Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/XICE2xnxE9gbZEg5P60cEyxYT80.cer
File: XICE2xnxE9gbZEg5P60cEyxYT80.cer (raw, json)
Hash identifier: rfrbMXxWxRH4wbFHZbBpSgWTH2F49uLnfqnxkixY5JQ=
Subject key identifier: 5C:80:84:DB:19:F1:13:D8:1B:64:48:39:3F:AD:1C:13:2C:58:4F:CD
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC2DAE76D0C532A1A04563E18E8BAA81E
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/53/67c7e8-c075-40a1-a3ff-819062a12f3d/1/XICE2xnxE9gbZEg5P60cEyxYT80.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/53/67c7e8-c075-40a1-a3ff-819062a12f3d/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 02:29:35 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 210583
IP: 176.116.7.0/24
IP: 2a11:e040::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:da:e7:6d:0c:53:2a:1a:04:56:3e:18:e8:ba:a8:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 02:29:35 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5c8084db19f113d81b6448393fad1c132c584fcd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:76:2c:62:7a:ac:76:59:82:eb:e4:18:40:e1:
5d:0f:49:38:51:af:81:10:f2:df:70:22:14:d7:99:
a7:18:9d:c6:8a:74:5e:fb:30:c4:bc:43:84:79:94:
2c:89:e8:29:7a:af:7f:79:a9:cf:69:3a:76:61:72:
d3:85:9c:d2:86:bf:53:9f:fa:04:4e:4e:13:01:e5:
1a:17:7e:a0:b9:c9:90:e5:dc:b7:b9:d2:b1:e5:8c:
5e:25:49:93:e2:c4:c3:95:68:4a:e4:61:cc:09:31:
12:6e:a0:26:fb:1c:45:73:fc:44:0a:f0:23:71:83:
82:8c:5f:b0:12:2a:16:0b:35:44:1b:b1:c6:48:5b:
44:c7:b8:0b:5c:26:09:4c:7e:20:88:ce:15:54:43:
5a:07:0c:fa:04:1d:b6:a3:8a:75:e4:6d:77:4c:e9:
0b:5e:21:38:ab:98:6e:7a:f1:83:ba:e4:68:33:7f:
30:0c:6a:a2:b8:92:f5:cf:8e:96:a9:52:cc:c0:69:
fb:2f:05:fb:ee:e5:3a:59:10:8d:92:46:cd:14:1c:
72:03:0d:be:81:e6:77:62:e7:30:cf:0a:1a:67:13:
cc:f6:56:bc:12:4e:48:4d:16:1e:79:66:4b:81:52:
fd:fa:05:62:ea:ac:b6:04:d7:d7:a6:d7:d2:cc:91:
67:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:80:84:DB:19:F1:13:D8:1B:64:48:39:3F:AD:1C:13:2C:58:4F:CD
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/67c7e8-c075-40a1-a3ff-819062a12f3d/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/67c7e8-c075-40a1-a3ff-819062a12f3d/1/XICE2xnxE9gbZEg5P60cEyxYT80.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.116.7.0/24
IPv6:
2a11:e040::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
210583
Signature Algorithm: sha256WithRSAEncryption
4d:9e:8f:c3:12:11:9e:d1:80:a1:21:98:3b:cf:72:7e:86:4f:
55:17:5f:39:7a:12:35:a3:ef:55:9f:4d:d4:d3:29:ad:46:8c:
24:0d:3d:02:a5:41:37:c9:86:82:88:2d:e1:a1:9b:cb:bc:b5:
af:b6:fc:d6:3f:24:4a:f3:92:72:db:2a:bb:1e:f6:83:9e:33:
82:14:1b:55:80:c5:25:e8:d3:bf:16:df:25:49:48:fc:a5:f0:
2b:84:0b:78:aa:0b:e5:fc:e5:9b:c9:f9:ce:ce:6c:a8:be:8a:
96:9d:b6:3e:55:c4:0a:e5:67:7e:0e:1a:96:e3:3a:e1:a9:77:
c2:f9:e3:ac:ad:ad:c5:ab:0c:68:cf:26:97:e6:6e:75:5c:97:
3d:1b:27:e6:27:d2:2a:34:ca:bb:88:6b:19:d7:48:82:e3:83:
3b:6b:b4:85:b6:df:cc:89:0f:8b:4e:b0:7b:81:62:79:64:0a:
f7:3a:b3:09:98:1f:0a:0f:44:67:71:c6:19:a7:f9:b5:3d:2e:
e1:79:34:56:f6:c8:ea:50:7a:e8:5c:9f:1d:6c:1c:f2:60:ed:
1c:39:3f:28:a6:4b:86:7e:c2:a8:00:d5:6e:94:40:85:18:0b:
35:2f:8e:6a:2e:13:d0:f7:09:ac:77:90:31:3d:bf:5d:35:42:
cd:07:7f:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 03:04:19 2024 by rpki-client on console-fra.rpki-client.org