Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/WtDEH96ZZRsTKQb_BgK0e1YHpb4.cer
File: WtDEH96ZZRsTKQb_BgK0e1YHpb4.cer (raw, json)
Hash identifier: p6nmT61zLr4lBjav/h+UwsGTajQ+bZQIbGdmGA6bogk=
Subject key identifier: 5A:D0:C4:1F:DE:99:65:1B:13:29:06:FF:06:02:B4:7B:56:07:A5:BE
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC793359931CC53095564912F9159AA4C
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/9d/1bc0cb-dfa4-4151-a61b-335a7e4384b1/1/WtDEH96ZZRsTKQb_BgK0e1YHpb4.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/9d/1bc0cb-dfa4-4151-a61b-335a7e4384b1/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 00:29:22 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 199919
IP: 45.153.96.0/22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:93:35:99:31:cc:53:09:55:64:91:2f:91:59:aa:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 00:29:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5ad0c41fde99651b132906ff0602b47b5607a5be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:da:8b:29:54:c2:4a:ee:ef:04:ab:94:e9:98:
ce:b4:5c:36:a7:a9:e4:db:4c:cc:7c:76:90:15:21:
b7:ca:69:30:c7:48:db:77:af:16:ec:a9:3b:fe:a4:
1c:7d:6a:e5:8d:04:52:02:ae:48:2b:fa:f1:6b:5f:
79:48:58:d0:7e:21:45:03:cc:a3:b6:23:43:da:24:
c7:0f:bb:69:45:ac:7c:aa:11:44:9d:c6:be:be:3a:
5e:e3:08:9b:c4:34:54:6d:81:53:b7:8e:33:c1:7c:
0f:a2:13:e3:79:66:1c:bb:e2:4a:90:a1:05:27:44:
7e:fc:c4:bd:8c:0f:53:0c:a9:a4:d1:92:15:3d:04:
0d:4c:d7:41:8a:aa:5c:fb:56:3f:1c:42:97:1a:58:
0f:23:1d:a3:7a:1f:33:65:fd:f0:50:20:cb:e4:96:
e6:d1:69:d0:b6:3c:b0:0d:11:d6:f7:38:4f:9e:ff:
89:0a:10:ac:36:50:8c:4e:2b:91:00:17:d2:c0:ef:
60:c4:ca:5b:56:17:87:f8:08:5e:e2:b8:87:16:d8:
77:d1:7d:de:2c:30:c1:48:d4:b6:ba:a1:b7:35:ff:
4f:5c:c2:35:86:2e:1b:00:24:2d:3a:24:f5:d6:d5:
88:24:78:8a:ae:38:ce:31:af:9d:16:1d:93:74:a7:
3c:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:D0:C4:1F:DE:99:65:1B:13:29:06:FF:06:02:B4:7B:56:07:A5:BE
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/1bc0cb-dfa4-4151-a61b-335a7e4384b1/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/1bc0cb-dfa4-4151-a61b-335a7e4384b1/1/WtDEH96ZZRsTKQb_BgK0e1YHpb4.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.153.96.0/22
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
199919
Signature Algorithm: sha256WithRSAEncryption
af:6c:0c:22:e5:27:95:34:4b:d5:7f:fa:bf:dd:98:3a:46:49:
10:df:0c:72:4a:c2:86:d5:a1:60:e9:59:61:5f:d8:a9:22:82:
57:a0:c5:a3:f3:18:b6:21:90:cb:39:c1:58:60:cf:4d:9e:cb:
33:7b:7b:38:31:54:8e:e9:b9:45:75:f6:06:8e:87:97:ca:b2:
a2:23:46:b9:69:ce:d3:69:d5:84:b2:cb:9f:be:ba:48:f7:cd:
33:82:45:f4:19:84:62:1e:f5:dd:eb:f2:02:21:5d:ec:c4:c0:
3d:bf:74:6e:58:ad:39:18:b1:79:25:c0:73:e2:f2:53:57:eb:
c6:ca:89:13:f8:2e:35:5f:52:65:3d:17:8c:f5:bd:4a:d9:20:
6b:17:40:0b:b5:71:81:46:de:58:c2:47:ef:25:07:c8:a5:98:
65:91:d7:58:2b:6e:09:62:e2:ca:89:0d:f6:b8:21:07:56:5d:
6d:00:0f:71:e7:7f:57:fb:fa:f2:49:bc:60:95:8a:0e:9e:54:
0b:f9:ac:ec:60:98:f9:e9:97:09:d1:ca:be:ef:77:3a:b9:43:
e3:9c:8b:b6:ba:94:e9:de:2f:54:c1:ad:ef:e5:f2:e1:61:89:
55:9d:de:a2:90:d9:c1:67:2a:9c:d6:9a:74:7c:cd:05:33:55:
b4:90:4c:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 07:39:26 2024 by rpki-client on console-fra.rpki-client.org