Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/X90ejCOU0Y6HbC1XAW5-2JgFpmc.cer
File: X90ejCOU0Y6HbC1XAW5-2JgFpmc.cer (raw, json)
Hash identifier: SKJt1EPojsq8Tj8d3ionoiBZIqwHSOIue/+0Ph0kRlo=
Subject key identifier: 5F:DD:1E:8C:23:94:D1:8E:87:6C:2D:57:01:6E:7E:D8:98:05:A6:67
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC8DF71463C64852A69321F192C1D9E0F
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/a0/a6d42c-cfd7-4ed5-9f83-5ae93ec8fb11/1/X90ejCOU0Y6HbC1XAW5-2JgFpmc.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/a0/a6d42c-cfd7-4ed5-9f83-5ae93ec8fb11/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 06:32:15 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 205295
IP: 91.196.208.0/22
IP: 185.219.24.0/22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:df:71:46:3c:64:85:2a:69:32:1f:19:2c:1d:9e:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 06:32:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5fdd1e8c2394d18e876c2d57016e7ed89805a667
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:61:96:20:3d:5b:ad:0a:ce:7a:73:6c:09:41:
e6:93:78:29:a3:38:24:9f:a2:53:6f:7a:59:d8:0a:
01:44:9d:90:8b:86:1f:ba:0a:a0:20:ff:00:fc:36:
ce:b5:34:70:8d:34:bf:96:73:1c:d7:fb:a2:9d:6c:
54:f7:99:fa:98:6a:d4:21:3c:bd:a1:93:5b:7b:18:
23:10:63:7b:9d:56:ea:8e:00:52:b9:f6:6b:75:d6:
87:8d:14:c8:4f:fd:76:13:6f:cd:5a:96:0a:95:53:
61:41:31:64:84:2b:88:9e:88:ad:79:3b:f6:2b:60:
f6:2a:b1:5f:90:d5:b1:21:e0:80:be:c3:77:c0:18:
b6:3b:e4:48:f9:87:9b:0b:fc:d1:21:13:04:8a:91:
e0:ba:fe:79:69:3a:80:ea:42:3b:d9:4b:ed:20:d6:
6c:d4:7e:49:fe:82:c2:c4:06:cd:78:a7:b8:60:cb:
9d:54:46:0c:fa:7b:fa:77:0a:5c:0f:b8:e9:f0:65:
c9:c0:9c:a8:90:89:90:39:b9:73:e9:dd:cc:5d:00:
d4:c0:64:20:35:88:f2:83:60:fb:11:db:6c:b8:d1:
4d:fa:6b:4e:4c:9c:6b:16:91:02:2a:e5:71:bd:79:
f7:40:e9:8a:a2:f3:bd:f2:17:ee:86:96:9d:c8:15:
00:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:DD:1E:8C:23:94:D1:8E:87:6C:2D:57:01:6E:7E:D8:98:05:A6:67
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/a6d42c-cfd7-4ed5-9f83-5ae93ec8fb11/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/a6d42c-cfd7-4ed5-9f83-5ae93ec8fb11/1/X90ejCOU0Y6HbC1XAW5-2JgFpmc.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.196.208.0/22
185.219.24.0/22
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
205295
Signature Algorithm: sha256WithRSAEncryption
25:01:32:ad:a5:88:bc:b7:17:bb:1c:fb:fe:a1:50:98:c8:76:
50:b4:1c:6e:db:ae:d5:59:48:f2:fb:14:21:db:42:c6:5c:22:
51:be:59:c3:79:ba:25:64:18:94:1b:26:70:d8:86:d5:f6:53:
d1:4a:8e:76:36:e3:07:6d:b9:11:f0:52:26:95:d8:a6:bf:0c:
f6:ed:b1:cf:ef:34:0c:96:2b:c9:c4:bb:99:e6:5f:87:7f:1c:
82:8a:84:48:32:8e:d7:19:db:96:9f:ad:97:9a:7d:ca:e7:b2:
18:b3:16:0e:01:c2:56:30:d8:76:8e:56:f6:02:bd:0f:a2:c3:
12:2f:71:84:e1:f6:6d:be:49:7a:ab:14:97:13:9e:9e:02:d3:
16:e6:33:e1:3e:5a:cb:15:22:a8:d4:ce:06:85:2f:26:f7:6e:
e5:a3:a8:ef:dc:05:6f:04:dc:53:c0:ec:0c:08:73:f2:2f:c3:
85:8b:5a:c8:9b:08:ec:78:4c:ab:13:ed:34:75:54:39:7d:07:
85:c3:73:d8:b7:95:d7:08:a7:7b:c3:8a:20:82:ca:be:f8:ea:
5e:8c:d2:55:e7:e9:a4:77:ab:f8:01:bf:c5:d5:a2:44:8c:71:
11:db:ac:0d:93:a8:39:82:e3:3f:89:ca:6a:14:3a:4b:d9:b7:
74:33:a2:30
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sat Nov 23 10:10:18 2024 by rpki-client on console-fra.rpki-client.org