Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/SGeaItDbyYDV1ZszNnn5ObmuPyU.cer
File: SGeaItDbyYDV1ZszNnn5ObmuPyU.cer (raw, json)
Hash identifier: WNALmSZB4WmPspaV4/CGaE1EmMozDJSgGq1f5e8dRZg=
Subject key identifier: 48:67:9A:22:D0:DB:C9:80:D5:D5:9B:33:36:79:F9:39:B9:AE:3F:25
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC5DCF7B48C61A2D79DFD8C69F05D7C37
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/00/7dfa04-7c2c-4ac3-a66b-0c180a0841ab/1/SGeaItDbyYDV1ZszNnn5ObmuPyU.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/00/7dfa04-7c2c-4ac3-a66b-0c180a0841ab/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 16:30:42 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 50156
IP: 195.200.224.0/23
IP: 2001:67c:344::/48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 11:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:dc:f7:b4:8c:61:a2:d7:9d:fd:8c:69:f0:5d:7c:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 16:30:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=48679a22d0dbc980d5d59b333679f939b9ae3f25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:4f:d8:15:f5:cd:c9:19:37:ab:a8:bb:ff:3d:
35:7a:28:e5:d1:9c:6a:f0:34:c8:df:fe:0c:99:02:
a7:55:a6:3d:d5:c9:13:7c:ce:e1:e1:7a:ee:c7:69:
43:6e:af:39:92:1c:76:16:0c:93:de:ed:3b:48:cb:
76:db:80:10:23:f0:eb:6e:90:4a:5c:6e:1d:aa:f9:
8a:29:d5:73:45:98:c7:71:dc:4d:b5:34:fe:74:3a:
a0:80:1a:59:e0:93:48:99:c8:bd:fb:99:a5:50:4f:
86:96:61:7e:d6:73:6d:f5:a6:95:2e:82:eb:fd:bd:
67:54:10:bc:39:3f:21:79:01:5c:8e:93:c6:bc:aa:
70:4c:01:44:da:47:24:ff:58:a2:29:32:3c:2a:91:
19:97:c3:e8:11:e6:de:3e:b0:9c:7d:d6:0c:2b:7f:
d2:0a:85:9b:fa:46:fb:9a:5f:37:58:0c:ab:d3:64:
a5:bc:39:95:34:a8:07:59:5a:22:c3:1b:67:b1:f1:
f3:7f:df:84:89:93:0d:9b:4e:6c:99:5d:b0:55:43:
ad:28:ae:18:f0:ba:8d:cd:b4:ce:34:d8:9e:81:fd:
01:31:5b:0e:fb:a5:ea:2d:23:65:e8:e7:cd:ea:24:
a9:68:03:86:ab:74:d2:bf:82:30:83:0c:1e:9a:ee:
db:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:67:9A:22:D0:DB:C9:80:D5:D5:9B:33:36:79:F9:39:B9:AE:3F:25
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/7dfa04-7c2c-4ac3-a66b-0c180a0841ab/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/7dfa04-7c2c-4ac3-a66b-0c180a0841ab/1/SGeaItDbyYDV1ZszNnn5ObmuPyU.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.200.224.0/23
IPv6:
2001:67c:344::/48
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
50156
Signature Algorithm: sha256WithRSAEncryption
6b:01:e5:cc:b1:f5:a9:a3:11:dc:c8:46:33:29:f7:ab:53:f0:
ad:c6:e6:2f:66:ef:37:d5:39:2c:45:c6:bd:e2:0b:a5:86:c9:
d5:20:b2:f9:4d:85:9b:57:06:3d:01:65:da:c5:3f:f2:cd:a2:
fd:40:b8:23:88:3e:9d:25:d8:4a:d8:23:11:ff:1d:f3:bc:e6:
20:20:ce:d2:fd:cc:fb:08:3d:6d:ef:9f:78:95:83:b0:9c:c4:
33:74:71:40:5c:b3:86:79:f8:a7:9f:74:d4:b4:7c:c7:0f:9f:
2d:27:c4:c6:b4:12:b8:d5:dd:1f:da:b1:23:98:ca:16:da:16:
91:1e:14:26:b8:30:69:90:67:64:ba:61:7c:23:44:9d:8e:d7:
89:69:03:6b:ed:60:86:3c:e6:36:ff:15:71:73:66:29:12:4b:
88:d9:a3:96:9d:40:01:a5:33:54:1c:17:6d:f6:6b:d1:a6:73:
8b:a2:cf:19:06:c4:d9:90:73:b7:81:2b:da:f8:83:a5:2a:d9:
b4:9a:e5:d9:61:2b:9e:3c:66:0d:2c:54:1f:5f:39:b1:bc:09:
0f:c2:fa:07:54:02:ca:d9:b5:17:3f:44:f9:03:b8:59:d8:81:
b5:8f:d1:53:be:e4:9f:c4:43:b5:07:ed:a4:49:da:32:a2:f4:
d6:3f:d7:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 13:17:40 2024 by rpki-client on console-fra.rpki-client.org