Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/Q2T-c0GbyG1fLnK0FLa01DedW_U.cer
File: Q2T-c0GbyG1fLnK0FLa01DedW_U.cer (raw, json)
Hash identifier: K8t1hjqd41ZVzXHX59vLDty/+jIFwCctZ9Ql9ZxdxsE=
Subject key identifier: 43:64:FE:73:41:9B:C8:6D:5F:2E:72:B4:14:B6:B4:D4:37:9D:5B:F5
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC2DAF5EA17EDACF419063C996BCCBAEC
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/e7/0b1815-53d7-456d-9fb4-670308d1ec9d/1/Q2T-c0GbyG1fLnK0FLa01DedW_U.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/e7/0b1815-53d7-456d-9fb4-670308d1ec9d/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 02:29:38 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 206898
IP: 185.172.108.0/22
IP: 2a09:4c00::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:da:f5:ea:17:ed:ac:f4:19:06:3c:99:6b:cc:ba:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 02:29:38 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4364fe73419bc86d5f2e72b414b6b4d4379d5bf5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:b0:5d:c4:cd:50:b8:97:7d:bc:43:6b:de:75:
d6:55:ca:31:1f:ee:e3:8f:81:e4:94:ad:51:90:07:
d4:e0:a4:2b:40:06:40:4c:04:e8:30:b3:24:cd:c5:
cd:e5:da:18:49:34:93:fa:df:67:f2:96:68:52:ab:
c1:0c:21:57:ee:2b:31:d0:55:ba:05:3a:1d:dd:1a:
81:bc:e6:d6:fc:7a:2d:f3:e3:20:2c:fc:bf:a0:c9:
7a:8d:5b:58:ac:1f:d8:76:5d:45:aa:aa:68:3d:90:
91:43:67:0c:56:28:50:ab:87:c3:d6:da:26:1c:8a:
47:8a:79:9b:e8:56:fa:88:66:97:dc:0d:6f:61:45:
41:9d:58:8a:54:09:33:93:bb:ad:14:69:7b:58:ff:
70:67:a9:3d:b9:0e:e9:fe:28:47:d7:43:35:eb:da:
eb:14:8a:fc:7a:7a:5b:38:cc:4c:60:15:83:8b:a3:
61:a2:87:6e:f8:ba:0b:ae:23:bc:41:15:f8:2f:8f:
7b:fb:9a:57:0b:4a:d5:0f:49:b7:86:e1:67:89:43:
89:71:c9:68:cd:d3:22:72:36:69:c1:26:6a:8c:8f:
67:5c:79:7e:32:10:d7:10:62:8b:8e:c5:02:e0:5a:
a7:fc:22:da:fd:0d:0b:2c:6a:f4:54:aa:93:f6:18:
4f:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:64:FE:73:41:9B:C8:6D:5F:2E:72:B4:14:B6:B4:D4:37:9D:5B:F5
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/0b1815-53d7-456d-9fb4-670308d1ec9d/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/0b1815-53d7-456d-9fb4-670308d1ec9d/1/Q2T-c0GbyG1fLnK0FLa01DedW_U.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.172.108.0/22
IPv6:
2a09:4c00::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
206898
Signature Algorithm: sha256WithRSAEncryption
00:f3:24:2e:f1:f3:c5:52:4e:90:0d:1f:7c:71:3c:f7:71:58:
99:0a:da:47:84:8e:09:c2:cb:c6:8a:55:5c:30:57:0b:8c:7e:
93:86:0f:31:9d:37:7d:ba:0a:c0:c1:e5:e9:cf:2f:06:e4:da:
29:a9:4b:a4:4b:87:b0:6b:4b:b1:2c:8b:5c:f3:3c:c8:ef:8a:
67:4b:97:74:22:34:56:2a:7d:60:da:fb:b6:28:1c:14:b7:1d:
f3:c7:e0:e4:fc:21:2b:1a:5e:ae:31:65:b8:46:7b:d0:f8:d8:
17:15:44:9c:3b:ea:87:74:2a:82:5c:84:ad:85:40:8b:52:3b:
5a:a5:a2:7a:9c:14:97:ea:b9:c3:dc:f2:7c:95:c7:f8:3e:b6:
57:8c:bc:24:de:0a:53:b0:e3:be:8d:b8:83:77:f3:2d:54:f3:
95:e1:e9:98:a6:a4:5f:75:e8:05:56:f6:2b:5b:f7:aa:3a:2e:
94:22:fc:77:54:e6:d1:f6:f7:40:14:8b:62:a6:ed:37:23:40:
96:c1:2b:26:ad:77:0b:02:50:b4:2a:42:d4:81:2c:9e:28:04:
58:e6:8b:7c:c6:33:41:97:d9:4b:9d:6b:38:65:14:c2:32:47:
f8:d7:b2:d6:e4:ff:c0:01:d4:bf:b1:a9:de:75:e5:bd:6d:d6:
af:7e:64:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 07:33:14 2024 by rpki-client on console-fra.rpki-client.org