Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/N-DLWK4j1HOuE6c0G3pzvdECig0.cer
File: N-DLWK4j1HOuE6c0G3pzvdECig0.cer (raw, json)
Hash identifier: Cu9ysJWSxaWiAbspdbkzLMskXNYUsQ1sQjz/e8b+TFY=
Subject key identifier: 37:E0:CB:58:AE:23:D4:73:AE:13:A7:34:1B:7A:73:BD:D1:02:8A:0D
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC56ED21B12491F473619709306F5DD44
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/af/46c38b-4324-44aa-9bb5-386910dcb903/1/N-DLWK4j1HOuE6c0G3pzvdECig0.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/af/46c38b-4324-44aa-9bb5-386910dcb903/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 14:30:23 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 206876
IP: 185.173.136.0/22
IP: 2a0b:5500::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:d2:1b:12:49:1f:47:36:19:70:93:06:f5:dd:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 14:30:23 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=37e0cb58ae23d473ae13a7341b7a73bdd1028a0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:0b:cd:3a:b6:98:ce:a2:e8:f5:b4:2f:81:97:
9a:68:b7:d3:2b:71:73:81:56:b8:dd:f4:63:56:b3:
be:8f:ad:62:ea:15:7c:01:fa:fc:f8:e7:d4:2b:c3:
3d:ba:ce:0f:12:06:d5:19:ea:5d:47:af:f5:fa:03:
3f:b2:bd:90:f8:8c:49:b0:b6:81:42:fb:32:3d:fe:
1c:32:c4:aa:c2:8e:5a:1f:e6:d7:31:f1:02:01:e9:
68:1c:b6:d7:e1:7c:9b:b5:c9:2c:82:c5:a5:bb:61:
fb:56:4f:54:54:3b:eb:3a:44:40:4e:54:37:8b:9e:
c0:83:f6:8d:b4:4d:fb:62:57:8e:9d:ed:21:a7:cc:
ab:8d:d8:ba:b6:a7:81:0d:69:b1:5f:0e:c0:19:3d:
d8:46:58:12:4a:0f:b9:b3:cd:f9:e3:be:7f:7c:14:
1a:8e:2f:59:ed:95:20:02:b7:0b:99:95:30:8b:cb:
d7:0f:cd:4e:d8:79:30:ea:3c:c0:1c:67:7f:af:b6:
70:97:61:67:66:50:3b:50:60:ab:72:81:82:37:fb:
a7:c1:d1:e0:a5:5f:87:34:47:33:95:b5:93:76:c4:
50:ed:e6:16:37:1f:04:ab:7b:0d:ae:96:86:ad:61:
f2:89:1c:ca:29:f7:9f:c0:be:20:64:55:3d:4a:af:
63:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:E0:CB:58:AE:23:D4:73:AE:13:A7:34:1B:7A:73:BD:D1:02:8A:0D
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/46c38b-4324-44aa-9bb5-386910dcb903/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/46c38b-4324-44aa-9bb5-386910dcb903/1/N-DLWK4j1HOuE6c0G3pzvdECig0.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.173.136.0/22
IPv6:
2a0b:5500::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
206876
Signature Algorithm: sha256WithRSAEncryption
2c:ce:ce:c5:bc:5d:61:07:6d:a7:63:ba:a0:1e:16:51:c1:eb:
83:14:df:46:9d:39:4b:b2:87:e2:9a:ba:e6:a2:7f:7e:2f:3f:
f5:fe:f9:0d:f6:7f:15:30:54:7b:c3:cf:38:b4:b0:c1:ce:0a:
46:76:11:17:d4:f3:1c:7c:21:08:8f:8e:58:82:23:db:40:c5:
4c:cd:b9:f9:6c:1e:da:37:7a:cf:a7:a1:f2:fc:4c:d5:c3:bf:
5e:ec:b8:59:2d:e2:cb:1e:03:4e:79:7d:e5:f5:51:67:1e:55:
52:0e:c9:d0:68:54:69:0d:34:c7:6d:c8:17:74:79:68:9a:18:
29:68:15:d7:9b:a2:6d:ba:8e:1d:41:93:91:84:26:f8:26:19:
cc:96:3a:2c:52:32:5a:13:05:3d:9f:09:22:cd:cf:6c:fc:f7:
ad:06:92:c2:f8:2d:d2:a0:1c:cd:f2:85:79:8f:af:9d:21:ad:
30:4f:33:7c:92:67:e2:c6:ae:20:60:c9:24:3a:1f:09:ca:09:
87:d8:4f:ea:bd:5e:a2:ae:02:c9:ee:d1:85:c5:5c:9f:2c:f0:
c4:ec:4a:d6:db:43:d5:61:53:83:c7:bb:74:3f:db:94:67:f4:
b6:48:31:66:0c:0e:1c:74:93:21:42:70:85:1f:51:5b:40:4c:
2e:27:c7:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:07:48 2024 by rpki-client on console-fra.rpki-client.org