Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/XsBEtLlvIfqahGRb1eOp4ZcjCC0.cer
File: XsBEtLlvIfqahGRb1eOp4ZcjCC0.cer (raw, json)
Hash identifier: hHKtXQOQYkOknGgchDPV4HqUQLOaLxtsIrK+no92wn4=
Subject key identifier: 5E:C0:44:B4:B9:6F:21:FA:9A:84:64:5B:D5:E3:A9:E1:97:23:08:2D
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC42539911A7D0291DCA29F4FBA9AE08C
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/2d/77b86f-7a94-4847-903b-61e4ebf671ab/1/XsBEtLlvIfqahGRb1eOp4ZcjCC0.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/2d/77b86f-7a94-4847-903b-61e4ebf671ab/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 08:30:23 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 212748
IP: 83.242.104.0/23
IP: 2001:678:6d0::/48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:25:39:91:1a:7d:02:91:dc:a2:9f:4f:ba:9a:e0:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 08:30:23 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5ec044b4b96f21fa9a84645bd5e3a9e19723082d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:ad:92:09:b1:dc:76:5e:f8:75:ec:8e:3f:50:
48:be:15:8f:78:5b:29:89:b5:b5:84:22:58:68:b4:
d9:13:79:c8:af:68:28:e2:58:de:23:3f:30:80:9a:
ed:6d:d8:a8:8a:78:af:2a:37:21:1f:81:2c:0e:2f:
f9:5a:f5:54:47:24:40:d8:12:ce:da:f4:dd:f4:f9:
99:e4:25:99:63:ce:e4:09:a0:22:6a:1a:76:72:98:
21:f5:f3:88:41:44:03:6c:b6:56:fe:be:c2:e7:a6:
5c:4a:54:08:dd:44:33:e5:7d:aa:1c:9f:76:af:ba:
6a:f3:06:22:f4:e6:b5:e8:50:db:fe:99:22:47:6f:
7f:54:15:29:bb:19:6b:52:36:9f:cb:87:f6:08:a7:
97:31:e8:ce:5e:ce:c8:a9:cb:ce:69:08:86:1b:2e:
b8:65:4b:54:34:83:1a:f4:de:bd:f9:59:01:59:7a:
e2:a5:ce:ee:93:ca:f8:32:b8:63:61:cf:cf:fa:56:
bc:99:b1:2d:fc:e9:63:06:34:87:be:25:88:de:79:
51:56:27:27:90:d2:29:b7:7c:14:a5:8a:7c:dc:a5:
be:a2:8b:a9:92:e1:eb:9b:c0:c3:1f:25:d6:d8:5e:
c0:ec:28:eb:70:da:ef:d1:06:e0:d4:34:ad:62:e9:
e7:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:C0:44:B4:B9:6F:21:FA:9A:84:64:5B:D5:E3:A9:E1:97:23:08:2D
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/77b86f-7a94-4847-903b-61e4ebf671ab/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/77b86f-7a94-4847-903b-61e4ebf671ab/1/XsBEtLlvIfqahGRb1eOp4ZcjCC0.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.242.104.0/23
IPv6:
2001:678:6d0::/48
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
212748
Signature Algorithm: sha256WithRSAEncryption
89:f7:3a:45:36:94:82:57:c1:91:02:21:d4:ac:16:43:4f:f0:
42:a3:ff:7b:30:7c:f7:36:9e:2d:4f:03:63:00:1c:d7:77:7d:
a4:6d:44:4e:57:cd:aa:ab:7d:c4:d5:e4:75:f8:c9:58:cc:be:
da:d6:5d:12:4d:ad:b0:af:03:10:c4:5a:2a:95:84:65:54:96:
eb:fa:01:06:b0:87:b2:63:74:f7:e4:fb:89:8a:ab:54:4c:0b:
25:2f:28:d6:e6:10:0a:7a:35:a6:47:f1:b2:2a:de:27:4b:7b:
b5:42:c6:2e:d1:32:31:1f:f7:70:a3:fc:4c:59:39:f6:01:e4:
2d:bf:2b:81:23:7f:57:be:83:3b:02:1a:36:f1:15:5d:01:71:
17:63:c1:b9:96:7c:5c:75:77:7a:e7:fd:2f:65:d6:7c:91:33:
79:e3:65:84:d1:9b:c5:db:ed:ad:27:e1:be:61:52:fd:bb:fd:
03:d1:f5:fc:d4:c8:60:53:75:d1:14:bd:20:46:25:9a:28:aa:
53:71:3f:11:32:f1:0c:01:cc:a4:42:55:de:c5:99:eb:42:6f:
09:d8:3e:94:46:4c:7e:47:d9:81:09:ed:0a:ed:6a:ca:71:d2:
dd:26:ea:be:0c:7c:75:42:28:ed:26:44:c8:0e:c3:85:1d:0e:
fc:e3:2b:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 07:40:21 2024 by rpki-client on console-fra.rpki-client.org