Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/WAbaWlklEnXOsYaU4XQVNSrt1qo.cer
File: WAbaWlklEnXOsYaU4XQVNSrt1qo.cer (raw, json)
Hash identifier: FYSzRiex9zotefeXLJqogvbo+K7ZXXmglJSVY6L2fjo=
Subject key identifier: 58:06:DA:5A:59:25:12:75:CE:B1:86:94:E1:74:15:35:2A:ED:D6:AA
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC64B8B008A390AA45BDB30D6508CA756
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/b6/5df119-b1df-4ceb-bd4f-f79ccc3f4eaf/1/WAbaWlklEnXOsYaU4XQVNSrt1qo.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/b6/5df119-b1df-4ceb-bd4f-f79ccc3f4eaf/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 18:31:28 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 43332
AS: 57991
AS: 58119
AS: 203840
IP: 91.237.119.0/24
IP: 185.187.80.0/22
IP: 185.220.144.0/22
IP: 185.255.196.0/22
IP: 2a0b:9b80::/29
IP: 2a0b:f7c0::/29
IP: 2a0c:b200::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4b:8b:00:8a:39:0a:a4:5b:db:30:d6:50:8c:a7:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 18:31:28 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5806da5a59251275ceb18694e17415352aedd6aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:d4:09:37:3b:0f:cb:53:77:b5:6e:0b:97:54:
dd:e8:90:e1:c0:e1:ad:85:30:c8:07:d2:f3:26:2e:
c6:23:07:69:02:33:54:e1:68:8d:6f:40:86:5b:86:
b1:46:0d:62:4f:1f:ec:1e:3d:06:ef:8e:0c:3e:c4:
82:be:b7:c1:9a:50:dd:7e:d2:45:55:80:ab:2b:3c:
4f:5a:ae:ac:d6:35:f4:38:f3:9f:7b:84:6c:e7:4a:
a3:8c:a3:a5:ae:b9:78:7f:63:4f:53:8a:8b:77:b5:
9e:1d:5e:84:2d:87:40:6b:8e:b0:0c:25:4e:20:d7:
ad:ee:3f:f5:b5:2c:b0:8d:26:08:d5:97:c1:90:c5:
c6:9e:cb:bc:49:b6:11:e8:39:6b:b5:b5:dd:b4:3b:
f7:61:dc:78:39:3f:36:30:3b:41:e2:f3:b1:69:f5:
36:2a:70:cd:d9:e8:df:94:3e:d2:2a:58:6a:d0:c5:
05:39:70:8d:e0:b8:03:00:6a:8e:a4:be:20:bf:f1:
1b:da:35:03:81:95:10:21:bb:3c:2e:b0:40:0f:b0:
20:3b:83:25:34:bb:01:e3:a5:a5:16:0a:c5:96:9c:
14:10:dd:a7:62:62:07:b5:51:3b:43:0d:79:9c:6f:
82:c5:a4:c9:21:33:51:90:8c:c7:3f:97:08:4e:6b:
6c:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:06:DA:5A:59:25:12:75:CE:B1:86:94:E1:74:15:35:2A:ED:D6:AA
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/5df119-b1df-4ceb-bd4f-f79ccc3f4eaf/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/5df119-b1df-4ceb-bd4f-f79ccc3f4eaf/1/WAbaWlklEnXOsYaU4XQVNSrt1qo.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.237.119.0/24
185.187.80.0/22
185.220.144.0/22
185.255.196.0/22
IPv6:
2a0b:9b80::/29
2a0b:f7c0::/29
2a0c:b200::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
43332
57991
58119
203840
Signature Algorithm: sha256WithRSAEncryption
a9:f4:72:41:05:21:ff:96:cb:db:da:97:ff:58:c9:66:f1:fa:
d0:5a:83:12:21:0c:86:ab:f3:ca:61:da:15:c8:40:cf:4e:b6:
a5:2a:b3:5b:2c:85:18:8f:ca:fd:83:ae:74:3b:28:d4:46:e5:
6a:83:36:f5:aa:a6:40:d8:8c:1e:ea:61:3d:76:24:ea:df:c7:
85:12:1b:9a:34:b2:db:6d:b1:dc:86:66:e8:7d:5e:f4:62:60:
01:2f:a0:b5:60:0f:4b:8e:b9:09:e1:8f:6b:92:71:c6:a7:c5:
ec:1b:f0:60:5c:41:d7:a8:88:69:7d:dc:4a:c5:b3:a4:e2:0e:
3e:c5:9e:de:ab:56:4c:a2:f2:f9:52:75:f7:7c:63:ee:87:cd:
b2:13:89:5d:57:6d:7b:d9:c0:6a:60:83:f3:3f:82:ba:0e:05:
a7:1e:07:77:7a:72:eb:ab:64:d4:85:20:7f:34:76:77:04:2f:
d9:5b:78:a0:4d:f7:98:10:84:0d:18:82:c5:8a:d8:3c:e2:09:
fe:5c:ff:4d:15:9e:94:9a:e2:51:51:8a:d7:66:14:77:dd:22:
54:03:33:57:7e:f6:d4:29:e0:94:96:2a:00:c9:34:6a:ce:cf:
8c:a6:f0:fb:ab:2c:7a:f7:0b:66:63:aa:2f:b4:ac:0b:c3:3f:
55:6a:ab:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 13:58:09 2024 by rpki-client on console-fra.rpki-client.org