Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/RABxct-fwtSi3bupNM68nwKG08o.cer
File: RABxct-fwtSi3bupNM68nwKG08o.cer (raw, json)
Hash identifier: BibnD8U1Jv0fFxq8of3ZNxQcqFMxlx6SYjN2zKctla8=
Subject key identifier: 44:00:71:72:DF:9F:C2:D4:A2:DD:BB:A9:34:CE:BC:9F:02:86:D3:CA
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018D6A3ACEA0DEA505161923F00AB539E4BA
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/e1/945dbd-2fb7-4dd1-96a6-0585de4d4ee7/1/RABxct-fwtSi3bupNM68nwKG08o.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/e1/945dbd-2fb7-4dd1-96a6-0585de4d4ee7/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Fri 02 Feb 2024 14:30:55 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 44222
IP: 185.83.212.0/23
IP: 185.83.215.0/24
IP: 2a05:9f00::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:6a:3a:ce:a0:de:a5:05:16:19:23:f0:0a:b5:39:e4:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Feb 2 14:30:55 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=44007172df9fc2d4a2ddbba934cebc9f0286d3ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:bc:b7:67:83:55:13:60:04:80:7a:a6:25:19:
63:d0:c5:ba:b5:2f:7a:0d:58:09:6f:90:88:e8:4d:
94:3b:1d:69:23:9c:ae:ca:65:e0:07:4a:3f:97:19:
4d:9f:e6:ab:af:39:cc:f2:d1:f3:c5:3d:a2:52:fe:
2a:c1:ff:8d:41:09:85:61:5a:08:15:b8:7d:6d:a3:
2b:4e:50:ac:3a:e1:4b:08:24:dc:cd:b6:0c:58:5c:
6d:b1:99:1a:1c:74:b2:31:61:0b:7d:e1:1f:4e:75:
f3:2e:be:f6:6f:6e:4a:11:31:c3:41:fa:ef:c7:25:
28:14:cf:73:6b:f3:4f:16:b8:5f:6c:4c:b9:15:64:
5b:bd:30:c4:e1:77:3f:c8:56:38:d0:04:5f:91:29:
7d:9d:e1:91:24:14:89:e3:06:8c:f1:6b:7e:ba:04:
74:a0:85:be:e4:da:db:e0:32:92:14:22:ff:4e:80:
24:fe:84:16:8b:44:2d:d6:f6:16:3f:18:11:d1:9b:
91:07:2b:2b:9e:a6:3b:dd:0f:17:24:4e:68:66:90:
19:bd:d2:70:4e:45:62:6f:e2:cf:da:83:ae:45:41:
01:4e:75:9f:5e:9d:18:03:f9:f0:2a:92:42:cc:36:
9e:24:e6:2c:15:0a:2a:43:18:8a:54:11:0e:25:1b:
24:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:00:71:72:DF:9F:C2:D4:A2:DD:BB:A9:34:CE:BC:9F:02:86:D3:CA
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/945dbd-2fb7-4dd1-96a6-0585de4d4ee7/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/945dbd-2fb7-4dd1-96a6-0585de4d4ee7/1/RABxct-fwtSi3bupNM68nwKG08o.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.83.212.0/23
185.83.215.0/24
IPv6:
2a05:9f00::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
44222
Signature Algorithm: sha256WithRSAEncryption
89:f0:52:90:45:22:13:91:db:b9:31:cf:40:69:d6:3c:33:0c:
d4:c2:ca:26:6d:9b:53:9e:e9:4d:f4:88:80:a8:31:41:1c:08:
8b:15:5d:af:8c:b7:5e:d9:00:d4:f8:b3:bc:e1:77:29:e2:df:
84:59:08:fe:75:38:e2:4d:0c:0c:58:3b:32:aa:82:21:b8:f6:
01:1d:65:27:64:0f:21:f3:cb:4a:28:92:59:85:eb:f7:f2:cb:
2f:ea:75:d3:d6:dd:4c:de:cd:45:1b:50:87:ec:88:4e:87:8c:
3b:a6:cf:07:2d:81:29:af:61:a3:5d:24:55:9e:6b:58:77:36:
a6:34:cc:a1:50:d6:3e:b1:25:a4:e3:2b:ed:64:8f:61:70:45:
94:65:d1:01:4b:5b:b9:27:54:06:a4:7b:4a:d8:a2:4a:c3:b4:
aa:fa:67:40:6d:94:72:c7:70:74:c1:37:10:58:94:b7:f0:35:
b6:9b:7e:23:7a:e1:e9:72:c0:5e:3f:62:e3:19:54:f2:d0:c1:
80:39:38:2b:33:61:ba:2a:4b:e5:5e:bd:1b:16:c6:98:82:a8:
be:5c:d1:d2:c8:4b:51:fb:82:20:88:64:5a:c7:9b:2d:a2:b8:
f6:e6:04:c2:1d:9b:d1:66:df:67:a2:63:44:75:f1:bd:7e:ac:
7d:55:32:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 10:00:50 2024 by rpki-client on console-ams.rpki-client.org