Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/KqggK00MXBEdN08emLc9tJJNZLE.cer
File: KqggK00MXBEdN08emLc9tJJNZLE.cer (raw, json)
Hash identifier: Erlc3gmrdUEQm2V3aZDG7Wu8xlh07QAmwmrK/mFPVnw=
Subject key identifier: 2A:A8:20:2B:4D:0C:5C:11:1D:37:4F:1E:98:B7:3D:B4:92:4D:64:B1
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC86F4F8DB6471BE7606BCE7858838F92
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/f4/27b3b3-4b22-4740-a65a-6e7bae5ff898/1/KqggK00MXBEdN08emLc9tJJNZLE.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/f4/27b3b3-4b22-4740-a65a-6e7bae5ff898/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 04:29:47 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 202008
IP: 185.53.188.0/22
IP: 2a02:4060::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:4f:8d:b6:47:1b:e7:60:6b:ce:78:58:83:8f:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 04:29:47 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2aa8202b4d0c5c111d374f1e98b73db4924d64b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:56:11:d7:94:ac:8f:ff:ab:d5:1b:38:60:69:
44:3c:fa:6e:96:03:7f:79:95:90:9c:5a:a9:14:3d:
1f:12:7b:4f:d5:a0:70:04:98:8a:42:a5:3c:47:72:
4e:df:ea:fc:1f:ad:73:a7:1d:1f:92:8c:65:5d:10:
ab:40:b2:b2:34:6c:04:f3:c6:c3:c0:44:b1:f7:1e:
38:0a:d8:b4:bf:b2:12:77:bc:68:36:e1:e4:9d:a5:
5b:90:70:fe:48:e1:4f:ae:4a:4e:84:9d:b2:db:5c:
18:3e:3d:06:3b:80:80:54:1d:89:00:16:63:a0:5d:
92:59:ff:9f:90:b8:1e:de:ee:86:99:05:98:b1:49:
e1:fe:0f:c0:69:36:25:dc:b7:cd:65:47:38:5f:4b:
02:ea:38:9b:8b:76:aa:7e:cb:af:e8:c5:f0:69:42:
85:09:8b:5e:ec:69:e3:0f:b0:e2:44:0f:83:52:5f:
b8:8c:10:8f:c0:d1:33:c3:e7:24:0d:05:d1:d5:fb:
f0:b1:7c:e7:8e:fb:92:f1:36:02:50:31:37:cc:19:
2f:93:d7:9f:67:5a:38:84:dc:02:56:79:db:87:9d:
9e:2c:20:2a:3e:3f:26:0e:6b:25:51:40:2d:39:42:
f8:42:36:d8:f3:92:ea:02:28:a2:41:34:38:57:3e:
42:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:A8:20:2B:4D:0C:5C:11:1D:37:4F:1E:98:B7:3D:B4:92:4D:64:B1
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/27b3b3-4b22-4740-a65a-6e7bae5ff898/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/27b3b3-4b22-4740-a65a-6e7bae5ff898/1/KqggK00MXBEdN08emLc9tJJNZLE.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.53.188.0/22
IPv6:
2a02:4060::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
202008
Signature Algorithm: sha256WithRSAEncryption
5c:bc:f6:d2:00:c8:59:04:d1:70:46:f6:cd:ed:2c:67:8e:dc:
61:f7:9e:fc:9a:45:c9:ab:2a:db:76:2b:a3:16:08:b4:c1:43:
da:a3:80:2e:d4:6e:1f:bc:56:e0:4d:7f:a1:7c:6a:31:fb:b3:
ab:03:4d:a2:35:f6:11:a2:51:86:06:60:46:d3:de:a1:07:39:
e5:a6:c9:9e:b2:18:8d:cd:c7:33:26:16:4b:40:cc:98:b4:19:
d1:6f:0d:02:0a:5c:29:d5:8d:b8:7e:d5:7b:74:64:72:54:77:
e4:97:f8:f3:87:a8:fd:83:d7:56:ab:24:71:48:c7:94:c0:01:
9c:d9:55:b7:11:ff:a9:29:8f:cd:df:39:63:79:12:2e:12:17:
55:37:35:ff:20:a7:92:cf:1b:72:0f:1a:28:72:7d:bc:80:63:
f0:3c:a9:cf:a4:a7:57:28:c4:56:92:f9:ce:2e:5a:b5:f9:14:
7b:0d:42:86:83:c8:b0:a9:01:08:97:72:7a:7c:be:45:14:2a:
76:d7:76:cd:5b:66:54:ff:ab:bb:e1:cc:14:63:d8:4d:f6:d9:
e3:7b:d2:75:f5:1a:0d:aa:bf:12:fc:8c:fc:cd:e2:48:ff:f2:
e1:dd:f5:ac:c3:1a:3a:be:04:bb:87:f5:5c:fa:8f:d4:fe:eb:
19:01:35:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:07:18 2024 by rpki-client on console-fra.rpki-client.org