Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/W-cZ-YXfOUpCrBHly8j4K0t67F0.cer
File: W-cZ-YXfOUpCrBHly8j4K0t67F0.cer (raw, json)
Hash identifier: zUjQ1aMYjLoPjzsTEQYeF17yyxtGqQSJOU6lCQQe98w=
Subject key identifier: 5B:E7:19:F9:85:DF:39:4A:42:AC:11:E5:CB:C8:F8:2B:4B:7A:EC:5D
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC4939DBC3E7B5452F4ED9FA5AE0883D5
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/35/9c0278-542c-4467-ac7c-24aee2b0e82b/1/W-cZ-YXfOUpCrBHly8j4K0t67F0.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/35/9c0278-542c-4467-ac7c-24aee2b0e82b/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 10:30:57 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 56818
IP: 91.227.254.0/24
IP: 192.162.200.0/22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:93:9d:bc:3e:7b:54:52:f4:ed:9f:a5:ae:08:83:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 10:30:57 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5be719f985df394a42ac11e5cbc8f82b4b7aec5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:37:e2:9f:13:11:1e:9f:d0:27:64:2e:d5:45:
d1:46:75:21:1b:9d:f5:11:95:8a:6e:11:68:f9:d6:
b7:13:fa:b2:92:99:e5:50:ff:58:a5:a2:92:2a:05:
23:23:a4:19:ec:ee:2f:82:18:ee:52:e6:e2:18:53:
69:6e:45:e3:a2:41:f2:be:e7:8f:d0:7d:3d:fd:58:
54:84:45:d1:ae:5a:a7:4b:21:59:70:d5:30:00:f7:
2b:87:ef:07:40:09:68:65:63:95:dd:79:a0:27:71:
f3:92:e8:d5:66:17:d7:b5:5d:73:97:78:b4:57:bb:
92:d5:64:6e:26:09:e9:65:24:8d:ea:1f:7f:d8:aa:
6a:11:9a:6d:65:a5:87:cf:6c:ad:aa:d4:7a:f4:b8:
6d:4a:16:91:17:ad:dc:52:4b:55:6f:6e:cd:85:71:
f7:74:dc:aa:4e:6f:02:df:d0:e6:a3:70:44:64:45:
7b:54:45:10:09:1b:67:1e:0f:c5:e1:1d:87:20:70:
2a:30:f1:eb:ad:0f:9a:21:99:2d:71:7c:e5:65:0e:
36:e6:d0:8c:d4:7a:e1:d0:35:d6:30:78:d3:07:82:
3c:42:7f:eb:55:95:b9:a3:ff:0e:40:b3:58:3c:3c:
21:14:9c:54:62:de:8f:6c:e0:08:e0:3b:f4:84:1a:
fd:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:E7:19:F9:85:DF:39:4A:42:AC:11:E5:CB:C8:F8:2B:4B:7A:EC:5D
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9c0278-542c-4467-ac7c-24aee2b0e82b/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9c0278-542c-4467-ac7c-24aee2b0e82b/1/W-cZ-YXfOUpCrBHly8j4K0t67F0.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.227.254.0/24
192.162.200.0/22
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
56818
Signature Algorithm: sha256WithRSAEncryption
07:4d:c5:34:ae:37:02:0f:3d:5c:53:bd:6d:84:cb:19:9f:19:
60:67:69:e1:7c:8f:c4:8c:3c:2d:04:b9:d2:c0:ba:ff:ff:99:
de:8b:22:7e:dc:d1:04:99:1a:30:89:f5:2f:b7:21:51:ce:00:
11:c6:ac:98:cb:e4:4b:83:5c:c5:f5:6d:b1:ef:3a:0e:ee:08:
27:7d:c8:4e:c8:82:d2:92:24:e9:7e:50:88:da:9d:59:b6:88:
c0:a6:0c:cf:8c:f3:a8:d7:8a:48:8e:75:a6:a2:46:62:59:5a:
5f:df:7a:f4:77:05:00:ee:e7:28:34:42:81:7c:6e:8c:cf:34:
06:59:8a:7f:53:b8:4f:6b:a0:72:14:8d:fb:35:54:ac:93:39:
11:18:87:26:00:22:df:03:00:dc:e8:0c:ef:53:3f:64:d2:38:
f7:a4:55:a4:bf:be:eb:84:4e:a5:e2:94:3f:fe:84:68:3d:90:
db:37:3f:6e:56:3c:be:83:82:37:ca:a3:55:be:11:b3:3c:6d:
5d:fd:db:7b:53:3d:b3:8b:d6:6a:80:27:26:79:27:96:2d:67:
d2:74:0c:ac:f6:8c:ef:d5:85:6c:fa:f8:53:a4:9d:1d:03:f8:
25:c4:dd:16:ae:1b:12:e0:55:c0:44:84:25:49:d8:60:6f:fa:
bd:5a:ba:03
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Fri May 3 01:47:29 2024 by rpki-client on console-ams.rpki-client.org