ee:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 08:33:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=27b2133219989e6a32d71158d0852a516eb6f79f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:b9:a5:9f:80:27:f6:04:e3:ba:4d:1c:e0:e1:
2f:4a:3c:c7:33:6f:a0:8b:87:a9:9c:ad:9c:db:61:
55:22:3a:e6:11:d9:e0:fb:44:76:ae:15:1d:41:8c:
e1:5e:7e:37:9e:b5:4a:f8:f7:c4:23:31:b3:3d:5b:
86:70:ef:8d:c4:82:19:2c:2d:e2:eb:00:bc:4d:06:
3d:24:b0:77:be:84:62:ad:e3:7a:57:dc:19:a5:0d:
6d:f0:58:e6:6c:28:f8:40:9f:f7:b8:9f:ed:1d:71:
79:37:b0:e4:a4:2b:e4:fb:7b:a7:3f:fb:8c:98:fa:
ab:d1:3c:2e:4d:ed:cb:1b:70:fb:86:8c:0d:d6:61:
89:22:6d:d7:ef:67:08:5a:b3:e4:ad:b1:c6:d1:ef:
15:9f:45:01:f1:31:66:02:63:26:eb:81:e2:44:8c:
58:ea:b8:52:54:1c:92:c5:8f:c4:e3:0f:5a:19:8c:
79:11:3e:a4:1d:f9:6f:96:d2:0d:b2:37:16:fa:b3:
cd:2a:19:fa:69:e4:57:44:74:f2:5a:42:20:dc:66:
77:9c:b5:ee:97:c3:e9:29:66:e4:c3:b6:08:04:39:
0d:82:50:e2:5b:0e:d3:69:10:87:ab:a5:3e:2c:57:
fb:a5:e0:8e:e5:4d:d9:00:9a:bf:c3:ed:73:09:15:
f4:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:B2:13:32:19:98:9E:6A:32:D7:11:58:D0:85:2A:51:6E:B6:F7:9F
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/c66606-2ae8-4ada-b35b-c2e8a0303fc3/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/c66606-2ae8-4ada-b35b-c2e8a0303fc3/1/J7ITMhmYnmoy1xFY0IUqUW62958.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.17.106.0/23
185.56.218.0/23
IPv6:
2a02:5620::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
202675
Signature Algorithm: sha256WithRSAEncryption
5e:7e:7c:4f:63:fd:51:c3:b8:77:df:77:f3:d6:bb:84:5c:29:
9e:c8:14:97:e8:03:c8:4b:95:d1:2b:78:41:51:9c:c5:05:8f:
4b:5d:3a:92:74:71:42:6a:3d:1a:72:e0:26:63:47:f9:9c:1d:
9a:62:48:98:7b:4e:8d:b9:22:aa:67:43:eb:5a:84:db:bb:59:
f9:4b:2a:6d:f2:10:3a:bb:88:6e:9f:b5:8b:9b:03:18:e9:3c:
90:8a:7c:ec:2c:0e:86:8c:00:d1:d1:14:b4:d8:61:16:56:3e:
7e:25:ba:83:5e:9c:1f:a8:4a:50:ca:86:63:9c:e1:44:b7:2d:
2d:68:a6:ea:a7:ce:04:05:78:a9:22:c5:d8:1a:a8:d4:ed:3e:
de:ff:fd:30:67:80:96:ae:0a:c0:35:05:d0:25:07:f0:05:05:
f3:9b:71:cb:60:bb:11:62:a7:1c:6a:90:2d:6e:d3:14:21:66:
be:e2:4c:9a:90:f1:22:73:39:6d:78:40:c6:99:49:38:5a:fe:
b3:59:4f:d7:8d:30:52:20:19:ec:65:a5:36:65:81:c3:7e:a6:
19:f8:a0:fe:29:b2:53:4b:2f:35:4d:87:6b:e1:e0:f0:e0:9a:
e8:07:fa:b2:fc:ee:1d:93:2f:d2:9e:49:9d:92:e2:1e:8c:4e:
3c:20:83:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 11:27:41 2024 by rpki-client on console-ams.rpki-client.org