Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/W0lMbhb0nQi-dhyowOqnEihy-oI.cer
File: W0lMbhb0nQi-dhyowOqnEihy-oI.cer (raw, json)
Hash identifier: Tiprn/mnG/x2mQeAnx04Vmlfc4KttDh9SYA6W4ckN54=
Subject key identifier: 5B:49:4C:6E:16:F4:9D:08:BE:76:1C:A8:C0:EA:A7:12:28:72:FA:82
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC6B90D378F1731794E691480C74573CB
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/ec/92bcf4-d0f2-4f9e-874d-c2c6f6a4097f/1/W0lMbhb0nQi-dhyowOqnEihy-oI.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/ec/92bcf4-d0f2-4f9e-874d-c2c6f6a4097f/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 20:31:05 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 43706
IP: 79.170.0.0/21
IP: 185.123.20.0/22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b9:0d:37:8f:17:31:79:4e:69:14:80:c7:45:73:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 20:31:05 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5b494c6e16f49d08be761ca8c0eaa7122872fa82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:82:22:dc:ff:70:08:ea:ae:29:8a:d7:ff:a7:
4d:90:74:c0:99:f6:c3:18:85:e9:8e:3e:68:82:c6:
08:13:e4:4b:96:ac:e9:58:75:04:43:e4:b6:cd:d4:
e0:3d:97:b8:eb:9e:59:5e:5e:43:ae:d8:bb:29:ac:
ba:7b:c6:c1:8d:8c:a8:d0:f4:3e:b4:c9:01:c0:71:
b5:c4:52:fe:40:f2:75:be:44:ab:5b:1b:c9:39:96:
f5:15:fd:07:c8:c6:ad:f8:f9:f8:5f:e3:94:95:ea:
28:0c:98:c3:73:44:67:71:12:c9:18:71:27:05:b8:
bf:3c:fb:fc:50:2e:8a:68:e1:9a:29:b0:fe:9f:31:
96:3a:e3:7e:20:81:d9:49:60:f8:37:57:7e:46:ad:
bc:4b:9e:3c:c9:ca:e1:38:cd:90:25:bf:49:14:4c:
13:c6:5b:40:df:a7:fe:09:aa:87:c6:2c:7e:ae:6b:
44:68:b0:a1:16:b3:4c:f8:fd:15:26:72:ba:46:d8:
99:09:98:30:78:58:c4:1f:0c:37:50:c4:0f:22:2c:
26:cd:91:fa:dc:51:ad:22:8b:90:87:b1:3a:e5:9b:
f3:17:77:eb:3b:74:ab:c8:e8:79:1b:fb:25:27:63:
ff:ed:a9:b3:69:67:90:cf:4d:7d:6f:14:ee:fe:f4:
95:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:49:4C:6E:16:F4:9D:08:BE:76:1C:A8:C0:EA:A7:12:28:72:FA:82
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/92bcf4-d0f2-4f9e-874d-c2c6f6a4097f/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/92bcf4-d0f2-4f9e-874d-c2c6f6a4097f/1/W0lMbhb0nQi-dhyowOqnEihy-oI.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.170.0.0/21
185.123.20.0/22
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
43706
Signature Algorithm: sha256WithRSAEncryption
97:eb:69:00:3d:8e:ae:99:c2:ef:b4:9b:e3:08:d1:e3:9a:62:
81:8d:a6:4b:14:bf:c0:8a:e0:87:6e:33:7b:a9:c2:8d:41:ca:
4c:52:ea:53:2c:06:ef:6c:3e:36:c8:36:ad:32:09:78:02:06:
c1:3f:10:5a:87:ca:77:f4:3d:97:ac:b9:ce:fd:3e:a9:44:a3:
2c:1b:43:44:93:c3:8a:50:7f:a6:90:0b:76:f4:fe:0e:d7:e1:
95:ab:13:9b:ce:ff:97:b4:0c:6e:f1:3b:11:b9:70:53:e4:e6:
fd:c3:9e:af:b3:bd:5a:dc:e9:8e:23:bf:8f:b8:ef:aa:7b:91:
7f:a9:6d:fb:5e:4b:5b:20:2c:75:0e:b4:31:7c:ef:27:5c:f9:
bc:d8:d1:14:72:11:8f:67:4e:00:64:33:4a:68:29:e1:51:62:
24:c5:0b:4c:71:b4:e9:b9:0f:56:ab:b8:4e:a0:56:f4:68:27:
3e:ce:77:a7:91:1f:e3:76:4e:b8:06:d4:43:73:6a:ad:fe:5a:
2e:95:11:40:bd:83:10:52:fd:40:1f:0c:8d:51:38:8e:c6:ee:
19:48:67:a2:ea:13:d6:8d:c9:d8:9b:4d:72:4c:4e:c0:52:20:
d2:9d:c9:ed:6b:9e:3f:4a:34:a7:33:b0:7a:ce:df:67:a8:87:
6c:d6:7a:a4
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Fri Nov 22 12:37:30 2024 by rpki-client on console-ams.rpki-client.org