Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/W3D3NqSwUkpHb28b4pZK6ZtkeJ8.cer
File: W3D3NqSwUkpHb28b4pZK6ZtkeJ8.cer (raw, json)
Hash identifier: XYydTnUguREfY9/W8kr9rNr1ZNuO/D81R6n7ecwl3Tc=
Subject key identifier: 5B:70:F7:36:A4:B0:52:4A:47:6F:6F:1B:E2:96:4A:E9:9B:64:78:9F
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC348CA3E058BAEB8CFF7DA5A025A3A47
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/dd/9a3846-85d9-4d94-9eb0-29784d7b68a2/1/W3D3NqSwUkpHb28b4pZK6ZtkeJ8.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/dd/9a3846-85d9-4d94-9eb0-29784d7b68a2/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 04:29:36 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 25310
IP: 83.146.0.0/18
IP: 84.9.0.0/16
IP: 87.74.0.0/15
IP: 212.158.192.0/18
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:48:ca:3e:05:8b:ae:b8:cf:f7:da:5a:02:5a:3a:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 04:29:36 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5b70f736a4b0524a476f6f1be2964ae99b64789f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:96:7a:b7:88:12:09:ac:9a:f2:d4:e3:8e:53:
d4:71:1a:45:a5:a2:6f:ec:62:3c:91:de:52:27:93:
d4:68:b8:67:65:a8:55:8a:45:63:49:e6:7e:e0:5d:
a9:e6:55:d0:51:4a:62:a0:d2:64:81:70:73:3a:88:
21:74:a4:21:29:4a:77:f1:17:22:af:7d:f0:be:aa:
95:f1:83:d5:41:57:b3:82:9d:fe:3f:b4:15:72:3a:
a3:a8:ba:17:58:02:e3:b4:7a:b8:e5:75:2f:75:de:
0a:fa:8a:86:ab:7a:1d:c8:27:dd:85:44:8e:5c:9b:
8a:d6:91:04:43:6c:9b:fb:da:92:a8:ac:8e:9a:04:
f5:d4:d8:e3:23:bf:4a:08:1c:19:2c:1b:7a:ca:48:
c7:27:8e:3e:56:04:ed:34:ca:57:75:e4:e0:0e:bc:
da:a9:73:e6:7d:14:39:b1:4d:f5:d7:23:71:02:ac:
f2:84:0d:a0:ed:68:a0:1a:f7:44:99:77:4a:35:b0:
28:c0:87:69:12:b5:67:5b:f9:a4:ac:76:ae:5d:d5:
f3:9e:26:10:60:01:69:2f:ee:e0:a2:ed:e4:1d:c0:
7a:e7:30:a3:b9:ce:7d:93:25:f0:4f:06:b1:0c:4f:
6a:17:0f:4f:4f:b5:57:59:19:14:28:e6:86:fc:f2:
f3:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:70:F7:36:A4:B0:52:4A:47:6F:6F:1B:E2:96:4A:E9:9B:64:78:9F
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/9a3846-85d9-4d94-9eb0-29784d7b68a2/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/9a3846-85d9-4d94-9eb0-29784d7b68a2/1/W3D3NqSwUkpHb28b4pZK6ZtkeJ8.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.146.0.0/18
84.9.0.0/16
87.74.0.0/15
212.158.192.0/18
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
25310
Signature Algorithm: sha256WithRSAEncryption
6b:32:0d:8b:34:cd:3c:47:97:ab:fb:79:98:c1:e5:cc:ed:78:
ad:9b:bc:c0:3f:08:c6:a8:b4:ab:29:d3:35:6d:aa:a4:fa:4a:
9e:cd:01:57:09:75:ae:c1:ce:7c:3e:30:0c:40:9c:25:95:c3:
9c:3b:5c:cb:90:e6:77:b6:62:f6:1f:d8:10:7e:62:90:a9:c1:
c2:c0:92:2e:b8:6f:1d:de:45:bc:c7:99:47:de:93:f0:65:bd:
b1:2e:7f:e5:ab:21:82:51:e1:07:f1:cf:1a:87:47:eb:6c:02:
e4:41:47:cf:fd:dc:b8:46:1e:e5:f1:12:0f:46:c3:a5:75:18:
c1:64:18:ae:55:66:56:90:c4:6e:c9:87:04:f5:95:6a:ad:9c:
82:1e:7c:5c:2d:a6:d8:c1:ce:5e:92:84:c2:ed:f4:32:dc:f7:
75:af:81:0d:19:13:2b:60:09:a1:45:0b:a2:26:56:9c:dd:6c:
35:d9:2e:18:4d:a5:35:54:67:72:fe:74:f6:cc:ed:89:8f:33:
00:62:86:92:8c:29:ae:d0:41:61:f6:c6:ba:b9:a0:95:9d:74:
b0:9b:4f:c5:c9:01:62:58:b9:ef:93:67:56:98:65:17:3e:f5:
0b:19:e6:74:f2:02:f7:14:12:96:b1:90:ca:ee:a6:4a:69:28:
7d:4e:75:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 01:47:31 2024 by rpki-client on console-ams.rpki-client.org