Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/W-XxlT4DHSeYZPPDvv8LxnWgDuQ.cer
File: W-XxlT4DHSeYZPPDvv8LxnWgDuQ.cer (raw, json)
Hash identifier: FZ6AFvA/mecBx9COb9IKfhsqFF6JW+n7cvlUVqRmQ1E=
Subject key identifier: 5B:E5:F1:95:3E:03:1D:27:98:64:F3:C3:BE:FF:0B:C6:75:A0:0E:E4
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC9BC7526896993EDEA585EFDCA688F4B
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/a6/ce12ca-ab7e-4854-bc67-8c600eae7d80/1/W-XxlT4DHSeYZPPDvv8LxnWgDuQ.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/a6/ce12ca-ab7e-4854-bc67-8c600eae7d80/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 10:33:40 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 212640
IP: 193.163.54.0/24
IP: 2a10:6b40::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:75:26:89:69:93:ed:ea:58:5e:fd:ca:68:8f:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 10:33:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5be5f1953e031d279864f3c3beff0bc675a00ee4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:3b:69:2f:75:93:db:8c:6f:43:cb:15:18:5d:
f7:0c:89:81:51:ed:11:7a:36:97:b8:61:fa:f4:69:
37:a4:5a:e8:71:48:26:0a:2c:5a:41:05:29:f4:5f:
b6:61:37:51:4d:a2:0f:95:7b:e3:e2:0a:c3:34:d1:
83:52:64:95:06:56:88:f7:f7:62:74:aa:a5:bb:06:
b9:c7:aa:b5:2c:49:78:09:d4:8a:2e:d0:13:6b:bb:
2d:0a:50:18:21:b0:30:da:7e:6a:39:ae:34:9e:69:
e3:f5:b2:90:42:38:1e:7e:8e:ee:70:63:3a:0e:18:
ab:6e:af:5f:62:fe:3e:53:75:a7:97:88:38:eb:a0:
45:e2:13:07:83:d9:80:7b:14:12:f0:76:99:20:1f:
dd:d4:98:c8:a2:ac:09:31:53:4a:04:72:bf:e9:a1:
02:0f:b6:36:c0:9d:7c:b1:5d:24:d7:4a:d8:f9:4d:
03:f1:f2:8d:e3:24:24:27:f6:29:c3:31:51:bc:a2:
de:f7:57:72:9e:6f:b3:4d:28:9e:ea:00:ee:d4:36:
ee:6e:62:30:f8:63:78:ce:d9:87:41:c0:38:12:de:
1c:5f:01:5f:cb:14:17:5b:69:66:76:55:4c:92:bb:
df:65:db:d4:7e:96:59:34:a5:07:46:91:a7:b7:99:
a9:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:E5:F1:95:3E:03:1D:27:98:64:F3:C3:BE:FF:0B:C6:75:A0:0E:E4
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/ce12ca-ab7e-4854-bc67-8c600eae7d80/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/ce12ca-ab7e-4854-bc67-8c600eae7d80/1/W-XxlT4DHSeYZPPDvv8LxnWgDuQ.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.163.54.0/24
IPv6:
2a10:6b40::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
212640
Signature Algorithm: sha256WithRSAEncryption
a4:5c:1b:9e:6c:a3:50:b9:09:e4:69:ea:e9:ac:6d:fd:09:f6:
9d:3b:a6:a8:a7:91:82:13:1b:3b:93:14:f4:64:d6:a0:56:d1:
10:68:2f:72:8d:1b:99:51:46:cf:de:ae:06:0a:30:e4:a6:4b:
68:fb:9e:83:30:9f:8a:37:78:b8:51:9f:a2:23:f7:55:7c:10:
6f:f3:62:ea:bb:b7:6f:ab:5f:43:4b:5e:72:50:c6:f9:77:90:
cf:5f:28:9d:5e:72:df:4c:65:c9:e9:ed:b3:ba:b8:a0:28:54:
e0:ac:f4:9e:06:bd:aa:1c:d0:2d:15:ac:e4:6c:49:6a:39:14:
06:14:94:4f:6a:b0:b7:e7:17:f6:a0:03:6f:74:be:a0:29:88:
fc:f4:cf:c6:e3:2d:c4:34:4c:90:ce:6e:dd:33:21:fd:db:e7:
3b:38:6c:db:ce:13:d3:8f:d2:34:96:4e:ab:84:a9:4c:9b:f1:
af:1b:1a:bb:43:21:dd:92:e4:43:5d:9c:a4:4c:34:6f:e1:fe:
e7:fb:59:e5:69:cc:9a:ab:fe:68:26:aa:d0:41:b0:d1:ea:00:
ca:21:19:c2:5c:0b:43:1b:52:ec:14:47:d1:5c:b0:97:b4:f1:
91:59:2e:c8:46:1f:4f:b6:b7:23:1e:42:f4:15:9d:68:9c:db:
1b:8f:31:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 10:19:02 2024 by rpki-client on console-fra.rpki-client.org