Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/XE_B5N78Rxyf23_a25iVVj2vmZw.cer
File: XE_B5N78Rxyf23_a25iVVj2vmZw.cer (raw, json)
Hash identifier: /KzHp1i4dJZEZUFzkEraJ7Lmlbcu+ZSdg7EdJUUgetU=
Subject key identifier: 5C:4F:C1:E4:DE:FC:47:1C:9F:DB:7F:DA:DB:98:95:56:3D:AF:99:9C
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC64B476096E21D5653338108B9C73B3C
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/17/9cfa5f-5d2d-4be4-a80d-7d0ee2e990f5/1/XE_B5N78Rxyf23_a25iVVj2vmZw.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/17/9cfa5f-5d2d-4be4-a80d-7d0ee2e990f5/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 18:31:11 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 44132
AS: 44352
IP: 91.199.35.0/24
IP: 91.199.93.0/24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 23:23:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4b:47:60:96:e2:1d:56:53:33:81:08:b9:c7:3b:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 18:31:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5c4fc1e4defc471c9fdb7fdadb9895563daf999c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:22:90:6a:4e:f6:d4:18:df:f9:48:a0:89:ef:
db:5a:60:e5:8a:6f:f6:15:13:37:04:d4:00:29:20:
15:44:ab:ca:ea:22:4e:01:dd:7e:bd:7d:ed:43:52:
af:98:ac:2a:60:49:01:00:f9:f3:2e:2a:4d:93:20:
65:6e:9d:be:58:de:13:95:15:53:c4:24:c0:d4:94:
b7:12:f5:91:02:7e:24:62:aa:ca:50:49:1b:c4:10:
bd:8f:5c:6e:e9:b0:34:f6:f4:90:f2:7e:c1:1a:69:
ee:c7:da:d9:28:77:6f:11:33:be:27:04:c7:c1:af:
10:c5:1c:c7:82:bb:5f:17:06:02:f1:4b:60:0c:c9:
cd:8f:2a:3b:94:72:a7:18:de:7b:83:2e:c9:03:2a:
93:bb:cb:c0:34:0c:f0:a1:bf:e8:46:7c:b0:32:d5:
78:83:33:a2:4d:af:db:a8:bf:d0:99:89:f2:c7:2b:
4d:49:23:68:c2:13:7f:d0:06:69:28:d0:b9:23:97:
80:ce:7b:8a:74:d5:9f:10:15:43:a8:24:53:9c:0a:
ec:7e:a5:a8:56:78:ed:5f:be:5d:58:a9:77:00:d8:
69:98:46:16:62:ef:1b:31:32:79:59:bf:c2:4e:52:
db:d3:75:4e:b8:2d:d5:e9:10:cc:16:1e:83:0c:8d:
43:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:4F:C1:E4:DE:FC:47:1C:9F:DB:7F:DA:DB:98:95:56:3D:AF:99:9C
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/9cfa5f-5d2d-4be4-a80d-7d0ee2e990f5/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/9cfa5f-5d2d-4be4-a80d-7d0ee2e990f5/1/XE_B5N78Rxyf23_a25iVVj2vmZw.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.199.35.0/24
91.199.93.0/24
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
44132
44352
Signature Algorithm: sha256WithRSAEncryption
41:d6:bb:3d:70:fd:37:0a:ba:11:73:f7:d3:e4:0f:cb:5f:56:
9e:cf:c4:51:04:b9:da:4a:4b:71:75:f8:c6:70:8f:1b:03:77:
b3:7b:b4:c8:cd:b5:5e:61:62:f9:c3:54:2b:2e:b5:18:c4:1b:
0b:b2:83:06:88:bc:21:a8:ac:c8:8b:a1:26:b1:9f:fe:44:58:
23:5a:89:79:17:7c:29:51:05:06:47:70:82:52:f0:c2:f1:cc:
12:5e:86:e9:35:a0:c4:51:25:6e:54:97:6b:4a:49:51:66:45:
6d:95:01:58:6c:9e:a0:b8:fb:d9:33:a6:01:7e:e0:f3:57:fe:
e8:e8:f5:35:f3:98:42:13:fb:11:2c:a2:84:f5:83:7a:e3:d9:
3e:53:78:9b:7a:78:09:16:ca:22:3f:b5:28:31:27:ad:97:46:
53:ca:c8:6d:d1:ac:76:9e:77:74:07:1e:ca:aa:56:09:eb:f0:
2a:17:dc:f6:41:af:28:8b:e0:c2:93:9f:60:e1:5b:83:ee:56:
59:7a:eb:3e:8a:60:c5:9c:3d:3e:ea:a0:62:46:5c:66:fb:6e:
62:c5:4b:be:f0:82:12:8f:c8:a9:72:90:b2:1e:e4:03:39:6e:
60:8d:39:41:71:7d:c0:76:58:70:6a:1b:80:e5:00:15:67:a6:
28:87:3f:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 26 03:21:42 2024 by rpki-client on console-ams.rpki-client.org