Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/VB_cei8RpXZtOte99iXOXhGaj98.cer
File: VB_cei8RpXZtOte99iXOXhGaj98.cer (raw, json)
Hash identifier: 5NKFHexL0fslPk0uNMn19j9mVaX9VvBIEZdyk4kfHrA=
Subject key identifier: 54:1F:DC:7A:2F:11:A5:76:6D:3A:D7:BD:F6:25:CE:5E:11:9A:8F:DF
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0187DC3B9DD6FC1E50CA9098C5A522CF761A
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/4d/8fad67-bb6b-4773-b81e-c900a89f20f1/1/VB_cei8RpXZtOte99iXOXhGaj98.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/4d/8fad67-bb6b-4773-b81e-c900a89f20f1/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 May 2023 11:31:47 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: AS: 48881
IP: 185.101.168.0/22
IP: 185.104.32.0/21
IP: 185.104.48.0/21
IP: 185.104.180.0/22
IP: 2001:67c:2a24::/48
IP: 2a06:1fc0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/Kn3R14fXk-TIr1bhl9Tu2Sr2uhM.crl
rsync://rpki.ripe.net/repository/aca/Kn3R14fXk-TIr1bhl9Tu2Sr2uhM.mft
rsync://rpki.ripe.net/repository/2a7dd1d787d793e4c8af56e197d4eed92af6ba13.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 04 May 2023 06:17:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:dc:3b:9d:d6:fc:1e:50:ca:90:98:c5:a5:22:cf:76:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: May 2 11:31:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=541fdc7a2f11a5766d3ad7bdf625ce5e119a8fdf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:32:c5:3c:d2:44:64:1b:75:bf:b0:c1:ba:dc:
56:1b:c9:62:51:0d:88:cc:aa:13:b2:94:03:52:99:
95:b6:bd:cc:0d:c5:28:bb:df:44:aa:03:92:24:7d:
28:fe:d7:38:9f:3c:82:00:21:83:49:18:ff:93:ec:
cd:92:e6:94:a8:97:d7:86:77:6d:f5:99:7b:f3:e6:
f9:61:c0:4c:1f:2b:02:f1:c5:51:22:c2:c8:45:a4:
eb:27:4a:a3:52:00:59:a3:ec:54:25:39:30:9f:a2:
ef:d1:52:4b:5e:54:af:ac:a0:4e:ad:18:d0:b1:31:
f5:92:55:62:b7:56:43:d4:e7:2f:68:67:31:eb:07:
8c:55:cd:ce:7c:e2:06:33:e9:18:ef:80:2d:b9:e9:
f1:34:e1:fb:69:aa:ec:d8:12:d3:84:66:ff:e1:da:
40:cf:56:71:52:d3:cd:c5:5b:10:5c:93:a4:ff:97:
61:2a:73:e8:ac:00:f4:d8:1d:34:8d:18:16:71:18:
63:bf:25:1f:a4:67:93:b0:3f:1d:5f:ef:2e:40:6c:
62:bf:1b:44:a2:68:af:1c:b0:09:b5:e0:0a:14:6f:
30:dc:c3:02:b1:a4:9a:7d:4a:03:c1:71:d7:49:bf:
e0:60:c9:89:c6:b2:2f:ab:07:42:eb:3b:93:a6:7d:
b2:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:1F:DC:7A:2F:11:A5:76:6D:3A:D7:BD:F6:25:CE:5E:11:9A:8F:DF
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/8fad67-bb6b-4773-b81e-c900a89f20f1/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/8fad67-bb6b-4773-b81e-c900a89f20f1/1/VB_cei8RpXZtOte99iXOXhGaj98.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.101.168.0/22
185.104.32.0/21
185.104.48.0/21
185.104.180.0/22
IPv6:
2001:67c:2a24::/48
2a06:1fc0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
48881
Signature Algorithm: sha256WithRSAEncryption
6f:94:bb:16:02:de:cc:ee:be:6e:3f:e2:12:fe:26:17:fe:12:
41:7b:90:98:d2:c2:d8:cf:3c:d6:9f:13:fb:15:67:0b:4d:d1:
a8:11:cd:fe:45:23:be:07:f4:d9:e0:1a:86:28:44:74:a9:71:
f8:a4:fb:86:0a:ed:19:1f:e2:32:42:23:32:d4:92:e8:ec:81:
62:61:ed:d6:68:ae:ee:81:38:5d:2d:e3:15:94:2e:68:f6:dc:
a1:29:10:b5:ea:ed:5e:d2:7e:71:d7:3d:26:69:fc:9e:ec:61:
ae:25:22:d4:29:59:ec:98:ed:43:da:f8:a6:91:75:16:26:cb:
6a:39:d4:fc:e7:d6:cd:ed:85:1f:5d:ac:a5:1d:cf:1d:4f:3d:
0a:e1:ea:91:5d:18:51:71:b8:06:53:24:37:1a:6b:77:55:7e:
8e:7f:51:2e:6f:ff:7d:65:fc:f0:93:6d:d8:6b:1f:35:9c:8a:
e2:69:da:68:cf:b7:01:ed:9e:16:06:0c:92:1c:61:44:62:50:
ae:bf:cd:eb:32:48:94:f1:09:ef:61:cf:23:ea:0e:1f:25:5b:
ec:3c:f1:9c:ef:a1:2e:8c:9d:d1:be:12:9a:59:bf:7a:94:3f:
39:f9:b2:1e:04:c1:24:13:26:ae:18:24:88:f5:b7:d3:66:da:
2d:19:17:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 3 14:22:47 2023 by rpki-client on console-ams.rpki-client.org