Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/Ub-0Y1O_zM_5QS3L3UgPGbTJg5c.cer
File: Ub-0Y1O_zM_5QS3L3UgPGbTJg5c.cer (raw, json)
Hash identifier: h+zXQ/bFRZhfE+NRAQezGXXvxc0gAPCzPDuEQDaDxT4=
Subject key identifier: 51:BF:B4:63:53:BF:CC:CF:F9:41:2D:CB:DD:48:0F:19:B4:C9:83:97
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0190EA085F0C61D362BDCFEE2AC373E5CF54
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/b1/d92557-8c46-482c-91a8-c1e974bed12e/1/Ub-0Y1O_zM_5QS3L3UgPGbTJg5c.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/b1/d92557-8c46-482c-91a8-c1e974bed12e/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 25 Jul 2024 13:15:35 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 57305
IP: 88.135.188.0/22
IP: 91.227.212.0/22
IP: 109.197.33.0 -- 109.197.34.255
IP: 109.197.38.0/24
IP: 195.149.100.0/24
IP: 195.200.206.0/24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:ea:08:5f:0c:61:d3:62:bd:cf:ee:2a:c3:73:e5:cf:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jul 25 13:15:35 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=51bfb46353bfcccff9412dcbdd480f19b4c98397
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:1d:47:c1:bb:6e:1d:c7:7c:d2:12:95:48:6e:
05:64:68:a1:6c:7e:76:2a:95:73:0d:77:84:d0:65:
ad:44:8b:6a:3b:03:58:cc:10:a4:8e:a3:b5:98:c0:
b2:18:7b:1a:c4:cc:b2:cd:d4:96:7a:61:65:a9:ba:
b7:0f:3f:6c:bd:f0:b9:f3:04:c3:d1:96:2b:17:5f:
7f:22:d9:b5:cf:96:db:96:40:4f:eb:b9:12:74:55:
89:8e:50:af:5b:68:4b:9f:1b:ea:d1:d9:ba:36:9d:
1f:9e:c5:bd:f1:e9:a5:ad:b2:2c:4f:15:0b:c7:b4:
51:2a:80:b3:13:41:a5:b2:74:89:9c:9e:f4:02:d7:
56:c7:c2:bf:dc:eb:5e:e3:f0:f9:94:38:56:8b:6b:
38:1a:a9:5c:74:96:41:44:9d:b0:07:eb:da:5c:88:
78:98:1a:b1:5a:95:19:36:c4:c8:04:b5:7a:fa:1e:
46:aa:fd:50:23:e4:8c:e6:15:df:dc:da:3c:aa:42:
6f:66:50:69:da:67:3a:ee:5f:31:51:39:2a:30:eb:
e3:5f:52:ff:94:47:9d:c5:71:bf:b8:95:85:33:81:
82:45:df:2d:2b:b6:14:3b:88:ee:b8:1b:b4:09:ff:
09:ec:db:da:4c:24:1a:63:58:e8:a3:da:58:22:e6:
cb:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:BF:B4:63:53:BF:CC:CF:F9:41:2D:CB:DD:48:0F:19:B4:C9:83:97
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/d92557-8c46-482c-91a8-c1e974bed12e/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/d92557-8c46-482c-91a8-c1e974bed12e/1/Ub-0Y1O_zM_5QS3L3UgPGbTJg5c.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.135.188.0/22
91.227.212.0/22
109.197.33.0-109.197.34.255
109.197.38.0/24
195.149.100.0/24
195.200.206.0/24
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
57305
Signature Algorithm: sha256WithRSAEncryption
8c:9b:24:1e:70:98:ce:52:ad:0d:34:de:c2:1d:b9:ff:1d:0d:
00:72:ef:0a:0e:56:8b:78:ea:7b:a7:b6:17:be:5e:2f:ed:51:
af:f0:17:28:71:90:bf:b8:52:6b:3d:12:90:2b:e8:ab:a9:99:
5b:7d:57:74:10:ef:3f:36:ea:21:52:72:cc:48:c7:b2:9d:c3:
62:06:93:57:01:3d:4e:d1:17:f4:31:cc:16:20:65:20:fc:10:
fe:b9:04:93:5b:c1:97:e9:80:4a:d5:c6:50:3d:54:d6:f7:eb:
46:ec:54:71:e5:74:e5:3a:f5:32:dd:88:4f:85:94:cc:6e:cf:
92:3c:f4:e8:f7:87:da:cc:32:39:c7:a8:e8:f7:a2:aa:b4:b4:
7b:bb:4d:d2:1d:43:d0:7e:38:97:4d:29:b0:fe:5a:2f:36:bf:
14:7a:4a:30:91:60:ef:c9:60:a2:c1:0d:f1:3f:c9:e0:53:cc:
c0:79:86:1d:61:06:60:e9:5b:98:aa:28:e2:76:35:b9:06:e7:
12:0f:93:c7:41:35:1e:0b:65:03:b6:8c:6f:29:79:33:c3:86:
8e:71:65:72:b0:9b:49:ae:11:12:4c:25:7a:a9:01:9a:a5:e5:
8b:fb:7c:72:9b:9f:b8:51:ed:1a:0b:a3:b6:74:19:ee:17:bf:
9c:76:2c:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 02:16:50 2024 by rpki-client on console-ams.rpki-client.org