Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/WLuO46dH7YtXhlfN1HN1hvX9uTE.cer
File: WLuO46dH7YtXhlfN1HN1hvX9uTE.cer (raw, json)
Hash identifier: AcNSRO93knzsfhL0QOuQei8P9xvn/E10Kh4BygXE0mM=
Subject key identifier: 58:BB:8E:E3:A7:47:ED:8B:57:86:57:CD:D4:73:75:86:F5:FD:B9:31
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC5DD0A4730397C2014975EF1A45363DE
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/f2/03a70b-3bc6-4339-9e49-a83f914035b3/1/WLuO46dH7YtXhlfN1HN1hvX9uTE.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/f2/03a70b-3bc6-4339-9e49-a83f914035b3/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 16:30:46 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 8356
AS: 8676
AS: 47578
AS: 56739
AS: 209035
IP: 31.7.8.0/21
IP: 185.109.124.0/22
IP: 185.109.136.0/22
IP: 217.65.160.0/20
IP: 217.198.48.0/20
IP: 2001:768::/32
IP: 2001:1420::/29
IP: 2a03:9f00::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:dd:0a:47:30:39:7c:20:14:97:5e:f1:a4:53:63:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 16:30:46 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=58bb8ee3a747ed8b578657cdd4737586f5fdb931
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:b9:aa:e3:51:73:91:ff:dc:f4:6e:23:0a:7f:
6b:9b:cc:b7:3d:2c:81:6d:f0:f0:37:48:ca:eb:11:
b4:9a:57:94:ee:73:1c:9f:7e:24:4c:f2:b9:22:d3:
2f:04:1d:47:02:f5:88:7d:ee:29:d2:2c:25:e7:56:
95:55:a2:64:40:2f:1d:fb:a9:77:11:20:9f:4f:b2:
dc:6d:f0:b7:fe:3e:8e:93:c8:36:2f:8a:ef:e0:25:
53:81:45:96:89:99:3f:5c:62:ea:a5:57:2a:06:51:
31:02:99:e0:66:0b:b9:ad:8d:fc:29:97:f5:74:0f:
b2:9d:85:48:4d:0c:c1:bb:83:89:1d:67:b8:e0:05:
48:c5:60:e2:e8:ea:d8:8d:ba:29:c4:12:9b:09:54:
4a:e4:75:70:1a:83:3e:e2:0d:a8:62:be:90:61:f5:
25:68:5e:3d:a2:b4:06:6c:42:69:2c:e6:af:71:6e:
4d:3f:10:d5:6f:ab:35:8a:ef:42:4a:c1:be:51:96:
f0:57:2a:3c:1b:51:35:79:76:5a:b4:21:70:66:a1:
15:8b:4c:8d:b7:01:3d:23:d3:01:c6:7a:59:99:4b:
c5:bf:79:ef:44:03:2d:73:cd:b5:03:ce:79:54:12:
7d:8f:dc:ee:aa:2b:e1:c0:c5:65:f4:e8:58:e3:1a:
23:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:BB:8E:E3:A7:47:ED:8B:57:86:57:CD:D4:73:75:86:F5:FD:B9:31
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/03a70b-3bc6-4339-9e49-a83f914035b3/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/03a70b-3bc6-4339-9e49-a83f914035b3/1/WLuO46dH7YtXhlfN1HN1hvX9uTE.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.7.8.0/21
185.109.124.0/22
185.109.136.0/22
217.65.160.0/20
217.198.48.0/20
IPv6:
2001:768::/32
2001:1420::/29
2a03:9f00::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
8356
8676
47578
56739
209035
Signature Algorithm: sha256WithRSAEncryption
90:b0:ff:24:c6:35:7c:eb:0a:86:5a:c9:e4:a1:d1:bc:c1:02:
59:0a:ec:82:ee:c9:83:f7:e6:c7:0b:49:ee:b8:d8:27:76:91:
ba:d8:cd:75:8d:d9:83:59:10:8b:b8:04:c2:e4:85:14:99:ab:
b9:48:07:82:41:3a:a0:e3:bb:d7:75:5b:6d:8f:11:65:cc:23:
c3:ee:32:c7:a1:ac:9a:7e:bc:72:d8:e6:60:0b:2b:65:da:14:
0f:03:81:46:9e:24:07:92:e9:f2:d4:c1:11:e3:e6:68:9a:99:
15:48:64:d7:b9:93:84:27:44:aa:c5:3b:3e:cf:4a:58:bc:3f:
c2:09:f6:06:69:7e:0f:04:f6:0f:f5:ea:cd:0e:4d:18:ae:28:
43:22:e7:6b:90:7b:1a:b8:5f:9c:cd:6e:f2:08:b8:1e:2d:8f:
24:f2:6f:b2:5e:7d:ff:1f:92:b7:33:14:9f:d0:a5:cc:cf:74:
47:17:e4:0f:ad:d0:51:ec:a1:e5:71:bb:9e:6d:2a:61:51:2a:
57:75:1b:50:46:39:50:ff:d6:c3:4e:d0:72:11:c4:f9:1f:13:
4f:1b:72:a3:ac:88:a9:d8:46:bc:33:c2:15:c7:7c:f0:83:a5:
9c:a2:b9:32:7b:af:1a:13:20:98:03:65:a1:3e:c4:cf:e0:0d:
b4:6e:87:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 10:19:21 2024 by rpki-client on console-fra.rpki-client.org