Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/VqAi3rCSj10aCl-wDpbK1MfZEdg.cer
File: VqAi3rCSj10aCl-wDpbK1MfZEdg.cer (raw, json)
Hash identifier: 3AuCgbSagYMlVzGtxW2GIQbO8br79D8ta1HlHd0aFig=
Subject key identifier: 56:A0:22:DE:B0:92:8F:5D:1A:0A:5F:B0:0E:96:CA:D4:C7:D9:11:D8
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC5DCD4B1EA9E3200C7A1F5B99241CBCE
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/56/7bb207-f471-4b67-8cb7-e15a6c3e4ea6/1/VqAi3rCSj10aCl-wDpbK1MfZEdg.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/56/7bb207-f471-4b67-8cb7-e15a6c3e4ea6/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 16:30:33 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 48374
AS: 206079
IP: 185.141.144.0/22
IP: 185.168.180.0/22
IP: 2a07:2500::/29
IP: 2a10:abc0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:dc:d4:b1:ea:9e:32:00:c7:a1:f5:b9:92:41:cb:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 16:30:33 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=56a022deb0928f5d1a0a5fb00e96cad4c7d911d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:0b:6d:ed:b4:a7:a6:ef:ff:fe:b0:2d:f5:59:
c1:fb:05:32:92:54:92:fc:41:f5:d6:6f:9e:7b:ce:
bb:5e:aa:2e:85:c4:b7:2e:b9:d3:3f:20:3f:70:bf:
a8:3c:13:ac:4b:07:65:50:4c:31:bc:8a:dc:0d:f0:
66:af:f6:ef:9d:cb:9f:4a:d2:20:e3:73:8f:43:48:
b3:57:a7:df:9f:74:21:11:e6:b2:5e:f0:a3:df:57:
db:4c:01:48:c1:76:2f:22:70:df:c4:92:a5:2b:cc:
82:e1:d4:d6:d8:9f:9f:f0:29:8c:17:a0:92:c0:1f:
d1:01:a8:f9:8c:16:20:66:b6:bb:6b:32:e6:82:95:
b0:62:cc:82:f9:52:f1:8e:65:61:5d:68:87:90:23:
f3:67:d5:9e:fe:93:2b:ef:e7:be:f6:7b:9b:f0:18:
2d:ce:4b:be:aa:ed:d6:e4:2c:19:cf:5b:d5:8b:9f:
8c:ca:02:35:14:03:fc:96:eb:0a:72:46:64:47:d2:
63:82:56:4d:ff:00:3e:b9:5a:20:a0:81:30:be:b9:
66:a1:2f:77:95:9d:40:b7:19:10:ce:b2:fc:8c:84:
ba:99:7b:ac:74:3c:df:2c:c4:36:45:20:32:d6:b5:
1e:4d:97:5a:09:91:6e:7e:8f:ab:b3:6d:78:2f:5e:
f2:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:A0:22:DE:B0:92:8F:5D:1A:0A:5F:B0:0E:96:CA:D4:C7:D9:11:D8
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/7bb207-f471-4b67-8cb7-e15a6c3e4ea6/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/7bb207-f471-4b67-8cb7-e15a6c3e4ea6/1/VqAi3rCSj10aCl-wDpbK1MfZEdg.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.141.144.0/22
185.168.180.0/22
IPv6:
2a07:2500::/29
2a10:abc0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
48374
206079
Signature Algorithm: sha256WithRSAEncryption
0b:66:50:92:37:a0:1b:b1:d0:38:77:1d:3e:43:ec:d7:70:a8:
86:4d:35:97:cc:d7:5a:c4:4a:89:4b:ca:d8:f1:37:e4:7b:2f:
58:ce:61:91:40:1a:98:f6:e4:86:8b:c2:ac:b7:f5:5b:0e:ec:
08:24:f9:ac:f7:b6:09:03:a9:ca:1e:f3:08:9d:81:f3:33:a3:
5e:47:5a:64:84:41:b2:42:ae:17:26:7e:49:14:5c:67:be:bf:
21:2f:37:2c:33:e7:d6:88:7f:3e:7f:26:28:77:f7:3b:30:03:
85:dd:eb:25:4b:86:c1:77:db:f1:a5:88:d1:60:cf:89:0d:38:
73:67:a8:f6:fd:77:8e:a9:a2:01:2b:5d:35:9f:e7:09:58:2e:
6c:98:59:62:a0:f6:b9:33:cc:99:e4:67:87:5a:48:5d:df:5d:
94:69:29:2a:bb:56:bf:f5:10:79:56:2e:55:39:69:d6:31:d9:
6a:e6:72:a2:21:1e:47:fd:6c:d8:cc:f1:82:0f:e8:6a:f3:12:
43:60:e5:31:3c:f0:d1:91:24:b7:a3:ff:ae:b0:f5:db:e8:78:
3e:25:b5:66:64:f3:89:e9:a4:a7:04:54:0c:d9:57:ce:64:69:
d4:92:70:81:02:69:cc:02:cc:31:2e:15:39:2a:c7:59:1d:9f:
55:4c:cb:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:51:16 2024 by rpki-client on console-ams.rpki-client.org