Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/W6o1QB5Sl7O1J-hPk-qKoRDZe5U.cer
File: W6o1QB5Sl7O1J-hPk-qKoRDZe5U.cer (raw, json)
Hash identifier: 75J4U3X8o2Ggqh3B25HcCxFNUNBbrrOzUz4D6qQ3lL4=
Subject key identifier: 5B:AA:35:40:1E:52:97:B3:B5:27:E8:4F:93:EA:8A:A1:10:D9:7B:95
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC5DC16D9899E840ED16032162019DFEB
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/76/a1dcfb-8010-414e-9e3a-44001700b8ca/1/W6o1QB5Sl7O1J-hPk-qKoRDZe5U.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/76/a1dcfb-8010-414e-9e3a-44001700b8ca/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 16:29:44 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 43926
IP: 46.253.40.0/21
IP: 185.182.152.0/22
IP: 2a0a:f180::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:dc:16:d9:89:9e:84:0e:d1:60:32:16:20:19:df:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 16:29:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5baa35401e5297b3b527e84f93ea8aa110d97b95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:44:b6:0c:75:75:e4:05:6d:6f:96:d3:0a:0c:
80:26:16:76:fa:52:d1:15:3a:b5:94:2c:8f:41:c5:
55:17:51:32:e2:25:5f:3b:32:9e:30:97:f0:9f:86:
b3:d9:31:a1:24:8a:6b:ee:44:f8:0e:ae:c4:16:42:
0c:28:d5:f8:ab:d8:e5:00:61:86:4d:29:9c:6b:b3:
d2:0e:3c:d3:d7:6b:01:95:2c:13:dd:db:37:bb:f4:
d7:b0:8d:23:b7:13:ca:09:ad:dd:af:32:35:7a:7a:
1b:86:8f:5b:52:72:b5:28:c4:6d:cc:f2:4f:8b:83:
d0:34:28:c2:25:07:a1:63:de:70:db:83:15:b2:8c:
82:91:51:8d:31:04:6c:fe:77:47:a9:08:8b:7a:90:
d9:87:a7:97:55:f6:84:c8:53:cd:de:1f:ac:60:0a:
54:01:8c:b9:44:bf:86:87:b7:dd:dc:da:15:05:bf:
59:22:f9:ec:64:5e:7c:b9:aa:67:a3:90:2d:24:29:
31:c1:e2:c0:aa:95:e9:7a:df:4c:e8:f7:cf:fa:7a:
93:1c:39:66:3a:cb:27:c7:af:f4:c8:31:db:74:26:
c1:e7:7b:5b:81:b3:d8:35:5b:ce:de:3b:08:45:ba:
15:72:c0:92:9c:61:7c:8b:f8:1c:86:58:10:54:16:
b9:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:AA:35:40:1E:52:97:B3:B5:27:E8:4F:93:EA:8A:A1:10:D9:7B:95
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/a1dcfb-8010-414e-9e3a-44001700b8ca/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/a1dcfb-8010-414e-9e3a-44001700b8ca/1/W6o1QB5Sl7O1J-hPk-qKoRDZe5U.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.253.40.0/21
185.182.152.0/22
IPv6:
2a0a:f180::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
43926
Signature Algorithm: sha256WithRSAEncryption
8a:94:f6:27:ab:52:d4:e3:58:ae:9f:7b:09:38:0e:f7:0f:92:
70:b3:2b:1a:8f:8a:85:f0:94:03:c7:62:cb:1e:3f:53:57:3f:
06:91:7f:03:38:d1:f9:4e:a2:2a:36:2a:cf:de:36:e3:c4:10:
0e:e0:d9:43:18:bb:50:e3:82:1a:6f:ff:85:f5:b9:d3:92:e0:
91:3b:d9:6e:e3:f3:82:d9:7a:02:b9:cb:81:50:0e:72:2c:19:
96:d7:c7:e9:d4:27:81:b1:51:46:e5:7d:6f:23:55:62:cb:e2:
e4:24:0d:57:ae:27:46:f6:0e:76:ce:fd:2f:4e:88:81:bc:59:
aa:f7:75:94:90:bf:52:86:1c:85:3c:f1:79:26:11:87:4a:6f:
2c:f7:22:95:6d:a7:5a:72:b8:1c:d6:02:c9:3a:ca:90:eb:12:
d3:03:92:a4:43:b5:d6:5f:49:9e:a3:6f:22:35:57:10:c3:3c:
98:50:b7:70:51:57:04:6d:e1:2f:77:46:38:43:3f:0c:5e:46:
76:e3:2f:42:c3:04:e0:a8:f5:bd:89:c6:d7:cb:62:5a:70:b2:
06:3e:00:60:a0:ef:82:dd:8a:cb:bf:59:d9:11:54:2f:ea:67:
d9:74:28:af:3d:8a:4a:a9:45:c8:b9:fa:8a:15:07:61:38:ab:
3a:6e:7c:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:10:03 2024 by rpki-client on console-fra.rpki-client.org