Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/W4oWUi7DSxxbxHCCBswZY6FbvbE.cer
File: W4oWUi7DSxxbxHCCBswZY6FbvbE.cer (raw, json)
Hash identifier: BRF0+UpzMtetS29p6qmGOcCzQ//gVPKivfqSh9asvqU=
Subject key identifier: 5B:8A:16:52:2E:C3:4B:1C:5B:C4:70:82:06:CC:19:63:A1:5B:BD:B1
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC3B6ECD26876AEA70169A8CB2E5218D6
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/15/34536a-771a-4775-b2bd-cac8ed76a844/1/W4oWUi7DSxxbxHCCBswZY6FbvbE.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/15/34536a-771a-4775-b2bd-cac8ed76a844/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 06:29:54 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 212905
IP: 5.182.247.0/24
IP: 178.159.35.0/24
IP: 2a0c:d200::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:b6:ec:d2:68:76:ae:a7:01:69:a8:cb:2e:52:18:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 06:29:54 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5b8a16522ec34b1c5bc4708206cc1963a15bbdb1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:8d:02:2d:e7:d0:db:26:f2:4a:06:13:ac:23:
4b:f4:77:8d:c2:9d:d5:13:b7:88:34:6c:ef:41:fb:
1f:b5:85:76:df:98:08:77:5f:7b:87:1f:25:71:b9:
1c:90:83:64:91:67:25:15:90:a8:ac:9b:02:fc:17:
1c:1a:7b:3d:af:37:78:51:e0:aa:e1:74:f1:87:34:
c4:48:c7:8f:73:4e:0a:c5:69:6d:15:b3:8f:0f:60:
8a:20:4a:a9:1b:f8:f0:90:43:3d:3b:1a:7d:26:c9:
23:66:79:98:6c:c8:ac:3b:43:8e:54:cf:84:f1:08:
95:2a:76:aa:ae:5c:76:db:6f:cb:e5:df:96:25:bd:
a1:35:6e:71:65:e9:3e:94:72:cf:16:4a:ca:5a:32:
15:34:cd:34:a0:fa:4a:af:5e:44:5c:2b:8e:cb:5e:
b2:82:9a:f9:cc:9f:c0:57:e7:2c:58:4c:87:87:15:
a6:9f:49:72:2d:a1:39:ee:2a:9c:07:f7:0d:d6:e9:
dc:cf:ba:3a:f9:99:80:04:03:29:84:2f:6f:b9:1e:
a1:1d:21:ca:8a:b7:df:19:52:41:3b:66:fe:49:0c:
e9:70:e6:d6:7f:39:e1:a7:1e:f5:46:90:a2:c5:66:
14:c5:ae:26:47:22:95:f3:4c:67:b3:c0:99:ba:14:
a9:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:8A:16:52:2E:C3:4B:1C:5B:C4:70:82:06:CC:19:63:A1:5B:BD:B1
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/34536a-771a-4775-b2bd-cac8ed76a844/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/34536a-771a-4775-b2bd-cac8ed76a844/1/W4oWUi7DSxxbxHCCBswZY6FbvbE.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.247.0/24
178.159.35.0/24
IPv6:
2a0c:d200::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
212905
Signature Algorithm: sha256WithRSAEncryption
7f:58:6f:47:44:de:11:fd:cf:8a:dd:da:5b:fa:e0:3d:79:2a:
14:43:05:84:05:d4:64:16:e5:71:f4:04:20:5d:f6:93:98:da:
4d:ce:3a:b9:9a:be:9a:f8:bb:f4:89:0e:60:87:49:b4:a6:cb:
71:c3:12:4a:4c:33:72:84:3e:25:6a:1b:e2:43:8d:c6:42:02:
bc:a9:12:6b:f4:a8:2e:54:23:8a:a9:d0:f4:94:53:a6:c9:4c:
7c:82:97:c0:4a:12:54:aa:c3:30:03:87:55:ee:0e:4e:64:ed:
a9:03:31:75:a4:05:af:cb:f2:a4:e6:61:a5:2e:1f:20:0b:9a:
e8:76:4e:ec:99:92:29:01:eb:87:4e:72:5e:08:a0:3b:89:df:
92:f6:b4:0e:a5:0b:0f:de:ba:00:ac:d0:1e:51:6c:37:cb:cd:
a6:6d:d8:f8:7b:cd:42:ad:67:8e:64:57:e8:92:14:7e:1a:a3:
82:0a:68:d4:04:ef:70:50:d0:5f:b6:7f:12:b1:11:a5:a0:05:
07:a6:e7:69:a5:af:ec:e9:8d:6d:b0:08:4c:dc:f2:96:90:92:
44:e7:67:8b:bf:3a:d6:eb:34:3b:7f:6a:29:a3:9b:c1:0b:ce:
f0:6a:f8:24:80:da:4e:00:78:50:64:b3:9b:4c:91:39:03:96:
5c:0c:ad:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 10:19:06 2024 by rpki-client on console-fra.rpki-client.org