Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/XinALSYfkT6lv4PCvHwzQUpCvMo.cer
File: XinALSYfkT6lv4PCvHwzQUpCvMo.cer (raw, json)
Hash identifier: mCnImhHr7zkYlDsW+SdeTqrb/xGf+NCdJ91Na4MJHjY=
Subject key identifier: 5E:29:C0:2D:26:1F:91:3E:A5:BF:83:C2:BC:7C:33:41:4A:42:BC:CA
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC4931C3AC6A2B8DF043EC42A038D8FB0
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/b5/ac1253-0459-46cf-b1b9-9ac1a7e4c406/1/XinALSYfkT6lv4PCvHwzQUpCvMo.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/b5/ac1253-0459-46cf-b1b9-9ac1a7e4c406/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 10:30:24 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 56571
IP: 176.10.64.0/20
IP: 185.32.68.0/24
IP: 185.191.40.0/22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:93:1c:3a:c6:a2:b8:df:04:3e:c4:2a:03:8d:8f:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 10:30:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5e29c02d261f913ea5bf83c2bc7c33414a42bcca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:cc:22:1a:69:09:d2:b8:a5:9c:4f:0a:9b:52:
7f:19:44:8c:e3:77:b5:83:37:38:73:c0:74:9a:2c:
00:66:71:aa:a2:4a:62:e4:4e:6d:f7:4c:42:b9:6b:
42:bd:1f:0e:78:1c:28:75:da:83:7a:81:ea:81:c4:
c3:d5:3e:bc:14:02:16:96:17:25:36:7f:94:09:84:
70:ef:bc:1f:d8:5a:65:2f:64:d0:08:1e:a6:f8:c6:
74:2d:13:20:35:10:e3:99:4f:e3:5d:96:33:58:6b:
b4:37:8f:26:97:50:4d:98:aa:87:1a:00:95:7f:82:
d4:90:49:84:63:65:21:34:df:88:d0:74:58:70:ba:
8c:19:6f:92:d4:f5:90:00:9c:64:4a:56:32:45:0c:
f1:d1:50:d8:c8:82:bf:71:39:d2:62:35:f7:d7:aa:
ee:7b:b0:fe:17:aa:1d:9a:4e:9b:11:da:31:42:71:
6c:9a:88:52:24:b6:62:c1:f6:33:db:48:02:69:6f:
46:95:45:fd:cb:8c:a9:ee:39:bf:18:71:32:e8:e6:
6e:be:37:57:8f:e6:3b:ea:e1:0b:ce:2f:0c:48:4b:
e7:93:2b:ca:be:fc:46:98:1e:83:79:36:26:5c:90:
3c:c5:3d:40:fd:57:63:97:b5:71:02:cf:26:f1:da:
21:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:29:C0:2D:26:1F:91:3E:A5:BF:83:C2:BC:7C:33:41:4A:42:BC:CA
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/ac1253-0459-46cf-b1b9-9ac1a7e4c406/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/ac1253-0459-46cf-b1b9-9ac1a7e4c406/1/XinALSYfkT6lv4PCvHwzQUpCvMo.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.10.64.0/20
185.32.68.0/24
185.191.40.0/22
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
56571
Signature Algorithm: sha256WithRSAEncryption
8b:82:52:19:91:e0:fd:b6:f4:92:7d:42:d3:7b:07:03:ff:f0:
c7:a3:d7:6a:cc:ed:4a:f3:84:5f:7d:5a:c5:f5:5b:56:ce:6b:
78:15:79:09:08:92:04:15:02:23:be:31:ef:50:09:66:8d:f2:
b5:43:96:ba:d9:ea:d2:e0:1a:86:40:15:26:87:fe:52:ad:5a:
f8:9b:1b:17:ba:9c:96:3b:16:89:db:13:97:11:7d:6c:b5:7b:
4a:a8:59:83:00:9c:ba:cd:e9:3d:4e:7f:a9:50:97:18:0d:76:
d1:85:7a:b1:21:33:95:7e:6a:3d:62:6e:06:ab:ec:e8:48:e6:
3c:ee:9e:4c:3f:e7:44:2d:a6:76:af:03:6e:e5:9a:82:a1:3a:
40:f3:28:28:b1:0d:2d:75:b1:75:e7:29:7a:e4:cb:e5:f5:3b:
c1:9c:cd:fb:90:8c:8b:8a:58:50:c5:53:27:c7:1c:7c:71:ea:
ee:66:ac:45:75:48:96:70:a5:fc:75:1c:5c:ef:14:10:26:04:
d8:b1:7f:c9:54:95:ac:46:52:86:76:10:94:cb:41:ce:3f:63:
ce:8e:60:d8:b2:b6:67:da:a6:75:c5:f3:61:e6:5e:9e:82:94:
a5:16:e1:d7:20:33:97:86:f0:58:c6:b5:f7:00:44:24:93:2b:
43:5b:83:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 09:10:40 2024 by rpki-client on console-ams.rpki-client.org