Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/TXPZQBmjwjWHffa8GynHagtkydA.cer
File: TXPZQBmjwjWHffa8GynHagtkydA.cer (raw, json)
Hash identifier: Lop8uw3X1tCbev7148bT3OAkcX+ENzFLwZpVAiXjmbQ=
Subject key identifier: 4D:73:D9:40:19:A3:C2:35:87:7D:F6:BC:1B:29:C7:6A:0B:64:C9:D0
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC802F7871CC41D5ABD981C79F78B0CB7
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/99/09482b-4d2a-4893-828d-96dc5ea0cc83/1/TXPZQBmjwjWHffa8GynHagtkydA.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/99/09482b-4d2a-4893-828d-96dc5ea0cc83/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 02:31:26 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 200851
IP: 45.11.160.0/22
IP: 45.66.244.0/22
IP: 84.38.255.0/24
IP: 185.93.244.0/22
IP: 2a04:23c0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:02:f7:87:1c:c4:1d:5a:bd:98:1c:79:f7:8b:0c:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 02:31:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4d73d94019a3c235877df6bc1b29c76a0b64c9d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:19:1c:e4:4d:72:a2:2e:94:04:23:cb:ec:39:
4b:19:d3:15:03:9e:b3:74:f1:d1:09:0f:6e:64:91:
b8:0f:94:12:97:6a:47:61:51:07:3c:ad:4e:31:6e:
ac:5b:5b:62:01:11:83:3d:0e:33:2b:35:a9:c7:3f:
6b:ef:3e:e6:c1:52:31:0b:59:b1:0e:c8:ea:dd:37:
fc:cf:f4:2b:12:e2:69:c1:51:90:02:c4:a6:0a:6c:
48:83:42:22:58:61:f3:b1:0e:b8:79:b7:36:9f:96:
af:bb:fe:50:36:8b:c8:5f:8f:65:f8:d8:57:5d:d7:
31:34:93:3c:b2:4e:8c:0d:b3:97:98:49:de:bb:fe:
4f:17:c7:be:b6:5e:6e:01:ec:83:7b:18:85:69:95:
a8:06:ee:8d:54:df:66:f8:b9:ce:54:93:2d:94:57:
ff:ec:6c:8c:f6:b9:5c:1f:ff:a6:99:a9:f9:0b:eb:
20:c8:6a:66:53:65:29:ce:ff:e7:1c:95:49:5b:96:
49:3e:22:67:fd:e4:70:7e:f0:a1:f0:c2:1b:0f:0c:
d4:cf:cb:42:c2:66:8c:73:84:1b:96:d1:c9:9d:99:
a0:ed:d6:c8:05:c5:24:5b:43:50:08:9d:d9:7e:70:
34:2e:4d:d8:38:c4:09:5d:d4:fd:80:61:81:c8:82:
0a:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:73:D9:40:19:A3:C2:35:87:7D:F6:BC:1B:29:C7:6A:0B:64:C9:D0
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/09482b-4d2a-4893-828d-96dc5ea0cc83/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/09482b-4d2a-4893-828d-96dc5ea0cc83/1/TXPZQBmjwjWHffa8GynHagtkydA.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.11.160.0/22
45.66.244.0/22
84.38.255.0/24
185.93.244.0/22
IPv6:
2a04:23c0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
200851
Signature Algorithm: sha256WithRSAEncryption
96:25:ee:47:37:40:d7:aa:0f:28:cb:03:cd:00:36:de:16:7a:
bc:6a:27:13:bf:25:77:1e:b1:79:2a:19:20:22:80:74:6e:57:
4a:53:c1:ed:ec:c4:d2:1d:f7:0d:fb:ea:3f:3a:61:5c:74:db:
a8:da:e8:ac:24:21:b9:3d:93:a9:3d:8e:39:a7:d4:d1:c4:b9:
e0:ea:de:bc:49:70:d6:2b:7c:5f:06:ce:c2:d1:47:dd:01:59:
29:54:d1:ab:91:36:37:83:69:1d:58:58:a2:5d:cb:c5:03:c6:
bf:6d:58:cd:b5:92:7a:67:ab:cd:aa:00:54:f9:5a:d8:7f:89:
6f:af:8b:3e:ab:39:5c:fe:30:c7:9c:2e:e7:bc:8e:8f:d9:45:
72:a3:e2:cc:16:20:1a:0b:58:53:b0:85:d3:80:59:d9:c5:f5:
bd:69:04:75:90:78:4e:fa:69:0c:49:c5:da:80:65:12:93:c1:
83:85:61:51:3a:93:ca:25:85:cd:bb:a5:99:d6:da:c5:94:68:
40:e9:7a:41:e9:33:72:d6:95:dd:7b:e8:72:33:89:b6:fa:d9:
dc:d8:53:eb:f6:ac:d5:4e:0a:0b:2c:b4:2b:38:92:5f:72:72:
56:6b:3a:d7:a2:fb:a5:c3:f1:42:5a:ff:8f:e4:89:9d:1d:fa:
93:7a:77:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:50:43 2024 by rpki-client on console-ams.rpki-client.org