Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/UFbHUIQP5cAQOn9RAix87qj-lps.cer
File: UFbHUIQP5cAQOn9RAix87qj-lps.cer (raw, json)
Hash identifier: XQ1Dt8J2XjDN2Qbevhh7KXRuMmlt8u5u2Mbi2xrxEsQ=
Subject key identifier: 50:56:C7:50:84:0F:E5:C0:10:3A:7F:51:02:2C:7C:EE:A8:FE:96:9B
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CCA99B4A1C85729524F939CFD3AFFC2A1
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/32/252968-b8ba-4e19-84d7-3228286da601/1/UFbHUIQP5cAQOn9RAix87qj-lps.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/32/252968-b8ba-4e19-84d7-3228286da601/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 14:35:20 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: IP: 37.18.64.0/21
IP: 46.227.192.0/21
IP: 185.137.4.0/22
IP: 2a06:fa80::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:99:b4:a1:c8:57:29:52:4f:93:9c:fd:3a:ff:c2:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 14:35:20 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5056c750840fe5c0103a7f51022c7ceea8fe969b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:34:65:2e:70:4e:3f:92:72:e2:a1:ba:85:08:
88:b5:7a:48:da:b3:70:8d:3e:8d:91:b1:71:cb:9c:
3c:b2:d8:03:fd:c7:5f:cb:87:cd:eb:10:87:80:fc:
6d:d7:e3:45:d8:6f:d6:72:45:da:2f:ed:f4:2e:37:
c8:2b:35:65:f9:4e:4f:74:08:16:91:2f:24:46:67:
09:ff:0e:dc:b4:d6:e1:a6:59:df:cd:d6:ef:b4:6c:
cf:2e:9e:65:7e:40:48:e5:34:9c:e6:7d:6f:a7:f0:
c2:58:83:c8:69:8d:9c:1c:7b:74:e4:98:ec:70:8c:
fd:4d:9a:5f:c8:72:9f:7a:72:dd:2b:7c:fa:4e:59:
ea:2e:2b:6f:0e:b0:ce:23:c8:55:2e:4b:92:74:b0:
43:69:64:93:14:6c:fd:b8:e0:62:39:bc:30:c4:25:
ce:dc:cd:1f:79:65:f8:c5:11:fa:66:58:73:ac:9f:
78:00:54:09:3e:0a:64:74:4e:61:e2:1c:37:ad:72:
8d:3c:fd:2c:c1:4d:5d:65:ae:c4:e1:ff:e5:4c:3b:
e2:42:9f:d9:aa:7e:4c:8f:6b:eb:a8:66:d0:cb:a4:
a9:97:b8:a4:74:4d:17:6e:58:1a:e3:ff:a9:d6:a7:
09:d6:a7:e0:73:50:ea:2e:3a:2c:e6:e5:9c:a4:c7:
6e:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:56:C7:50:84:0F:E5:C0:10:3A:7F:51:02:2C:7C:EE:A8:FE:96:9B
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/252968-b8ba-4e19-84d7-3228286da601/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/252968-b8ba-4e19-84d7-3228286da601/1/UFbHUIQP5cAQOn9RAix87qj-lps.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.18.64.0/21
46.227.192.0/21
185.137.4.0/22
IPv6:
2a06:fa80::/29
Signature Algorithm: sha256WithRSAEncryption
88:3d:ad:6e:4f:7a:75:8e:a3:17:49:1f:a1:a8:da:f8:e1:19:
4e:ed:6b:45:fc:ba:60:77:c7:21:20:d6:3e:31:d4:5e:4f:e1:
e6:80:eb:56:88:8c:3f:cf:5e:02:3a:25:60:13:88:73:28:c2:
2f:eb:6a:eb:0d:99:da:16:80:94:20:58:3a:dc:cf:66:e0:ba:
ae:40:f5:66:39:75:d7:d6:b9:2f:3f:78:e4:db:6a:cd:39:a0:
8c:64:4b:04:fb:61:10:96:43:c2:5f:98:45:5b:81:41:2c:6b:
ed:e4:69:6a:19:f3:dc:e7:5d:de:b3:d1:42:18:8a:be:83:0c:
85:ac:36:5c:6f:6c:b6:07:2a:5e:86:7b:c2:53:7f:2d:14:42:
9b:bb:ba:6d:75:32:9f:99:92:8a:98:15:76:ab:9c:27:f4:a0:
1f:56:de:47:97:5e:0e:cd:90:08:e5:72:7e:22:15:2f:48:13:
3b:88:3e:54:53:bf:ab:8e:6b:e3:07:65:b8:f8:4b:b8:85:57:
1e:db:af:77:75:4e:ce:f5:37:75:de:75:ee:7a:62:d1:61:32:
c5:9c:6b:11:ba:c8:bf:80:5b:90:5b:a4:2d:21:f1:39:60:18:
bf:ff:84:a7:36:a7:ee:83:64:c1:dc:13:0f:64:ea:85:4d:85:
f2:46:97:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 07:37:09 2024 by rpki-client on console-fra.rpki-client.org