Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/RspNyccGYfch1ozlNgHT1fmqjDI.cer
File: RspNyccGYfch1ozlNgHT1fmqjDI.cer (raw, json)
Hash identifier: pYfs5uOFZceXFTqoqL2NUyy276bK16P9D8YiTnJe6+c=
Subject key identifier: 46:CA:4D:C9:C7:06:61:F7:21:D6:8C:E5:36:01:D3:D5:F9:AA:8C:32
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC3B6FD10733DCE34553A8098D344DEF3
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/93/00b15a-30af-42ca-ae87-a07a4fc7b45c/1/RspNyccGYfch1ozlNgHT1fmqjDI.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/93/00b15a-30af-42ca-ae87-a07a4fc7b45c/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 06:29:58 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 20648
IP: 212.34.128.0 -- 212.34.155.255
IP: 2a05:5280::/30
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:b6:fd:10:73:3d:ce:34:55:3a:80:98:d3:44:de:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 06:29:58 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=46ca4dc9c70661f721d68ce53601d3d5f9aa8c32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:e4:7c:46:de:1b:47:db:f4:67:63:00:61:bd:
66:c1:6d:13:b5:a9:8f:6e:2a:f5:1f:b9:7e:25:3d:
9e:e9:1f:48:39:7c:91:aa:82:3e:44:5d:8f:de:30:
f0:57:69:50:ff:5d:0e:a8:b1:7e:b2:8c:53:ad:ca:
0a:0d:66:cc:19:bb:1b:f2:19:4a:45:bb:74:47:67:
b7:62:1b:52:11:78:56:7e:46:54:9c:01:a0:47:63:
62:94:d3:5f:3e:af:1e:8d:4b:5e:7e:89:ee:33:41:
81:49:9c:88:13:79:b0:60:48:fb:13:8a:44:59:d7:
c4:a9:e1:9f:3e:43:bc:23:ce:6a:f0:7d:4e:ff:9a:
16:81:d6:ea:97:d8:cb:2b:63:8e:08:85:4d:b2:31:
ed:97:ac:22:f5:b3:99:cf:2a:a6:68:fe:7f:06:ea:
4d:a3:08:8d:8c:7e:38:78:d5:2c:51:2c:a4:fa:81:
73:69:cb:01:8c:50:9e:cb:e4:6b:45:11:0e:fe:43:
b5:7d:c3:66:1f:95:83:c7:bc:8e:fa:04:07:c1:04:
c4:bb:7b:03:73:fa:ff:9a:b3:2c:ae:50:79:a5:8a:
b4:ec:0c:95:03:7f:2e:22:16:65:a8:b1:f2:89:40:
fb:15:c1:fe:ad:49:da:bf:ce:f8:e0:f8:52:1b:d8:
c6:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:CA:4D:C9:C7:06:61:F7:21:D6:8C:E5:36:01:D3:D5:F9:AA:8C:32
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/00b15a-30af-42ca-ae87-a07a4fc7b45c/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/00b15a-30af-42ca-ae87-a07a4fc7b45c/1/RspNyccGYfch1ozlNgHT1fmqjDI.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.34.128.0-212.34.155.255
IPv6:
2a05:5280::/30
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
20648
Signature Algorithm: sha256WithRSAEncryption
86:5d:fa:7d:38:60:76:7d:a6:b8:f0:fa:5d:5b:17:3f:6d:e2:
a4:fa:9b:b8:e3:1e:87:3e:fb:03:e7:4f:6d:9e:eb:f4:4d:16:
20:eb:fb:a0:48:8f:36:e1:d3:db:ee:88:d7:82:d6:2c:f0:b2:
2c:1b:38:7b:e7:b3:01:2c:db:3d:70:7d:db:dc:51:d7:89:cc:
bb:6e:d9:12:3d:8f:bc:4f:5c:2f:a8:3d:13:47:73:bc:83:62:
e0:0a:9f:d5:db:31:9e:e0:14:82:74:47:06:2f:70:82:4b:00:
1f:ec:b4:58:ec:f8:2d:95:89:45:a8:42:48:b5:8b:2c:b1:fb:
cf:bd:34:6a:f9:94:30:4f:f3:58:27:08:77:cd:bb:35:da:b1:
62:b3:a8:d3:82:64:6a:84:8b:80:f7:a2:59:6e:03:52:c1:6c:
cb:34:be:5d:e8:a9:b6:14:00:1d:f4:37:83:3a:5f:f3:54:71:
7f:50:b4:83:32:cd:b7:eb:c0:95:71:28:4b:e5:3d:45:3d:23:
cc:3d:28:01:3a:27:74:ec:c0:41:19:a8:36:a7:15:dc:53:e1:
4e:ad:ac:43:54:40:d3:e8:59:4c:57:f7:1a:c1:79:d4:e0:62:
6a:54:df:16:47:29:d9:f8:22:14:80:43:3c:ee:86:fa:d7:dd:
40:e0:56:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 02:59:17 2024 by rpki-client on console-fra.rpki-client.org