Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/WROOPbd2QL6t8dpbFRlLk4ShRE4.cer
File: WROOPbd2QL6t8dpbFRlLk4ShRE4.cer (raw, json)
Hash identifier: 6y85y1/qJNEhauGue8fffHu+WqHRZ6WSMjQqodnrtBo=
Subject key identifier: 59:13:8E:3D:B7:76:40:BE:AD:F1:DA:5B:15:19:4B:93:84:A1:44:4E
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC9BA60B5248062FA56A524AA2B6F81B8
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/d9/f4d345-5ff3-4b0a-8dd9-7a4e3340a491/1/WROOPbd2QL6t8dpbFRlLk4ShRE4.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/d9/f4d345-5ff3-4b0a-8dd9-7a4e3340a491/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 10:31:24 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 41878
IP: 217.29.224.0/20
IP: 2a0d:79c0::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:ba:60:b5:24:80:62:fa:56:a5:24:aa:2b:6f:81:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 10:31:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=59138e3db77640beadf1da5b15194b9384a1444e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:29:1a:5f:60:22:bf:bd:89:b6:3f:8f:be:7a:
92:d8:d0:b7:75:1f:a8:e4:0c:d4:98:8e:57:76:7d:
62:56:bf:4f:02:a8:b7:2b:aa:71:c0:3c:a3:81:2a:
6c:f3:e9:5d:ae:59:5a:50:cd:a6:10:b3:94:3b:d8:
d8:dd:48:07:f1:2a:2a:56:5e:d5:6f:02:9d:73:b9:
95:5e:19:ca:0c:0e:22:44:b4:ba:2a:8b:fa:cb:33:
ae:87:a9:a9:6d:20:67:5c:54:85:74:84:d8:66:69:
4f:c4:63:0a:86:9a:26:70:65:10:5c:da:eb:e1:95:
6c:d7:f2:47:07:40:40:b3:d1:71:ba:25:48:21:a3:
23:a3:67:7e:df:a0:4b:b7:9d:5e:b5:9d:9e:0d:b0:
7c:cc:2e:af:ec:26:70:21:ad:f1:e9:94:c1:83:58:
ce:16:95:25:e9:18:fb:fc:f7:a6:9e:32:f3:0e:b6:
56:1e:bd:26:dd:6d:97:92:f5:e6:ac:9b:60:5a:21:
c9:3c:66:45:bf:02:87:d0:c8:06:6e:23:9f:cf:a4:
c0:60:12:e7:ca:06:b3:dc:cc:38:e2:62:e3:74:b2:
4c:b8:ee:9c:3c:22:a1:7b:8a:3b:19:be:8a:39:67:
54:f4:88:8f:de:d0:02:2f:07:a6:e5:6d:9f:dc:66:
08:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:13:8E:3D:B7:76:40:BE:AD:F1:DA:5B:15:19:4B:93:84:A1:44:4E
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/f4d345-5ff3-4b0a-8dd9-7a4e3340a491/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/f4d345-5ff3-4b0a-8dd9-7a4e3340a491/1/WROOPbd2QL6t8dpbFRlLk4ShRE4.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.29.224.0/20
IPv6:
2a0d:79c0::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
41878
Signature Algorithm: sha256WithRSAEncryption
62:ef:2a:29:39:bc:d2:e8:b9:a5:3a:14:06:19:8e:a9:5a:ad:
d3:92:69:e6:35:f4:7a:5c:0c:ce:7c:63:18:01:e0:5d:07:dd:
c2:62:38:7a:d8:48:74:30:43:32:69:46:3a:ba:1d:fe:fd:5f:
a5:65:ca:4f:28:f8:94:8b:4f:d7:82:9e:d6:df:e7:95:cf:2b:
49:da:8d:e6:cb:ee:ae:1d:ef:6c:da:c0:c2:dc:36:fd:8a:cc:
bc:aa:96:8a:6c:cb:2e:43:16:5a:c5:d8:c5:34:21:c7:39:7b:
b5:14:bc:17:b0:b7:81:5d:53:f3:c2:ff:c5:6e:25:f5:9d:63:
59:a9:c6:d0:13:82:53:cb:c6:38:8c:20:0b:72:bb:d5:dc:dd:
6e:2b:a8:79:b9:22:1b:3e:b7:14:aa:8d:e5:8b:24:36:58:9e:
f2:8a:ae:55:c3:9d:05:6c:1b:44:2a:e1:89:03:78:c6:22:cf:
ae:02:3e:97:ff:a4:a7:bd:c7:93:2d:58:db:fe:61:9d:e3:a5:
8c:83:29:6f:84:28:58:b5:51:d5:36:e5:a3:34:83:17:bb:f1:
b6:73:bb:d9:56:42:ce:47:48:e8:39:b4:a8:62:99:e7:87:23:
f0:e3:d0:84:f7:47:b5:34:2f:c9:af:df:3b:c6:50:b5:6f:70:
d0:e5:1d:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 10:19:26 2024 by rpki-client on console-fra.rpki-client.org