Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/RHzUHZ5sz4AwbBtGvcC1d7HuLK4.cer
File: RHzUHZ5sz4AwbBtGvcC1d7HuLK4.cer (raw, json)
Hash identifier: XECQMQIsqxojtQGIh2IF0Gb2wXGGyKIyABPPHENeb3E=
Subject key identifier: 44:7C:D4:1D:9E:6C:CF:80:30:6C:1B:46:BD:C0:B5:77:B1:EE:2C:AE
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC795138FE20012D1732DD3B5411B6C9A
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/4e/1203d7-41ab-404c-929b-b97838c8d658/1/RHzUHZ5sz4AwbBtGvcC1d7HuLK4.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/4e/1203d7-41ab-404c-929b-b97838c8d658/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 00:31:25 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 45022
IP: 195.5.184.0/24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:95:13:8f:e2:00:12:d1:73:2d:d3:b5:41:1b:6c:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 00:31:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=447cd41d9e6ccf80306c1b46bdc0b577b1ee2cae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:01:d7:c2:13:db:45:30:d4:05:69:fa:fa:6a:
cc:c9:96:1c:e4:f6:23:10:87:08:52:79:55:c6:93:
d9:1f:79:42:9d:8b:19:1d:18:5c:c4:48:23:7e:ca:
5a:24:3e:a8:da:8f:28:0d:47:88:b9:3a:a5:fc:87:
4c:d7:b4:1a:73:22:d8:6f:6c:04:e3:30:3a:e7:bb:
59:41:70:1d:c0:b5:c6:89:fb:92:60:46:d4:41:23:
e0:71:29:83:f4:df:f4:1e:f6:a9:4f:49:68:d7:e6:
af:30:e7:9f:73:1b:00:5a:35:50:7c:44:e3:2c:7c:
f5:f0:22:ef:53:94:8d:04:e5:59:12:29:1a:15:34:
73:8d:a6:51:bf:de:c1:2f:bf:49:94:a9:e6:83:fd:
a5:89:6b:43:8e:39:37:95:ad:f9:4b:0b:23:99:96:
7b:05:4e:84:81:9f:35:e1:01:19:a8:a7:fb:09:97:
c9:00:e3:72:48:13:34:c7:84:90:ce:05:6f:8f:23:
6b:43:af:3a:c3:97:4d:9f:53:5e:a0:83:f5:6d:f9:
9a:29:01:4c:72:f8:c7:ef:9c:80:c9:1b:c5:6b:25:
93:9d:d4:73:ab:94:62:62:af:cd:26:bf:75:ac:24:
11:1d:77:bc:e7:4d:36:d5:90:3d:13:4c:9f:27:66:
82:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:7C:D4:1D:9E:6C:CF:80:30:6C:1B:46:BD:C0:B5:77:B1:EE:2C:AE
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/1203d7-41ab-404c-929b-b97838c8d658/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/1203d7-41ab-404c-929b-b97838c8d658/1/RHzUHZ5sz4AwbBtGvcC1d7HuLK4.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.5.184.0/24
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
45022
Signature Algorithm: sha256WithRSAEncryption
69:70:88:7a:ea:cb:83:81:0d:d3:df:36:95:15:49:e4:75:4a:
e5:42:3e:71:10:82:b8:36:d8:64:2d:a2:b2:d1:d5:e7:a2:b3:
62:f6:05:67:af:a4:ea:a1:32:78:c7:8f:62:ea:bd:23:d2:91:
52:a9:61:38:7e:bb:1a:3b:75:59:4f:6f:36:66:e5:13:9f:ac:
a4:da:d6:64:ee:8c:7d:d8:d7:99:07:14:07:b9:08:27:55:72:
06:09:ae:36:22:d7:f4:8a:bc:97:31:68:4f:01:b4:ba:51:c9:
79:16:fb:ca:5d:6a:1e:25:c9:5f:57:a2:c8:4d:1c:12:5a:87:
b3:8d:52:26:2a:f4:68:14:67:14:08:38:47:3c:d8:4a:70:c3:
21:72:e7:06:0f:d6:1a:ce:7e:4d:7a:0c:60:cf:90:0d:00:db:
7b:8c:04:f7:e7:08:39:84:2b:7b:ee:17:fe:a1:ae:db:6b:c9:
0b:df:d7:3d:cc:39:d4:c5:06:06:b7:4c:f7:b3:ea:ff:73:81:
a8:78:6d:0f:4c:fa:54:84:d1:b9:3a:cb:7a:00:29:e0:54:ef:
04:f4:b6:75:49:b5:14:f3:9e:02:6a:74:d7:28:36:0c:a4:49:
b1:71:67:69:98:fe:dd:49:45:e3:48:4d:96:2d:c3:32:34:80:
9f:94:bb:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 11:32:26 2024 by rpki-client on console-ams.rpki-client.org