Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/SGUQoxFpcvztleiova_W5FXe0Lo.cer
File: SGUQoxFpcvztleiova_W5FXe0Lo.cer (raw, json)
Hash identifier: 71b9EiSfBw3YYWod9BQheYqv79fEJrZKbxwgUPWlhck=
Subject key identifier: 48:65:10:A3:11:69:72:FC:ED:95:E8:A8:BD:AF:D6:E4:55:DE:D0:BA
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CCA96E78CA5759742B29B46D888A20C25
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/d9/aeae3f-af4d-4eee-b284-a5f6c0aa11de/1/SGUQoxFpcvztleiova_W5FXe0Lo.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/d9/aeae3f-af4d-4eee-b284-a5f6c0aa11de/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 14:32:16 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 47846
IP: 64.190.62.0/23
IP: 91.195.240.0/23
IP: 2001:67c:64c::/48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:96:e7:8c:a5:75:97:42:b2:9b:46:d8:88:a2:0c:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 14:32:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=486510a3116972fced95e8a8bdafd6e455ded0ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:3c:c1:de:07:88:5b:52:38:19:e0:93:c9:ef:
13:ef:7d:55:6f:d0:ea:78:5d:ba:73:58:af:80:d4:
d6:9a:f0:67:69:56:e0:45:85:ec:6a:dd:83:34:43:
77:97:30:22:89:d5:d6:09:89:97:94:8b:a8:d3:b4:
7e:b3:3c:ed:2f:fe:4f:03:5f:d7:4e:01:ec:ab:e2:
62:cb:85:32:0c:3a:1f:a6:9b:81:cf:b7:b1:71:95:
a0:2a:81:0f:96:35:a2:99:e9:25:18:d2:ae:95:15:
c2:72:1c:04:a9:7a:05:f1:58:6c:2b:24:12:61:0b:
05:8d:ce:40:d1:ae:bd:2c:d6:83:cf:48:11:43:4c:
74:74:20:43:dc:76:eb:88:34:c1:5f:43:9c:20:3e:
ef:c5:df:21:e9:d1:e9:c4:82:84:a6:24:47:12:89:
89:c9:a3:7f:ef:b1:ca:09:6c:90:03:74:1d:42:b9:
99:0d:8e:83:76:70:04:49:c7:61:aa:0c:55:a8:09:
49:82:1f:fa:4f:25:90:33:73:64:e5:52:00:e2:75:
fa:c9:4f:c1:d8:8d:f5:76:97:77:a6:76:92:b8:8d:
c4:a6:0a:bd:5e:66:01:38:4f:9b:72:c7:20:55:cf:
f5:32:03:56:34:7e:3e:66:d1:5a:e8:f5:3c:6d:3c:
c4:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:65:10:A3:11:69:72:FC:ED:95:E8:A8:BD:AF:D6:E4:55:DE:D0:BA
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/aeae3f-af4d-4eee-b284-a5f6c0aa11de/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/aeae3f-af4d-4eee-b284-a5f6c0aa11de/1/SGUQoxFpcvztleiova_W5FXe0Lo.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
64.190.62.0/23
91.195.240.0/23
IPv6:
2001:67c:64c::/48
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
47846
Signature Algorithm: sha256WithRSAEncryption
30:e3:a0:55:fd:9c:2f:39:77:8b:07:0f:0d:27:77:1a:34:0b:
b7:ab:e3:b2:11:d8:6f:27:64:4e:98:5d:21:26:6f:f1:4e:f3:
33:1b:7f:75:7f:8e:6b:e4:83:05:3b:26:3a:ab:b1:80:fd:6b:
95:f1:9b:3a:92:a9:85:35:1a:22:62:9c:f1:2d:31:b9:34:c6:
23:dd:b7:c5:15:41:03:f0:04:8b:03:07:31:e5:3a:d5:75:c9:
7a:dd:02:0c:ce:5a:af:70:e9:a5:20:50:23:1d:05:8b:86:0c:
b9:53:63:40:11:ee:1c:eb:4e:56:85:58:b8:99:51:bb:7f:bd:
f8:3e:38:76:b2:02:c0:ca:ee:eb:4d:4d:71:6e:94:2c:9f:87:
6f:19:b9:a7:6f:2e:74:a1:16:fa:75:0f:b0:a0:79:f3:08:e6:
a5:ee:0e:d6:b4:bf:ab:3b:8f:ae:b9:57:c8:dd:e6:a1:e6:86:
76:bc:85:62:c8:e9:66:85:30:11:0c:72:4b:7b:c9:2b:19:43:
6b:dd:bf:01:82:22:dd:92:82:da:12:9b:f3:6d:46:a2:d3:aa:
ad:48:e2:c9:a5:49:33:f9:82:35:5b:46:be:4a:81:b0:e1:46:
a1:13:85:07:32:56:05:02:50:09:a9:d7:df:5a:ea:ba:16:0d:
1e:bb:f7:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 07:35:15 2024 by rpki-client on console-fra.rpki-client.org