Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/SWsAWJcdKZOlelscts3_XS60Tj8.cer
File: SWsAWJcdKZOlelscts3_XS60Tj8.cer (raw, json)
Hash identifier: gsplcXfjrxCUcKyruWyQriUuiMnkk1dMp+60RkaUXi0=
Subject key identifier: 49:6B:00:58:97:1D:29:93:A5:7A:5B:1C:B6:CD:FF:5D:2E:B4:4E:3F
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC49357287006FAE61B0FF72AF2A0CC4A
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/2a/d55dc1-7604-4c8d-a1b4-39f8e2b4675d/1/SWsAWJcdKZOlelscts3_XS60Tj8.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/2a/d55dc1-7604-4c8d-a1b4-39f8e2b4675d/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 10:30:39 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 59472
IP: 5.152.160.0/21
IP: 185.94.68.0/22
IP: 2a01:8f40::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:93:57:28:70:06:fa:e6:1b:0f:f7:2a:f2:a0:cc:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 10:30:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=496b0058971d2993a57a5b1cb6cdff5d2eb44e3f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:1e:6b:25:a0:d5:7a:5e:67:63:a3:21:cc:c7:
6b:9d:b4:74:5e:24:5f:c5:a1:2f:c2:0b:6c:c3:49:
e2:d8:19:7c:78:16:dd:84:4f:bc:c2:69:92:d2:4a:
9a:8f:14:a9:19:23:c0:97:0e:65:1e:fe:59:f3:a4:
0e:5a:e7:0d:05:b9:44:96:2d:90:b1:fd:50:62:f0:
83:42:f5:75:e5:23:aa:a0:2c:a3:a3:c6:34:26:05:
18:b5:f5:42:de:86:de:97:cb:d5:06:89:78:ad:bb:
79:9b:8e:71:0c:8e:d7:61:63:b9:5d:48:aa:e4:5c:
c5:27:b9:12:84:7f:5f:c8:58:96:b2:56:ab:d1:52:
67:8b:23:6c:1f:99:f7:2c:e8:a0:b1:e6:c5:45:b1:
27:1a:24:5c:b8:22:6c:e3:b7:f3:9e:ff:59:cf:17:
c4:e2:3d:19:68:c5:d8:6b:d2:b3:76:0d:c5:a7:47:
0a:37:79:bb:b9:a1:4a:cb:62:a3:5f:c5:e5:11:8e:
ac:ed:47:ee:79:d2:fe:1f:39:c1:95:10:68:3d:ed:
d1:b5:c1:3d:d9:0b:a2:e0:1d:2b:e8:15:5f:03:47:
88:52:2c:6f:ee:49:f4:59:ba:67:e1:2a:ef:93:29:
c6:1e:3a:32:0f:c8:8b:f9:7b:c8:77:71:3e:c2:ad:
08:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:6B:00:58:97:1D:29:93:A5:7A:5B:1C:B6:CD:FF:5D:2E:B4:4E:3F
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/d55dc1-7604-4c8d-a1b4-39f8e2b4675d/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/d55dc1-7604-4c8d-a1b4-39f8e2b4675d/1/SWsAWJcdKZOlelscts3_XS60Tj8.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.152.160.0/21
185.94.68.0/22
IPv6:
2a01:8f40::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
59472
Signature Algorithm: sha256WithRSAEncryption
95:cb:50:69:2c:3a:07:4e:75:52:b5:f8:cb:e7:6d:7b:bd:91:
3c:0c:f8:55:61:12:c8:d4:77:cb:21:b3:e4:9c:e9:61:5d:af:
77:61:1a:3f:a6:28:f0:e3:f8:00:2c:7e:ec:2c:d2:be:03:35:
33:ff:92:3a:7b:62:26:ea:10:d6:7a:7a:6c:bf:5b:93:ea:e0:
f9:ef:d0:23:ee:4d:a1:2b:c8:2c:fa:f5:10:04:5f:ca:3b:6a:
50:ee:34:85:36:7a:e4:d5:76:95:99:f5:01:bb:db:e0:3b:14:
85:e7:aa:96:ca:7e:12:73:57:8d:ae:d3:37:79:b7:62:bf:ef:
a8:58:dc:8b:ed:66:fb:d1:25:b0:77:52:f5:3b:8a:5b:c4:5a:
1c:8c:94:82:e4:b5:9c:f5:6f:d6:26:c0:72:c1:df:a6:14:6d:
76:f4:94:5d:1e:6f:60:8d:a3:eb:fd:48:05:7d:5b:13:91:0e:
c1:22:f9:81:17:07:a6:35:94:f1:66:83:7a:7b:bd:ef:1f:a0:
ca:04:3f:06:49:07:6d:82:5c:11:5d:6d:f3:75:e5:d5:f9:48:
68:ea:db:fd:db:ad:f5:bb:ba:ee:cd:dc:9e:42:57:6e:5b:b6:
7e:02:27:ff:49:a9:0a:45:4c:c7:64:24:73:44:99:7d:bd:93:
cb:ee:b8:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:50:27 2024 by rpki-client on console-ams.rpki-client.org