Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/WsswiUYeH1-JhLd0LIm7aPG4jBI.cer
File: WsswiUYeH1-JhLd0LIm7aPG4jBI.cer (raw, json)
Hash identifier: SqPKtNQYpPNtEPjG4L0nxY0Y5uJn8xW8TOXEH9ICjBc=
Subject key identifier: 5A:CB:30:89:46:1E:1F:5F:89:84:B7:74:2C:89:BB:68:F1:B8:8C:12
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CCA9920B4A0A32C8AACD6818E1BEAFF8A
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/03/2053c4-bc4a-416a-8970-ac536b2ab4f8/1/WsswiUYeH1-JhLd0LIm7aPG4jBI.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/03/2053c4-bc4a-416a-8970-ac536b2ab4f8/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 14:34:42 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 41585
IP: 91.136.128.0/17
IP: 91.194.254.0/23
IP: 91.195.50.0/23
IP: 194.9.124.0 -- 194.9.126.255
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:99:20:b4:a0:a3:2c:8a:ac:d6:81:8e:1b:ea:ff:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 14:34:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5acb3089461e1f5f8984b7742c89bb68f1b88c12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:fd:54:77:44:e3:ff:73:9c:76:b4:89:67:2a:
de:da:8a:29:c3:45:4f:af:38:73:c9:ca:17:1a:08:
0c:01:e8:b2:5b:cf:0e:59:b6:36:72:d4:4a:c4:08:
8e:3f:cd:00:36:e6:eb:30:af:6c:00:2a:9b:f9:6e:
e0:55:19:96:ad:2a:d9:88:8e:c3:e1:82:73:35:b2:
44:85:10:98:00:0f:97:83:a4:22:90:8b:7f:b1:1d:
6b:4f:24:85:f0:57:a8:bc:88:33:74:70:af:29:1e:
c9:6d:3f:a0:48:61:d9:2c:db:84:39:35:d3:8e:72:
d0:ae:25:2c:bc:c0:43:dd:0a:4b:9e:e5:e6:8f:f1:
51:d6:b3:c7:ed:de:08:b0:f0:ab:ad:2f:83:4c:fe:
4e:d3:93:e5:3d:4e:ea:cb:0d:3e:d1:d4:8d:1d:56:
09:34:66:84:bb:60:9b:c1:da:50:f0:8f:4f:9f:57:
85:61:ce:cc:95:de:0b:af:20:1d:0f:30:3f:09:8c:
19:73:3d:4d:55:ef:db:1b:84:1f:02:11:b3:5b:08:
70:36:e6:10:4e:03:e1:e8:6c:ff:77:54:cc:90:fe:
07:09:61:ac:f1:22:d9:a6:da:fd:8c:94:dc:04:a3:
5e:17:bb:c0:3b:d5:cd:de:51:de:f3:6e:b5:bb:b1:
27:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:CB:30:89:46:1E:1F:5F:89:84:B7:74:2C:89:BB:68:F1:B8:8C:12
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/2053c4-bc4a-416a-8970-ac536b2ab4f8/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/2053c4-bc4a-416a-8970-ac536b2ab4f8/1/WsswiUYeH1-JhLd0LIm7aPG4jBI.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.136.128.0/17
91.194.254.0/23
91.195.50.0/23
194.9.124.0-194.9.126.255
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
41585
Signature Algorithm: sha256WithRSAEncryption
0d:72:22:f3:7f:82:b2:17:65:b7:ea:b0:0e:7d:8c:e2:6c:41:
74:03:c9:a9:9a:47:57:a2:51:2f:60:59:46:43:5d:c6:b3:3a:
ac:a8:17:db:13:09:c8:bb:73:bd:6f:d0:6c:61:9c:e4:f8:38:
c7:85:1b:16:2c:e3:c2:08:8d:bb:d9:88:e5:6c:55:cf:cf:8e:
bc:3b:b8:57:6c:d1:98:ab:48:e3:b0:9f:a5:ec:91:3c:87:f0:
73:f6:54:bc:bc:08:97:e5:f4:64:36:24:48:b9:cb:c6:cc:68:
e4:11:0e:97:d9:c4:4f:16:b1:36:49:be:1f:6d:3e:5e:e3:72:
fc:be:73:60:4e:1e:3c:1f:a2:e8:56:7a:39:8b:7f:03:f5:51:
52:3a:d9:5c:31:d8:e6:b8:de:dc:70:7f:f7:8c:56:02:fc:36:
b2:74:da:13:46:80:fc:5e:9c:a3:7f:c6:d2:fa:41:bc:dd:d1:
b6:56:bc:91:b7:7e:a3:b4:2f:6f:5e:f7:c3:1e:97:14:06:17:
1d:05:6d:f9:45:7a:47:f6:a2:9f:9e:ce:c7:d7:e4:c6:16:d1:
d6:6a:9a:03:38:9d:b3:89:42:34:a9:b8:4a:b1:7b:fe:67:c9:
58:64:72:ac:fd:94:44:f8:86:34:ff:51:fe:7e:98:ad:6d:47:
1e:bf:f3:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 03:03:58 2024 by rpki-client on console-fra.rpki-client.org