Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/QCHf817fDObkKNav_CEsRxdnnuE.cer
File: QCHf817fDObkKNav_CEsRxdnnuE.cer (raw, json)
Hash identifier: 694xhpu3GL29XyVueS3n1+T0qMiJgq/7OZwl1FkfouU=
Subject key identifier: 40:21:DF:F3:5E:DF:0C:E6:E4:28:D6:AF:FC:21:2C:47:17:67:9E:E1
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CCA2B545D6402B385701467EB273BE21B
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/05/014088-5684-49c2-b630-eb53a518c263/1/QCHf817fDObkKNav_CEsRxdnnuE.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/05/014088-5684-49c2-b630-eb53a518c263/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 12:34:46 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 204137
IP: 185.112.224.0/22
IP: 2a02:6860::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 11:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:2b:54:5d:64:02:b3:85:70:14:67:eb:27:3b:e2:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 12:34:46 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4021dff35edf0ce6e428d6affc212c4717679ee1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:57:ac:b5:1d:07:ac:fa:f8:e9:ba:59:4f:17:
36:50:40:5c:2d:00:72:5f:91:11:a2:60:3d:30:c6:
01:2d:27:47:67:15:1f:49:6e:e6:c7:37:db:71:63:
23:2d:50:15:be:cb:3d:1a:e5:ca:9b:6b:d5:37:bd:
46:2b:d8:ab:82:3a:06:14:00:64:91:88:a2:ea:aa:
9f:bb:fc:d8:af:1f:81:6c:fd:82:17:7d:9c:3d:63:
70:1f:df:c9:f8:db:a2:27:80:5e:e0:23:17:c3:4b:
39:5d:21:25:6f:fd:f6:e9:07:6e:91:49:b4:c0:9b:
8d:a9:ec:8b:82:01:8a:fc:76:42:20:52:8e:25:a0:
62:ab:22:99:c0:cc:43:d7:64:8a:40:fa:85:c9:53:
78:ac:f8:0c:c0:bc:18:d8:1f:e5:34:ac:ce:26:6a:
2b:06:9d:a7:93:6f:78:4f:8e:4c:e6:2b:25:2d:20:
7a:e6:24:39:90:8a:f9:17:fe:3b:18:cd:47:d3:4f:
a3:3b:15:05:34:b0:2f:81:90:22:3f:06:7c:f9:0b:
74:d5:c1:20:9b:63:02:ac:a4:f5:73:b0:ef:3b:3d:
1c:e3:c0:d0:e2:bf:2f:4d:fa:3d:62:08:fe:20:57:
bb:7d:45:e2:45:cb:90:9c:5e:5e:28:4d:6c:01:4d:
72:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:21:DF:F3:5E:DF:0C:E6:E4:28:D6:AF:FC:21:2C:47:17:67:9E:E1
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/014088-5684-49c2-b630-eb53a518c263/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/014088-5684-49c2-b630-eb53a518c263/1/QCHf817fDObkKNav_CEsRxdnnuE.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.112.224.0/22
IPv6:
2a02:6860::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
204137
Signature Algorithm: sha256WithRSAEncryption
00:bf:ea:5b:8e:7d:c0:fb:4b:d5:8f:c0:a0:30:25:02:93:cb:
9e:41:30:a4:c2:9b:b6:5e:02:f5:12:0f:a5:44:4f:77:77:a6:
3a:28:55:90:fb:71:ca:d7:2e:5e:b4:71:26:0d:b7:8b:86:74:
44:4b:a0:ee:db:d4:33:b0:87:44:ba:01:c0:b9:b9:c7:46:3e:
a2:77:4c:21:d9:41:f7:2c:e3:57:6d:cb:97:3e:38:be:ce:53:
20:11:9d:24:43:ab:78:9f:4e:6d:e7:ce:16:ab:af:c1:71:6b:
4e:86:4a:71:63:a3:a4:f8:51:b2:93:20:8b:c3:b7:e6:98:18:
cd:f6:46:26:0e:89:22:3e:bc:31:2f:cd:32:60:2f:c9:28:94:
88:bb:7e:c4:9c:6d:43:db:40:1a:4a:db:2e:ba:20:63:19:73:
f5:77:9a:29:97:40:41:2b:6f:b5:6b:d8:7c:c4:6d:f9:c5:1e:
26:76:a6:0a:fe:c7:fb:6a:e5:65:37:7a:23:17:7b:1d:30:25:
5a:87:4d:f1:d1:bf:36:51:de:4f:f3:a2:95:ea:68:56:23:13:
69:64:96:a5:6e:40:79:6b:9d:67:75:94:97:65:fc:b1:ab:b5:
d5:f2:3f:9b:53:e4:66:bb:68:c8:97:2e:0c:a2:36:13:94:de:
48:8a:51:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 13:15:49 2024 by rpki-client on console-fra.rpki-client.org