Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/QHsur7H0zNuzzWzU10srM5eKC3A.cer
File: QHsur7H0zNuzzWzU10srM5eKC3A.cer (raw, json)
Hash identifier: sCnLfbGPmegiQrWWvXi7DTK8DljZ4mZEDRcWgO8FFJY=
Subject key identifier: 40:7B:2E:AF:B1:F4:CC:DB:B3:CD:6C:D4:D7:4B:2B:33:97:8A:0B:70
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC94E6ED7EB5B01CD3E27726DE25C8564
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/ab/6aecc5-b85c-418b-afc8-c2e668c19727/1/QHsur7H0zNuzzWzU10srM5eKC3A.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/ab/6aecc5-b85c-418b-afc8-c2e668c19727/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 08:33:29 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 206914
IP: 185.148.164.0/22
IP: 2a07:5f40::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4e:6e:d7:eb:5b:01:cd:3e:27:72:6d:e2:5c:85:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 08:33:29 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=407b2eafb1f4ccdbb3cd6cd4d74b2b33978a0b70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:9f:10:0d:4d:39:e4:fe:e8:b9:45:9a:6f:6f:
4a:ad:7b:57:6d:2c:ad:8e:11:76:14:ce:d7:81:0f:
6f:62:0c:57:3c:27:49:7b:37:a9:49:62:e9:50:3c:
b1:b7:db:6f:53:72:68:5b:1c:70:0d:a6:61:a5:a4:
db:0b:7d:9a:3b:25:83:10:de:ff:98:70:79:2c:03:
80:72:50:dc:e8:a9:27:34:ad:cb:a9:fc:88:1a:e2:
a1:46:ac:30:18:5c:27:b5:e2:d3:55:e5:20:0c:7d:
e6:d9:14:63:b7:a3:00:15:f4:b8:3f:4a:9e:f8:e1:
1e:3a:55:c5:8c:8e:30:d3:19:1e:b8:e4:3e:c8:01:
ce:f3:a1:9d:11:0f:c5:a5:eb:33:5c:cd:4d:e1:a7:
dd:af:7b:2e:cb:9b:78:9f:c4:39:6b:d2:57:f3:c4:
0d:ed:77:4d:a1:3f:c8:87:f9:ee:74:45:51:49:fa:
0c:c5:15:d1:15:f4:07:b8:32:28:9f:94:a1:e1:8a:
94:2c:e6:b6:a6:32:75:23:87:2f:f7:a8:77:41:70:
f0:30:ae:c2:67:82:ad:20:2b:f1:d4:17:20:7e:61:
dd:e0:69:9d:58:68:25:d4:17:a9:bc:04:9a:01:17:
4f:a6:04:d5:cc:f7:6a:da:27:ef:8a:cc:38:66:ee:
30:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:7B:2E:AF:B1:F4:CC:DB:B3:CD:6C:D4:D7:4B:2B:33:97:8A:0B:70
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/6aecc5-b85c-418b-afc8-c2e668c19727/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/6aecc5-b85c-418b-afc8-c2e668c19727/1/QHsur7H0zNuzzWzU10srM5eKC3A.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.148.164.0/22
IPv6:
2a07:5f40::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
206914
Signature Algorithm: sha256WithRSAEncryption
a9:88:bb:94:da:71:1a:60:a7:6a:47:b0:84:fc:26:84:4a:b1:
a7:d5:c0:70:76:b1:ce:62:d2:12:98:e1:95:10:f8:eb:c2:b6:
8c:51:ed:a4:c5:53:c8:d3:11:f1:10:9f:96:61:0e:a7:b1:9e:
d5:10:55:92:74:80:b4:a3:7b:85:d5:64:b8:8c:df:10:0f:19:
8b:75:e0:37:8d:fb:ce:a3:36:e6:7d:6f:c9:06:a6:45:02:ac:
2e:a6:ba:22:46:15:c4:c3:39:a6:4d:68:54:66:2e:31:55:c7:
60:2b:f2:3b:63:e2:cc:c4:11:cb:dd:6f:a3:f7:23:fc:d3:af:
61:fb:8d:60:65:a8:3a:3d:b3:8b:32:f2:45:28:ad:41:ab:72:
7b:f3:38:1b:a5:8f:31:4d:10:f9:c1:8d:72:52:e5:db:c2:9c:
40:e5:34:84:8a:7f:e7:55:12:19:88:6f:24:63:b4:af:b4:d5:
3f:8c:86:c3:d2:68:78:1e:13:a1:63:a4:cb:9b:2c:ff:3b:73:
47:54:75:26:28:0d:06:44:c6:45:cd:26:23:cd:07:53:ff:0c:
73:e5:25:bf:d1:b3:15:ea:8e:e6:38:d1:87:e3:ee:00:7b:b0:
6c:88:ce:e6:a2:8f:2b:ab:da:d4:6f:e5:03:66:b3:00:b7:0f:
0b:4e:04:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 06:59:40 2024 by rpki-client on console-ams.rpki-client.org