Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/L708fpx3-aiJSQVlDX9aQ5oHJl0.cer
File: L708fpx3-aiJSQVlDX9aQ5oHJl0.cer (raw, json)
Hash identifier: iqnDpDedZXtKoVqB/3gRXgBaUIItF4psCCKElsa01Pg=
Subject key identifier: 2F:BD:3C:7E:9C:77:F9:A8:89:49:05:65:0D:7F:5A:43:9A:07:26:5D
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC26D4D839B3FE1F142954CCF933B8466
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/17/eebdcd-896f-4675-a246-5dcbbde35dcd/1/L708fpx3-aiJSQVlDX9aQ5oHJl0.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/17/eebdcd-896f-4675-a246-5dcbbde35dcd/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 00:29:52 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 204581
IP: 45.136.192.0/22
IP: 185.239.228.0/22
IP: 194.59.157.0/24
IP: 194.59.168.0/24
IP: 194.59.176.0/24
IP: 194.59.181.0/24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:6d:4d:83:9b:3f:e1:f1:42:95:4c:cf:93:3b:84:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 00:29:52 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2fbd3c7e9c77f9a8894905650d7f5a439a07265d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:67:fc:eb:47:f6:1c:30:65:77:17:53:62:bd:
9a:d6:29:4e:14:79:ed:76:9b:3c:ba:93:df:6a:e8:
2f:c0:32:e3:c5:82:aa:d5:24:39:cb:93:38:28:cd:
51:40:e4:83:ff:ac:a5:71:26:e0:55:2b:01:39:d7:
28:19:21:2d:f8:b2:4f:5b:c1:b9:0f:58:9d:2a:a6:
09:29:b0:32:21:6d:c8:c7:9a:89:1a:0f:26:a2:59:
a2:1d:a4:36:13:f1:40:c3:ec:ff:40:85:db:47:a1:
39:ad:19:d7:bd:20:fc:c2:c8:5c:c7:58:7a:a7:b1:
c6:ef:f1:74:7c:40:93:71:ba:eb:3a:5a:78:98:d5:
74:d1:da:c1:d7:ba:6d:2a:5a:7b:85:93:66:07:c8:
e3:c9:d2:fa:31:96:d5:6f:99:73:fb:8d:ae:3f:99:
d3:f1:0b:3f:a6:85:73:a4:3f:aa:8c:e5:14:62:5b:
4c:75:07:c8:af:fc:4c:ce:42:ff:39:b8:52:37:7c:
a7:a0:9a:bf:bb:8e:76:43:bb:86:68:9e:4d:27:f0:
b4:73:0b:17:f5:3c:f8:6c:56:95:39:43:53:01:69:
65:a7:b7:ab:df:a8:78:63:c1:e9:34:26:cc:42:33:
00:b9:e3:54:a0:63:3a:6e:d9:db:8c:ab:9e:d1:16:
48:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:BD:3C:7E:9C:77:F9:A8:89:49:05:65:0D:7F:5A:43:9A:07:26:5D
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/eebdcd-896f-4675-a246-5dcbbde35dcd/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/eebdcd-896f-4675-a246-5dcbbde35dcd/1/L708fpx3-aiJSQVlDX9aQ5oHJl0.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.136.192.0/22
185.239.228.0/22
194.59.157.0/24
194.59.168.0/24
194.59.176.0/24
194.59.181.0/24
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
204581
Signature Algorithm: sha256WithRSAEncryption
5b:95:ed:9d:15:c0:d7:18:37:e3:ca:5a:65:29:68:3a:64:b0:
95:aa:c7:94:b8:76:53:02:c7:44:da:0f:7c:95:8b:fe:2d:7d:
1b:1f:63:97:07:4d:aa:b4:c6:fd:43:b7:43:f3:8d:b0:32:f2:
a0:71:9f:e0:14:a1:4f:64:a4:6a:99:9d:f6:23:43:97:bb:5c:
68:34:ff:2f:53:2e:6c:47:6b:7c:67:e3:f7:df:27:29:89:9e:
ca:70:8b:14:f4:e2:19:5f:2f:7d:e3:82:ed:06:85:34:d4:39:
e4:96:74:ca:a8:a3:c9:2e:2a:13:00:28:0f:04:19:08:5b:89:
e2:34:f4:bd:28:af:8e:92:b5:d3:4d:e7:02:22:9b:5f:33:c0:
6d:5c:da:95:10:ff:47:00:74:d5:70:da:b9:23:7b:e1:84:77:
cb:f5:a3:77:5a:ae:99:2f:d3:b6:a6:a4:e9:0e:6d:04:dd:91:
32:91:fc:71:e7:99:c4:40:4c:8f:4b:c2:81:69:ab:e4:7b:4a:
5e:74:d9:97:79:b4:d3:c7:ee:76:ec:74:75:f7:9a:17:13:14:
e8:07:89:99:d0:56:00:83:d6:2a:e8:c7:27:13:83:76:69:97:
4f:08:ff:2d:c2:9b:50:77:38:f5:40:36:5f:25:db:ec:62:4e:
56:ef:a0:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 01:41:15 2024 by rpki-client on console-ams.rpki-client.org