Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/XXg76LX3rdAI1xK0N72fmXwIT98.cer
File: XXg76LX3rdAI1xK0N72fmXwIT98.cer (raw, json)
Hash identifier: RBCEeV0MOA52xa2wK8ezzwSDS3BMWUkheEWuun/eTfo=
Subject key identifier: 5D:78:3B:E8:B5:F7:AD:D0:08:D7:12:B4:37:BD:9F:99:7C:08:4F:DF
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC4246417841B40DAEAEDD5FC74DEFF43
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/f2/6065db-93b2-41ec-b19a-688ce013671e/1/XXg76LX3rdAI1xK0N72fmXwIT98.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/f2/6065db-93b2-41ec-b19a-688ce013671e/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 08:29:28 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 207176
IP: 45.93.48.0/22
IP: 88.202.160.0/21
IP: 171.22.64.0/22
IP: 185.40.96.0/22
IP: 185.177.136.0/22
IP: 2a02:cc00::/29
IP: 2a04:8400::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:24:64:17:84:1b:40:da:ea:ed:d5:fc:74:de:ff:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 08:29:28 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5d783be8b5f7add008d712b437bd9f997c084fdf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:c6:e0:1e:f5:e0:f7:bc:74:11:80:25:5a:2f:
2a:46:ab:0e:d2:b6:7f:f1:53:6b:ec:69:4d:69:31:
78:48:af:33:67:6b:15:53:bf:22:10:47:32:5f:b0:
ad:cb:75:f6:0f:44:eb:28:95:86:cb:54:07:5b:f0:
39:18:82:8e:6e:62:fe:a3:34:1f:e1:99:6f:4d:de:
83:61:b7:ab:f6:74:eb:9d:52:48:64:74:8f:18:71:
ec:ac:de:11:35:30:15:0a:6d:01:35:76:77:2f:b5:
59:17:c8:12:aa:4b:02:13:04:9a:a5:97:78:63:d7:
fb:d2:db:76:b6:55:de:16:e2:f1:75:cd:20:14:d0:
3a:26:41:a2:3f:d3:ac:f8:9f:91:08:60:d5:39:87:
85:97:a1:a1:b6:76:bd:aa:ab:a2:dd:92:7a:e2:7f:
2f:2d:1b:0d:08:d4:91:f6:ed:cb:77:5f:b7:96:14:
bb:dd:93:b0:0e:2d:1f:24:f7:e6:30:56:ae:17:f9:
ff:84:df:bf:e7:dc:8c:af:1a:18:89:bf:9e:d0:8d:
42:22:b8:63:d2:34:b8:68:6d:da:8b:54:86:55:51:
4a:24:2a:d9:80:73:02:25:d3:90:2f:c4:bb:27:ab:
c0:48:74:0c:40:49:99:72:96:db:dd:47:66:5a:ae:
54:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:78:3B:E8:B5:F7:AD:D0:08:D7:12:B4:37:BD:9F:99:7C:08:4F:DF
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/6065db-93b2-41ec-b19a-688ce013671e/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/6065db-93b2-41ec-b19a-688ce013671e/1/XXg76LX3rdAI1xK0N72fmXwIT98.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.93.48.0/22
88.202.160.0/21
171.22.64.0/22
185.40.96.0/22
185.177.136.0/22
IPv6:
2a02:cc00::/29
2a04:8400::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
207176
Signature Algorithm: sha256WithRSAEncryption
14:a8:48:e8:fe:39:60:2a:9e:b7:fa:13:78:9c:09:c7:95:6c:
21:33:d9:7f:1b:45:60:23:f3:67:3d:56:8b:1e:3a:5f:ec:c1:
0d:cb:ec:db:3c:17:39:1b:4f:db:16:2d:6f:46:f1:0e:bb:11:
2b:8f:d8:24:6a:1f:dc:bf:d9:7e:67:1b:3a:34:2a:1a:b2:8b:
03:17:10:79:f7:ca:a0:76:62:3a:bf:41:7a:7e:76:40:4b:e7:
00:a4:28:30:fc:3f:77:2a:e0:23:a5:23:c0:4b:1f:f0:64:44:
b2:d3:01:16:93:2c:e5:04:2b:63:b2:eb:08:dc:a3:23:01:56:
85:2f:6b:c5:43:3d:45:9b:df:59:9d:aa:00:18:ee:73:d9:67:
ac:a9:d6:25:2b:da:bc:65:66:97:9c:c7:d3:88:66:f3:4d:49:
70:62:d3:47:2a:fc:b9:25:0c:f6:c2:3a:20:f0:20:79:a6:37:
26:bc:d4:98:d2:f9:5c:dd:3d:f9:56:6a:7f:ca:42:14:85:75:
eb:3a:08:c6:a3:23:e5:e7:ce:f1:d5:7b:5c:46:74:d3:fb:25:
92:34:d5:e4:c7:8c:08:a2:d4:3d:a8:45:6f:c0:d3:58:cb:cb:
19:90:06:62:f4:a6:d6:11:07:e0:d3:de:9e:67:d4:1e:28:3b:
a6:d4:85:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:51:40 2024 by rpki-client on console-ams.rpki-client.org