Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/OHKOm9Nzmd-f-uWHvQaISzUKZbc.cer
File: OHKOm9Nzmd-f-uWHvQaISzUKZbc.cer (raw, json)
Hash identifier: h0EFqU9tEuqZtzIQujMf2PSyRITxr3YHQWe9On4XtkA=
Subject key identifier: 38:72:8E:9B:D3:73:99:DF:9F:FA:E5:87:BD:06:88:4B:35:0A:65:B7
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC56EE8E47EA11CCB96348C94AFC426D7
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/d7/be3e25-881c-4aec-a932-f8cfa33d684e/1/OHKOm9Nzmd-f-uWHvQaISzUKZbc.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/d7/be3e25-881c-4aec-a932-f8cfa33d684e/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 14:30:29 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 204973
IP: 185.184.108.0/22
IP: 2a0b:2680::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:e8:e4:7e:a1:1c:cb:96:34:8c:94:af:c4:26:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 14:30:29 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=38728e9bd37399df9ffae587bd06884b350a65b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:38:bc:f3:75:d9:05:af:65:57:97:14:96:f1:
c8:8b:1b:61:6a:15:01:23:0a:40:07:92:fd:11:74:
8f:7c:1b:a3:b6:ed:48:81:69:bc:06:7e:49:69:d7:
48:07:8e:97:af:12:24:3a:4f:99:8b:81:6b:f5:68:
7a:93:a4:fb:54:86:42:b5:34:81:2d:37:5b:60:b7:
88:75:3a:05:07:39:52:f2:ab:d4:ca:a7:aa:30:10:
b6:dd:c9:9a:36:1c:67:33:2f:c1:c9:be:2c:c8:ab:
b9:0f:da:d3:72:07:a9:b3:9d:26:77:e9:d4:82:6c:
71:cb:77:07:9b:f4:74:09:ba:fd:64:d2:df:b6:2b:
4a:d8:e6:a6:42:bb:91:58:68:7b:4d:59:15:e6:90:
f8:f0:e3:db:61:e8:0c:2c:cf:0b:0a:c9:43:c3:69:
7d:36:01:8c:bd:18:74:bc:46:7f:df:0a:e8:29:0b:
a7:bb:d8:e3:e3:86:e2:4f:77:fa:ce:2e:2a:25:ea:
79:2c:f1:62:8a:73:c9:ab:56:31:e4:fb:fd:85:59:
59:c9:3c:c2:b9:57:aa:26:fa:91:a3:95:27:80:13:
ea:76:27:96:07:78:31:44:fc:c0:93:a5:7e:0d:fb:
da:90:82:51:2f:d1:9e:3d:00:d4:3d:53:e0:81:98:
7f:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:72:8E:9B:D3:73:99:DF:9F:FA:E5:87:BD:06:88:4B:35:0A:65:B7
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/be3e25-881c-4aec-a932-f8cfa33d684e/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/be3e25-881c-4aec-a932-f8cfa33d684e/1/OHKOm9Nzmd-f-uWHvQaISzUKZbc.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.184.108.0/22
IPv6:
2a0b:2680::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
204973
Signature Algorithm: sha256WithRSAEncryption
98:c3:cf:29:05:96:52:d8:2a:0d:0f:3f:90:b0:68:f9:4b:1d:
c3:73:ea:d7:f4:81:7f:18:5b:4c:73:b4:39:fc:36:ca:2f:fd:
99:d3:10:87:8e:2a:96:3b:be:77:12:ac:75:64:33:7c:25:f2:
db:ba:15:0d:a3:63:87:58:b2:8a:2f:d7:ae:e5:62:b9:f6:0b:
11:64:30:83:a7:53:1b:5d:cb:12:46:14:dc:89:3f:c8:2b:5d:
08:b0:9c:19:25:92:79:25:5e:ca:37:97:f0:06:e3:be:42:8b:
6d:89:97:ff:9e:58:4c:1e:47:75:3d:af:c5:4d:16:2f:17:ba:
32:78:bb:de:09:5f:d3:09:8d:84:2c:ae:b5:6b:c6:8c:bd:ae:
d4:18:3d:2c:98:cb:1a:52:cf:29:1c:cb:21:52:4a:ec:89:a8:
f4:79:ae:14:f3:52:7c:be:51:c3:cf:fa:20:d7:49:8f:90:a2:
57:e9:39:79:33:9a:88:39:07:d1:ae:01:af:36:c6:31:78:aa:
51:83:fa:67:e5:1d:e4:d5:ec:d9:cf:87:ea:9a:0c:4a:a4:63:
3c:3f:0d:4a:7c:fd:19:37:cc:03:90:8e:4e:76:a1:1c:55:8d:
60:6b:33:59:db:19:d6:fc:2c:7e:ea:3d:2d:5b:2e:6a:b0:2f:
78:14:d6:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 11:30:44 2024 by rpki-client on console-ams.rpki-client.org