Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/WA3dtRFgPkHCt6u6PSSdXvXtTRE.cer
File: WA3dtRFgPkHCt6u6PSSdXvXtTRE.cer (raw, json)
Hash identifier: HUmpjq9FH/Is/96jGS4FE/ApZImEWde2SQu2Mc5zcbA=
Subject key identifier: 58:0D:DD:B5:11:60:3E:41:C2:B7:AB:BA:3D:24:9D:5E:F5:ED:4D:11
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0191C107C2EB1632CCED58AE6410280B3A59
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/82/fc96a4-36d1-4c3d-850b-3cd417aee9ce/1/WA3dtRFgPkHCt6u6PSSdXvXtTRE.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/82/fc96a4-36d1-4c3d-850b-3cd417aee9ce/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 05 Sep 2024 07:13:17 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 201119
IP: 185.195.144.0/22
IP: 2a0a:5bc0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 20 Sep 2024 13:50:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:c1:07:c2:eb:16:32:cc:ed:58:ae:64:10:28:0b:3a:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Sep 5 07:13:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=580dddb511603e41c2b7abba3d249d5ef5ed4d11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:9e:7c:37:4b:17:7d:a3:97:cd:fd:44:fc:fa:
9c:10:65:77:c6:48:82:7b:e6:01:fa:c5:23:88:cc:
ce:61:ad:87:b0:9c:7f:43:88:3c:fc:fd:88:70:9d:
1c:01:59:d9:13:2b:e1:a5:9f:89:6e:f9:f3:16:2d:
78:92:6f:75:61:fb:2c:13:bf:5d:b8:89:2b:7a:cf:
8e:75:bd:34:b0:e9:1c:11:4c:b2:69:b4:0d:93:bc:
10:6d:c6:91:50:aa:17:d5:67:d4:f9:17:eb:72:44:
77:08:84:fe:d3:78:e5:5f:69:1b:ce:04:07:54:70:
21:ed:c8:55:3b:58:f5:05:b3:a0:f6:ef:1e:c8:c3:
48:9b:28:1a:47:e1:b1:12:3d:9c:33:39:01:98:60:
e2:5f:c6:ea:cd:d7:78:7e:32:00:3c:93:af:74:43:
f6:3e:5c:d3:fb:04:85:b7:4f:03:7b:80:e3:c1:4f:
b1:3a:d2:67:bd:f6:0b:02:f8:da:30:9a:48:32:2b:
25:9c:47:7a:86:b9:83:d9:14:53:bb:08:55:6c:8a:
22:30:a9:2b:49:a8:ba:1f:88:3e:d0:a5:f6:7f:a2:
fc:15:59:b9:11:58:a7:bd:5f:0e:00:28:2c:63:db:
3c:65:20:84:53:0d:60:33:22:e6:19:29:e2:f4:11:
51:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:0D:DD:B5:11:60:3E:41:C2:B7:AB:BA:3D:24:9D:5E:F5:ED:4D:11
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/fc96a4-36d1-4c3d-850b-3cd417aee9ce/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/fc96a4-36d1-4c3d-850b-3cd417aee9ce/1/WA3dtRFgPkHCt6u6PSSdXvXtTRE.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.195.144.0/22
IPv6:
2a0a:5bc0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
201119
Signature Algorithm: sha256WithRSAEncryption
5c:8f:7e:c7:fa:0c:02:58:ff:01:0d:8a:8f:40:6a:30:4c:5b:
d5:7b:00:ea:ea:af:04:3c:d8:01:2a:44:53:5d:b6:8a:de:37:
36:2a:47:97:c3:b3:ea:da:57:44:a2:be:87:5e:1a:e8:eb:ea:
1d:31:d6:64:0d:87:06:7b:e3:f3:fa:4c:bc:2a:0d:d8:d9:eb:
07:8e:36:0f:ab:f9:bf:90:5a:ac:f7:8c:49:e5:d0:0a:c4:f5:
b5:c7:2f:a0:32:f4:c0:8a:38:d9:42:03:45:aa:9f:59:1c:6f:
50:2f:78:7d:38:18:37:9a:41:a6:b2:3b:63:d4:22:f7:7e:c3:
9b:78:43:ff:39:bd:e4:34:fe:be:de:98:5b:72:c5:5c:d7:a2:
81:47:5a:42:c0:33:49:f7:96:ae:89:e5:92:7e:22:ff:95:49:
d4:20:9b:19:7b:3b:08:5b:4a:d1:10:87:58:5e:a5:00:45:46:
24:c3:65:2e:80:23:14:17:aa:05:ac:bd:ae:9c:3f:91:ba:ca:
39:06:7c:d5:be:b2:9c:47:37:14:03:bc:5d:bc:9e:ec:c9:df:
54:e8:04:38:7b:00:87:1c:2d:50:05:64:28:ef:d6:ee:d4:bb:
cb:7e:cf:b5:be:93:3e:bb:78:dc:18:58:c6:aa:d4:bd:a2:b1:
68:48:0d:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 19 23:49:15 2024 by rpki-client on console-ams.rpki-client.org