Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/W3qQXiWk1czLLuvk4tXDkggZdY4.cer
File: W3qQXiWk1czLLuvk4tXDkggZdY4.cer (raw, json)
Hash identifier: AH5CBEZG1ZgqDB0DOQjThPs6QPPrCWt6QIBJFl6lGOw=
Subject key identifier: 5B:7A:90:5E:25:A4:D5:CC:CB:2E:EB:E4:E2:D5:C3:92:08:19:75:8E
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC94DC5CD6487EF189847ABF183A1E8B2
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/06/c12395-c0f8-4e05-8cb1-73a3d07d2c31/1/W3qQXiWk1czLLuvk4tXDkggZdY4.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/06/c12395-c0f8-4e05-8cb1-73a3d07d2c31/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 08:32:46 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 62250
IP: 185.110.252.0/22
IP: 185.118.152.0/22
IP: 185.119.164.0/22
IP: 2a06:7980::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4d:c5:cd:64:87:ef:18:98:47:ab:f1:83:a1:e8:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 08:32:46 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5b7a905e25a4d5cccb2eebe4e2d5c3920819758e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:bc:bf:a2:03:e3:2b:39:15:e1:2c:8e:34:5f:
83:37:f9:44:5b:46:e0:a9:72:80:d6:25:df:43:53:
7a:eb:da:66:5a:96:8a:bc:94:d9:24:2a:34:80:88:
95:38:f6:13:57:ce:0e:4f:0d:b9:2f:6a:a3:e8:25:
04:83:17:42:33:ae:a4:71:a9:58:0b:dc:f9:17:57:
ac:69:70:86:d3:8b:81:bb:a1:f8:6a:de:8f:85:96:
67:c9:b1:76:bc:f3:ee:87:1d:63:61:20:dd:f6:97:
24:ee:25:48:0f:a7:f5:55:d1:f2:2f:50:93:6e:a4:
35:c4:75:c5:f7:d3:68:97:fd:7e:fa:c5:2a:c5:28:
d4:4f:c8:f4:1c:22:af:06:cf:f2:37:36:4f:d5:7c:
84:e7:50:22:20:2a:91:c2:86:4e:3e:42:b5:ea:9f:
54:e9:87:0b:6d:f8:fa:ad:5e:5e:66:70:56:23:91:
17:3b:52:8f:fe:30:32:20:c9:8c:0d:2e:98:ce:43:
4f:86:c3:34:2c:92:e1:d3:ab:ad:5a:d2:d2:0d:05:
10:d2:18:3d:3b:54:e3:a3:74:c5:90:d3:5c:84:43:
d7:33:52:04:03:ab:94:11:7e:5a:95:57:35:37:90:
a2:ac:c8:5b:ad:8e:21:c8:f0:11:57:25:b4:45:11:
a7:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:7A:90:5E:25:A4:D5:CC:CB:2E:EB:E4:E2:D5:C3:92:08:19:75:8E
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/c12395-c0f8-4e05-8cb1-73a3d07d2c31/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/c12395-c0f8-4e05-8cb1-73a3d07d2c31/1/W3qQXiWk1czLLuvk4tXDkggZdY4.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.110.252.0/22
185.118.152.0/22
185.119.164.0/22
IPv6:
2a06:7980::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
62250
Signature Algorithm: sha256WithRSAEncryption
48:a0:c8:6f:b2:58:08:31:41:f1:eb:6e:4f:e1:f5:a9:b2:05:
7c:ae:87:73:db:ac:2d:ed:e9:79:13:70:e5:70:22:f9:a4:4d:
fc:3b:1a:40:78:a8:2e:f1:5a:ea:fd:64:4a:33:45:b8:f3:51:
83:a4:ff:73:83:67:38:f3:0d:15:fd:2d:8a:60:65:cb:2c:ed:
c5:df:97:b1:60:72:7c:fa:f9:9c:21:96:d2:8a:9c:d4:e9:c0:
8e:b4:15:e5:dc:10:4f:78:0f:df:3a:fb:5d:20:a9:a7:5f:8f:
7d:38:1e:0d:49:33:6e:fc:40:7f:ee:32:2c:0a:56:00:aa:cf:
2c:96:e3:7b:96:c0:41:1e:d3:1e:1e:43:0b:9a:23:1e:df:5a:
f6:dc:40:d7:d0:75:bb:96:e8:fc:47:fe:e5:fa:86:1c:15:e2:
bf:46:f8:bc:76:24:84:89:36:b2:9e:67:d2:8b:1c:5f:6b:a8:
9a:1c:b5:6f:28:58:88:20:c5:3e:61:3c:d1:82:ac:ab:75:84:
68:2b:09:8f:c1:23:04:48:45:83:76:a1:06:a0:c1:84:e6:f9:
bd:44:09:e0:25:e3:75:73:e4:c8:f8:7f:74:49:c1:ab:16:b2:
de:ad:35:b9:5e:2b:f9:e0:49:f5:52:77:00:79:1f:19:90:09:
79:18:56:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 11:35:17 2024 by rpki-client on console-ams.rpki-client.org