Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/UYje2s3CQLSy94bxI0LgqD2K6A8.cer
File: UYje2s3CQLSy94bxI0LgqD2K6A8.cer (raw, json)
Hash identifier: gL/nx6Blzh8DwR2GZf1bztbN/WElOOxlGKeSne32TCk=
Subject key identifier: 51:88:DE:DA:CD:C2:40:B4:B2:F7:86:F1:23:42:E0:A8:3D:8A:E8:0F
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC56DF49EA2F13F5A2DBDF1F903952376
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/26/1faa3e-884c-445f-845d-79b3db659dfc/1/UYje2s3CQLSy94bxI0LgqD2K6A8.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/26/1faa3e-884c-445f-845d-79b3db659dfc/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 14:29:26 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 208366
IP: 45.142.220.0/22
IP: 2a0e:dbc0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6d:f4:9e:a2:f1:3f:5a:2d:bd:f1:f9:03:95:23:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 14:29:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5188dedacdc240b4b2f786f12342e0a83d8ae80f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:b6:cd:97:54:50:ac:63:03:22:d9:68:55:f8:
8c:9c:59:f6:c8:3e:83:f5:5c:16:b6:c1:55:c4:e9:
74:95:42:91:c8:01:0e:35:06:3f:8d:89:3a:17:34:
20:03:ac:ce:7c:04:8e:b4:39:3d:86:47:35:cd:a7:
f6:9f:5b:de:6b:e2:f9:a6:e7:b4:b1:c3:e9:61:f6:
4f:5e:e2:9a:8a:ab:69:03:04:98:77:35:93:e2:89:
7b:04:e9:51:a2:31:46:91:e1:36:75:e0:cd:8e:2b:
70:61:33:df:03:ab:96:5b:20:7d:7d:d7:24:fb:0a:
7d:bd:b4:c4:b5:58:0d:c0:16:8e:23:a8:49:c1:fc:
a0:ea:51:55:66:8d:af:3c:98:43:95:a4:b2:8a:5b:
9f:dc:e0:a4:f2:6e:f1:ea:de:a5:03:81:7f:c8:ff:
e2:ea:31:2e:fa:d6:32:61:1c:de:18:c2:b1:03:6c:
fa:09:5c:19:95:be:e5:af:6a:18:d1:6a:8c:02:a9:
57:ae:be:bb:f5:ed:bd:62:a0:5a:8b:45:e5:38:e1:
31:5f:69:dc:67:1b:d0:df:a2:ef:14:55:14:92:08:
3b:d6:ef:25:77:21:54:ac:5a:53:6c:6b:1e:01:89:
57:0f:8e:66:a4:89:25:b8:23:4f:2b:07:3e:93:b2:
e9:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:88:DE:DA:CD:C2:40:B4:B2:F7:86:F1:23:42:E0:A8:3D:8A:E8:0F
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/1faa3e-884c-445f-845d-79b3db659dfc/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/1faa3e-884c-445f-845d-79b3db659dfc/1/UYje2s3CQLSy94bxI0LgqD2K6A8.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.142.220.0/22
IPv6:
2a0e:dbc0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
208366
Signature Algorithm: sha256WithRSAEncryption
93:0c:de:15:fb:9c:68:f3:d6:20:72:9c:29:7a:d9:96:80:05:
7d:e3:e5:02:52:f6:48:7e:98:a7:c6:e2:37:bf:b8:e0:7c:d3:
6b:55:5c:c7:cb:57:b5:78:4a:f1:01:ee:35:90:e5:c1:0a:9e:
fb:64:29:25:d4:d3:94:9d:d8:ab:fc:64:19:c6:e4:87:48:25:
0d:62:8d:00:51:33:b4:ba:19:ef:62:c1:6d:3c:b7:8c:20:25:
6d:b0:ef:17:b4:c1:93:55:6e:b0:6a:35:0d:60:b5:57:be:ae:
c4:43:0c:4d:40:d0:0f:87:2b:84:25:62:9b:2a:1a:f8:6b:1b:
16:21:04:34:51:24:ab:ba:fc:8c:7f:25:08:44:b4:ba:e7:c5:
67:63:cf:f3:2e:13:fa:a6:24:20:fc:5d:67:83:f1:0a:fa:25:
1e:63:57:ec:09:78:d3:da:17:01:55:c6:72:6d:27:c8:e1:7e:
9a:e5:d8:0b:db:81:48:7d:ae:56:79:32:5d:18:9e:38:de:e0:
79:af:77:ba:c5:02:8e:e6:96:54:b1:48:f9:0e:d3:87:ec:80:
c0:8b:86:3f:91:ec:51:4b:a8:45:d5:bd:e0:b3:53:99:45:78:
e6:63:24:71:e5:9a:ba:14:6e:e5:aa:72:e6:e8:8a:a0:db:2f:
81:26:0d:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 03:32:35 2024 by rpki-client on console-fra.rpki-client.org