Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/S1KaTSL67yMTXW7_iRImZiPEklU.cer
File: S1KaTSL67yMTXW7_iRImZiPEklU.cer (raw, json)
Hash identifier: 56i4vqkweopwslrqjxvM6fmSDrptAtdJ++H8wqlR//w=
Subject key identifier: 4B:52:9A:4D:22:FA:EF:23:13:5D:6E:FF:89:12:26:66:23:C4:92:55
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC86F0EEB149ABBB9A33959CC90E62C2C
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/S1KaTSL67yMTXW7_iRImZiPEklU.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 04:29:30 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 42705
AS: 207701
IP: 5.11.16.0/22
IP: 5.11.21.0 -- 5.11.22.255
IP: 5.11.24.0/21
IP: 80.251.0.0/20
IP: 85.31.64.0/19
IP: 2a01:7a8::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:0e:eb:14:9a:bb:b9:a3:39:59:cc:90:e6:2c:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 04:29:30 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4b529a4d22faef23135d6eff8912266623c49255
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:31:92:a4:a2:56:21:30:7e:58:ff:6e:bf:b0:
c4:66:fe:9a:eb:1b:bf:0a:10:44:f5:23:9f:06:b0:
09:d1:80:7a:41:39:4e:53:32:d4:12:73:b9:97:3b:
c7:4b:e7:ff:7f:31:02:60:a5:4a:bc:b7:0c:0c:f1:
c2:0e:3c:b5:16:11:b7:81:5d:c7:0b:dd:2a:74:7e:
38:8c:d4:66:fa:c6:50:e7:bf:25:af:10:19:82:5c:
ea:10:b2:31:54:01:4f:b0:5f:b7:3b:12:9b:6c:d2:
80:22:66:c8:02:59:2d:76:6c:8b:1f:da:3b:48:4e:
00:be:8c:04:2e:44:d2:21:59:6d:35:f5:7b:ab:48:
0e:4c:7c:d8:b8:10:ef:d3:4e:64:ec:3c:38:c0:24:
b0:62:74:14:a5:99:d6:28:c9:67:ba:6e:8d:33:5c:
70:99:4b:29:17:dc:1e:7b:38:86:11:1d:71:3a:f0:
89:e0:65:3f:46:6d:99:eb:61:52:dc:44:76:5f:a4:
ce:c3:48:d8:5b:df:b1:a2:4e:56:b4:f2:11:b7:9c:
73:5a:95:df:4f:d4:27:94:ea:60:f6:33:5e:b5:f5:
4d:50:9b:ad:e1:96:15:fc:54:10:a3:29:c7:00:1e:
98:45:d0:65:28:5e:a0:01:18:0f:72:fd:26:bf:26:
99:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:52:9A:4D:22:FA:EF:23:13:5D:6E:FF:89:12:26:66:23:C4:92:55
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/S1KaTSL67yMTXW7_iRImZiPEklU.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.11.16.0/22
5.11.21.0-5.11.22.255
5.11.24.0/21
80.251.0.0/20
85.31.64.0/19
IPv6:
2a01:7a8::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
42705
207701
Signature Algorithm: sha256WithRSAEncryption
8f:eb:bf:ae:1e:89:23:6b:fe:15:2b:e8:21:c7:4e:84:9d:97:
6d:9c:0b:68:f9:9b:31:10:76:21:9b:92:26:80:c8:cd:fc:c7:
6f:ff:c5:a5:f2:e8:18:67:1c:9a:89:2e:3b:16:bf:17:68:9f:
e9:4f:b6:9a:7c:9b:03:d5:2f:aa:76:5f:36:40:ba:e5:7f:a7:
12:c0:85:88:56:42:63:df:c9:13:81:05:b4:51:b0:0f:4a:ba:
71:21:d8:50:8d:e7:37:8d:4a:77:ae:3d:79:e0:af:ea:1b:90:
41:90:08:b7:61:87:27:4e:2d:0f:6e:08:be:e6:0d:76:ee:b5:
ac:e9:88:b8:b4:b8:62:5b:5e:4b:6a:41:f4:13:4c:c5:a1:5f:
dc:39:05:dc:41:a2:87:90:84:14:38:5f:d1:85:84:1b:74:00:
8a:dd:83:63:6b:a0:b0:28:a3:70:c4:23:38:01:63:b7:b7:15:
05:db:7f:59:ce:cf:b0:22:cd:4f:49:ac:24:b0:47:fe:b8:a4:
de:d1:00:52:9a:85:8a:24:86:79:6e:47:67:0f:43:b2:b3:43:
b5:41:66:66:da:2a:ff:af:1e:8c:11:77:4e:50:f0:ec:d0:ca:
54:15:6b:a1:7b:e3:d0:ae:4b:5b:f9:19:1f:47:d4:ac:6d:7b:
cb:da:12:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 07:35:01 2024 by rpki-client on console-fra.rpki-client.org