Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/WpTEvE0lY-JS6_zA-8KsGZzOYIo.cer
File: WpTEvE0lY-JS6_zA-8KsGZzOYIo.cer (raw, json)
Hash identifier: gtahqC4TTWyxIQV9BZvo2yomBhu9xdAoqmum8YteyoU=
Subject key identifier: 5A:94:C4:BC:4D:25:63:E2:52:EB:FC:C0:FB:C2:AC:19:9C:CE:60:8A
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC94BE4C695FA12E4B59513243CB1EF94
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/04/c4ccc3-65d6-485d-9be0-a7a5f478dd72/1/WpTEvE0lY-JS6_zA-8KsGZzOYIo.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/04/c4ccc3-65d6-485d-9be0-a7a5f478dd72/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 08:30:43 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 204918
IP: 185.171.92.0/22
IP: 2a13:20c0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4b:e4:c6:95:fa:12:e4:b5:95:13:24:3c:b1:ef:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 08:30:43 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5a94c4bc4d2563e252ebfcc0fbc2ac199cce608a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:f8:a6:c1:38:3e:a7:91:9e:6d:67:a7:34:8e:
2b:ed:ad:ee:ed:f5:34:a1:f6:1e:b9:1b:97:60:b3:
f4:74:fe:df:e9:48:b6:03:23:cb:0d:ec:7a:ad:b2:
ad:8f:05:75:5d:d3:bf:6b:d8:b4:62:99:5f:d1:c5:
90:98:e7:f5:0a:29:06:ed:fa:d2:70:1d:02:33:23:
f5:15:16:c8:a2:c7:01:f4:54:46:92:c1:52:96:30:
76:97:24:3a:bf:cd:7a:9d:11:5a:af:1f:df:20:9e:
82:c4:06:7d:ff:74:33:3e:a2:59:c0:32:03:01:19:
4b:23:bb:e3:59:37:ab:e0:d3:85:27:93:47:5d:a2:
06:2f:8d:ef:3b:16:d2:bc:6b:7a:cf:c9:89:74:e5:
82:0a:af:e0:1c:31:6b:e4:3a:bc:4d:64:0b:e4:ea:
1f:1f:f1:28:57:e5:08:f6:b9:11:00:4b:df:51:97:
36:cf:63:92:92:46:68:ca:58:7e:4a:8a:bb:63:cc:
03:9e:1f:1f:90:89:04:39:ef:6c:0a:7f:0d:26:f1:
d6:c2:a6:0c:f7:63:77:20:1a:db:ab:7d:5d:bf:d8:
db:b7:0c:7a:ed:8b:de:25:44:ec:42:cd:f3:87:93:
c5:6f:b3:78:b8:82:a6:96:eb:89:05:e9:88:41:aa:
7e:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:94:C4:BC:4D:25:63:E2:52:EB:FC:C0:FB:C2:AC:19:9C:CE:60:8A
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/c4ccc3-65d6-485d-9be0-a7a5f478dd72/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/c4ccc3-65d6-485d-9be0-a7a5f478dd72/1/WpTEvE0lY-JS6_zA-8KsGZzOYIo.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.171.92.0/22
IPv6:
2a13:20c0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
204918
Signature Algorithm: sha256WithRSAEncryption
a5:0d:a6:e9:f6:e5:bd:af:7c:e6:d3:64:87:cd:3a:a5:5b:54:
fb:37:83:33:62:89:63:11:64:0d:57:9a:fd:7c:c3:d1:fe:08:
1b:08:b8:46:ff:95:1d:a5:af:b2:36:4f:09:02:79:37:33:2f:
08:06:7d:1d:0b:5a:8a:61:57:51:7e:c6:c7:b2:95:58:ce:7c:
18:dd:e9:74:05:8e:b3:e8:51:bb:b5:31:c0:87:07:ff:84:b2:
b4:2e:4f:28:9f:17:c0:88:6b:cb:53:75:4b:ee:8e:76:5a:95:
52:68:d3:99:32:df:fb:71:a9:6b:e1:c3:9c:cc:f9:c3:d5:cf:
d0:89:85:ee:88:8f:be:a5:77:76:a3:e5:d3:8e:e4:8d:a4:6b:
ee:c5:0c:2e:94:bc:2c:b5:41:19:fe:cb:20:da:e8:61:79:e1:
81:f4:a0:32:22:e7:1e:a3:b0:5b:b8:f2:2b:74:62:ab:7f:b2:
d6:50:42:4b:af:17:06:bd:34:7a:22:2a:31:dd:ed:9d:e2:83:
6d:1c:0c:2f:10:6c:c1:63:7d:d8:a1:48:84:2f:e7:92:e9:eb:
92:a3:41:93:70:28:d2:ff:b0:3a:54:7f:86:ae:1a:61:32:33:
04:fe:84:fd:69:d5:51:98:28:dc:08:17:e9:dd:6b:a7:23:e1:
60:de:12:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 03:03:55 2024 by rpki-client on console-fra.rpki-client.org