Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/OA73_1tU9T_PIxKr4uw_WVi6FCU.cer
File: OA73_1tU9T_PIxKr4uw_WVi6FCU.cer (raw, json)
Hash identifier: DNO4YlPpjX39rQFljiMidvcQlQoVCca1M/q2eRP4g6k=
Subject key identifier: 38:0E:F7:FF:5B:54:F5:3F:CF:23:12:AB:E2:EC:3F:59:58:BA:14:25
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC2DB1D5F22D597181F7BE34F45C4CA60
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/fd/d91255-3243-4a47-946a-f04cc1c230cf/1/OA73_1tU9T_PIxKr4uw_WVi6FCU.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/fd/d91255-3243-4a47-946a-f04cc1c230cf/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 02:29:49 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 198090
IP: 91.199.170.0/24
IP: 91.231.164.0/22
IP: 91.237.16.0/23
IP: 185.30.68.0/22
IP: 185.114.80.0/22
IP: 185.246.36.0/22
IP: 2a06:6d40::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:db:1d:5f:22:d5:97:18:1f:7b:e3:4f:45:c4:ca:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 02:29:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=380ef7ff5b54f53fcf2312abe2ec3f5958ba1425
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:45:76:17:bb:6e:80:6c:2e:6e:dd:a9:27:8f:
a4:14:e3:eb:42:de:07:db:6f:94:40:16:e0:5e:55:
f6:7b:0d:fc:4d:2a:17:b4:f5:9a:8a:18:2f:5d:e1:
87:c2:26:8c:55:8a:88:3f:07:45:02:14:9d:0e:71:
16:db:f4:fe:88:59:6f:48:5f:bb:f1:d3:c4:09:7e:
e0:da:4f:9c:fe:3a:7a:01:91:a8:ed:5a:e1:89:11:
f8:99:c2:c7:1e:7e:72:2b:0b:5d:eb:5e:45:a6:23:
21:ea:fe:8c:2e:4e:59:18:8c:8b:b9:95:a7:2d:da:
a4:2d:27:c6:27:f1:63:15:c7:0e:dd:09:be:20:fb:
c8:99:eb:67:e4:ea:67:af:ae:ea:0d:a2:db:9e:33:
44:9b:13:e2:15:e0:5e:e8:8a:43:dd:44:c4:31:3b:
3c:fa:1d:f0:39:3c:a5:34:90:29:7e:7d:a2:60:c0:
6a:a3:ce:ba:85:e5:6f:6e:94:2c:6c:ca:fd:c4:fd:
cc:4a:0a:d8:3b:7a:e4:28:ab:6e:d6:ed:5e:e4:28:
57:ee:6a:4d:be:fa:2d:bd:25:87:33:c9:7d:91:a1:
5c:97:9f:97:dc:89:74:87:34:47:4a:8f:d6:58:59:
f9:8b:be:9c:17:d9:1c:f4:c9:ed:c9:68:5e:a0:83:
9b:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:0E:F7:FF:5B:54:F5:3F:CF:23:12:AB:E2:EC:3F:59:58:BA:14:25
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/d91255-3243-4a47-946a-f04cc1c230cf/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/d91255-3243-4a47-946a-f04cc1c230cf/1/OA73_1tU9T_PIxKr4uw_WVi6FCU.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.199.170.0/24
91.231.164.0/22
91.237.16.0/23
185.30.68.0/22
185.114.80.0/22
185.246.36.0/22
IPv6:
2a06:6d40::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
198090
Signature Algorithm: sha256WithRSAEncryption
6d:d5:f0:27:fe:33:db:e4:26:40:b8:ec:11:3c:57:03:b0:da:
a0:66:97:b4:c0:fd:13:7a:33:9e:c1:64:bf:9b:11:9c:a6:9e:
b6:61:04:d8:40:fa:ca:c4:b2:fe:8f:8c:9f:0f:14:f6:c4:af:
60:9d:40:3d:a9:07:7f:b4:8a:bc:2d:20:c3:19:d3:2c:0e:bd:
91:58:c0:b2:0a:9f:44:90:4b:f6:ca:0f:8b:db:24:cd:2e:f4:
a2:50:3f:ee:85:4c:3b:92:b2:4b:d8:fd:be:8b:05:60:44:d1:
33:42:1a:94:cc:2f:f0:26:52:7c:64:17:6d:cd:41:1d:c3:22:
07:9c:61:ff:5e:41:6f:59:e2:a3:db:7c:58:13:f5:c6:c0:9b:
03:df:7b:cb:b3:c3:b4:cb:82:54:4c:86:47:a0:e9:85:ca:36:
22:85:8b:21:e9:aa:99:64:d3:fb:22:49:0b:dd:b0:8d:ee:cf:
fa:ea:c7:72:8f:d7:d3:ed:58:60:7e:cc:e0:48:4f:05:35:11:
09:54:94:67:67:b4:b7:fb:1a:0a:da:c4:87:e1:63:49:f1:ea:
4f:2b:92:18:a2:69:ec:aa:3d:f0:9d:e8:32:fd:9c:f8:75:4a:
8f:4f:01:dc:d0:95:c8:23:4b:14:75:5a:53:cb:da:85:63:8e:
1d:9b:b0:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 09:05:11 2024 by rpki-client on console-ams.rpki-client.org