Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/LtxXg3JdWVAZYqostbWQxCtX314.cer
File: LtxXg3JdWVAZYqostbWQxCtX314.cer (raw, json)
Hash identifier: wWjJeGR6RXhia5DHGpZIbgzU9p2bbR11r0fCJrg8e/Q=
Subject key identifier: 2E:DC:57:83:72:5D:59:50:19:62:AA:2C:B5:B5:90:C4:2B:57:DF:5E
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018DC6D5494A9C78C49F1926D2427D66C1FE
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/d0/e477bd-ac8b-455d-bc7f-eddac0c7a1f2/1/LtxXg3JdWVAZYqostbWQxCtX314.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/d0/e477bd-ac8b-455d-bc7f-eddac0c7a1f2/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 20 Feb 2024 14:04:43 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 41360
IP: 31.128.180.0/23
IP: 91.192.44.0/22
IP: 91.217.66.0/23
IP: 194.9.14.0/23
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 11:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:c6:d5:49:4a:9c:78:c4:9f:19:26:d2:42:7d:66:c1:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Feb 20 14:04:43 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2edc5783725d59501962aa2cb5b590c42b57df5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:30:4c:b9:e1:03:bf:d3:78:39:41:51:2a:4c:
bc:85:1a:68:48:18:6b:64:bd:a0:02:ad:79:0f:80:
e4:ef:93:c0:c7:93:a7:bd:69:db:4e:7d:ae:d7:d9:
e9:bc:5e:bb:45:6b:52:cb:63:01:29:24:4e:3f:e4:
55:87:b6:84:8d:a3:c0:f4:dc:e3:18:4b:cb:d0:cd:
6e:05:00:7c:33:f3:f0:b3:e5:0e:78:0a:c3:58:41:
06:e5:67:a3:31:b4:b2:7e:ac:d2:4a:f4:0b:c7:b9:
62:42:67:0c:1e:e0:b0:4b:bd:66:47:68:4d:de:a9:
fd:4a:8b:a8:7f:bf:24:97:0a:00:19:91:af:f8:10:
ce:90:d1:67:37:1d:3c:99:cd:a4:8d:59:b1:88:f2:
ed:3e:e5:5c:34:06:6c:22:4d:fe:9d:21:41:5f:4e:
1b:41:e4:ec:8f:f2:2c:64:49:cc:ee:bc:13:b2:b7:
02:02:5e:a5:11:18:1a:90:b0:c4:67:18:af:c8:40:
49:c2:53:c6:b2:8f:14:48:c4:47:68:76:34:1b:fa:
27:fd:88:87:3f:2a:6a:58:4a:fe:f7:f3:cd:dd:b1:
bb:e3:96:b7:e8:19:b5:90:94:46:2f:33:98:eb:d5:
5e:ab:a8:6e:cd:db:38:e2:38:3b:8f:17:1c:51:e4:
b2:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:DC:57:83:72:5D:59:50:19:62:AA:2C:B5:B5:90:C4:2B:57:DF:5E
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/e477bd-ac8b-455d-bc7f-eddac0c7a1f2/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/e477bd-ac8b-455d-bc7f-eddac0c7a1f2/1/LtxXg3JdWVAZYqostbWQxCtX314.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.128.180.0/23
91.192.44.0/22
91.217.66.0/23
194.9.14.0/23
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
41360
Signature Algorithm: sha256WithRSAEncryption
72:a6:7a:9e:61:b0:64:39:93:56:60:20:d4:81:da:44:fc:dd:
a9:32:4f:d2:2b:f7:5c:4e:98:34:0e:6d:db:40:52:fa:47:fd:
22:19:82:30:31:d6:f4:78:1f:ec:d7:6e:f7:cd:1f:48:9c:04:
63:86:58:3b:e1:d0:f2:c5:d2:7b:d2:ec:a0:78:ab:9e:26:86:
47:69:ed:8a:bc:b0:67:80:91:31:2d:b0:4b:d9:ad:8f:23:1a:
18:25:1e:30:94:ac:ab:55:80:58:56:83:37:7f:df:bc:da:69:
15:c5:4e:0d:51:e7:be:e2:1a:e9:66:ac:da:0b:8e:90:5c:d2:
32:26:2f:f8:75:59:c8:2a:df:83:54:85:3a:8e:0d:2a:88:02:
ad:80:3e:5e:af:12:ea:27:82:b6:2f:7b:68:19:a7:ae:52:81:
6e:ee:e3:df:ee:87:68:81:7e:fc:b5:87:39:4b:70:0b:7a:56:
7b:b8:66:55:f1:49:6e:b4:22:38:44:aa:d2:7b:99:ea:6e:20:
bd:e7:f9:17:6d:1e:52:6e:cb:e6:df:63:c1:49:a2:0e:74:0f:
50:d7:cc:40:80:dc:76:02:f5:ad:1f:30:0b:03:f8:96:70:76:
74:e6:33:04:1b:51:e9:62:3e:27:94:b6:57:a6:c6:25:27:20:
8d:64:18:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 13:12:02 2024 by rpki-client on console-fra.rpki-client.org