Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/Ub-0Y1O_zM_5QS3L3UgPGbTJg5c.cer
File: Ub-0Y1O_zM_5QS3L3UgPGbTJg5c.cer (raw, json)
Hash identifier: 9Bu4/NmvAbBXY/riIrPf/dh4mtpcIy+1e//a86sFvVk=
Subject key identifier: 51:BF:B4:63:53:BF:CC:CF:F9:41:2D:CB:DD:48:0F:19:B4:C9:83:97
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC500613E8D1072F4453BCE915B533946
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/b1/d92557-8c46-482c-91a8-c1e974bed12e/1/Ub-0Y1O_zM_5QS3L3UgPGbTJg5c.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/b1/d92557-8c46-482c-91a8-c1e974bed12e/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 12:29:45 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 57305
IP: 88.135.188.0/22
IP: 91.227.212.0/22
IP: 109.197.34.0/24
IP: 109.197.38.0/24
IP: 195.149.100.0/24
IP: 195.200.206.0/24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:00:61:3e:8d:10:72:f4:45:3b:ce:91:5b:53:39:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 12:29:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=51bfb46353bfcccff9412dcbdd480f19b4c98397
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:1d:47:c1:bb:6e:1d:c7:7c:d2:12:95:48:6e:
05:64:68:a1:6c:7e:76:2a:95:73:0d:77:84:d0:65:
ad:44:8b:6a:3b:03:58:cc:10:a4:8e:a3:b5:98:c0:
b2:18:7b:1a:c4:cc:b2:cd:d4:96:7a:61:65:a9:ba:
b7:0f:3f:6c:bd:f0:b9:f3:04:c3:d1:96:2b:17:5f:
7f:22:d9:b5:cf:96:db:96:40:4f:eb:b9:12:74:55:
89:8e:50:af:5b:68:4b:9f:1b:ea:d1:d9:ba:36:9d:
1f:9e:c5:bd:f1:e9:a5:ad:b2:2c:4f:15:0b:c7:b4:
51:2a:80:b3:13:41:a5:b2:74:89:9c:9e:f4:02:d7:
56:c7:c2:bf:dc:eb:5e:e3:f0:f9:94:38:56:8b:6b:
38:1a:a9:5c:74:96:41:44:9d:b0:07:eb:da:5c:88:
78:98:1a:b1:5a:95:19:36:c4:c8:04:b5:7a:fa:1e:
46:aa:fd:50:23:e4:8c:e6:15:df:dc:da:3c:aa:42:
6f:66:50:69:da:67:3a:ee:5f:31:51:39:2a:30:eb:
e3:5f:52:ff:94:47:9d:c5:71:bf:b8:95:85:33:81:
82:45:df:2d:2b:b6:14:3b:88:ee:b8:1b:b4:09:ff:
09:ec:db:da:4c:24:1a:63:58:e8:a3:da:58:22:e6:
cb:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:BF:B4:63:53:BF:CC:CF:F9:41:2D:CB:DD:48:0F:19:B4:C9:83:97
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/d92557-8c46-482c-91a8-c1e974bed12e/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/d92557-8c46-482c-91a8-c1e974bed12e/1/Ub-0Y1O_zM_5QS3L3UgPGbTJg5c.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.135.188.0/22
91.227.212.0/22
109.197.34.0/24
109.197.38.0/24
195.149.100.0/24
195.200.206.0/24
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
57305
Signature Algorithm: sha256WithRSAEncryption
aa:05:c1:4a:a1:81:a8:da:68:5c:53:7c:5e:f3:92:00:17:c3:
ab:12:e4:38:91:f9:d6:d9:3f:5a:9d:50:9f:da:ae:21:9a:66:
70:65:0b:b2:ee:90:5b:87:9e:ff:02:8c:39:51:74:c2:a9:25:
e2:be:67:7d:b4:85:d1:11:00:a5:27:a9:cc:c2:06:6b:80:e0:
7d:70:85:9b:e2:cd:83:ab:d4:e6:c9:9e:46:60:08:92:77:75:
07:1f:1d:34:61:00:e6:ec:c8:39:d9:a4:3a:ee:f2:03:90:90:
b4:71:9e:94:fb:0e:a7:03:76:d1:db:f2:d5:0b:ea:98:26:a7:
61:88:cf:f3:1f:4b:d8:b9:6a:91:30:3b:60:00:ba:b0:3c:7c:
3a:14:58:84:a8:ed:8e:41:07:2a:78:0b:b8:51:3b:de:b2:1d:
ec:a7:4c:ca:8c:65:69:71:22:47:18:52:e6:32:a9:69:d7:cc:
c0:7a:63:76:c3:ec:3c:10:83:ae:d6:22:a3:83:f7:4a:6b:e7:
ae:57:45:ca:4b:7c:40:96:f5:f5:ef:e1:0b:f6:cd:9c:f2:13:
2d:e4:d3:a0:7c:66:96:03:5b:ad:26:65:10:76:90:e6:6b:f8:
57:14:c1:2a:d8:d7:e2:33:96:d9:0e:de:84:98:09:3f:00:80:
64:fe:ff:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 07:37:26 2024 by rpki-client on console-fra.rpki-client.org