Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/Yg3VGG3mWmRt2kuJ3UjtRIc68Uk.cer
File: Yg3VGG3mWmRt2kuJ3UjtRIc68Uk.cer (raw, json)
Hash identifier: J4XmTJRaTD7UVkdcIR47hJmnkxH73V4GjYs4IKrfxnc=
Subject key identifier: 62:0D:D5:18:6D:E6:5A:64:6D:DA:4B:89:DD:48:ED:44:87:3A:F1:49
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC8DF3AE3C1777823427FE7FD00D29186
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/fd/e2c33a-2143-43ff-8fd6-e6f3ecbf6743/1/Yg3VGG3mWmRt2kuJ3UjtRIc68Uk.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/fd/e2c33a-2143-43ff-8fd6-e6f3ecbf6743/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 06:32:02 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 44664
IP: 91.202.144.0/22
IP: 91.225.56.0/22
IP: 91.247.224.0/22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:df:3a:e3:c1:77:78:23:42:7f:e7:fd:00:d2:91:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 06:32:02 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=620dd5186de65a646dda4b89dd48ed44873af149
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:07:c0:67:c7:3c:a3:a5:9f:e5:f1:88:1b:31:
8e:94:0c:3e:e8:32:aa:e3:e4:8b:9a:ab:6a:e8:cb:
64:9d:83:85:19:f3:57:c0:c6:f0:bd:24:83:b1:7e:
fd:2b:ed:b6:5d:1a:92:dc:59:a7:8c:61:fb:c6:f5:
90:9f:04:44:a2:8b:26:3b:9d:8f:6b:8a:cf:f6:31:
bc:32:6b:9e:9d:50:9b:27:f3:ec:b6:fc:e7:38:01:
b7:2a:3e:df:97:0a:5b:90:e6:6c:a6:ce:0a:92:01:
57:e0:e2:5f:80:e2:de:a2:d6:75:be:98:26:45:e4:
93:29:99:5a:f4:0a:78:a1:2d:b5:12:d5:00:30:80:
fb:2d:3d:d5:1c:17:ee:1c:54:29:35:f3:3a:00:72:
88:e0:b4:c5:e7:9e:ac:7b:d6:a8:04:06:78:9a:66:
d3:ca:26:c0:fd:87:99:ee:f4:c6:85:a6:08:fb:f0:
45:10:a9:1e:92:a4:90:58:3b:03:06:8a:d8:e0:f6:
77:60:6b:62:b8:3c:5c:1f:db:56:36:f7:8f:a7:ad:
85:9c:9e:06:24:bd:03:f7:35:8d:f2:59:c1:d3:14:
29:5e:ae:31:de:a9:b2:3c:13:aa:c0:4d:5b:c9:e0:
5e:53:04:61:f2:ca:c4:06:ba:fa:61:6a:ba:0d:81:
a1:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:0D:D5:18:6D:E6:5A:64:6D:DA:4B:89:DD:48:ED:44:87:3A:F1:49
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/e2c33a-2143-43ff-8fd6-e6f3ecbf6743/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/e2c33a-2143-43ff-8fd6-e6f3ecbf6743/1/Yg3VGG3mWmRt2kuJ3UjtRIc68Uk.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.202.144.0/22
91.225.56.0/22
91.247.224.0/22
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
44664
Signature Algorithm: sha256WithRSAEncryption
98:ef:64:df:c8:4d:38:ec:82:d1:b7:93:cb:ca:51:d6:78:87:
7a:70:ed:69:b1:9c:80:87:2f:91:c8:05:7a:52:d3:2b:ea:3c:
b5:3c:9f:15:83:f6:40:44:1c:1c:42:09:e1:9e:81:58:5e:74:
d4:1b:47:2f:f9:d2:e0:cc:ea:d3:73:c4:5e:1a:53:4e:df:0a:
3c:73:74:0f:9c:a8:bf:dd:46:83:c0:ff:e9:83:02:4c:d8:27:
d6:8d:a1:fc:98:17:64:cd:ac:97:01:db:cd:6c:1b:cf:70:96:
f9:82:ff:a4:de:d7:b9:93:f1:c9:c8:75:a6:22:3d:7d:0f:76:
3d:57:30:1b:69:13:28:83:24:06:7b:a1:ad:16:02:c5:4c:65:
be:b8:92:11:33:46:1f:7f:f8:67:4a:8e:77:d2:89:86:1f:76:
6e:04:53:f3:cf:ad:4a:3a:2f:77:5a:69:7d:84:ad:e6:74:a9:
46:39:a1:82:33:d8:c1:64:e8:56:c8:ac:90:a2:36:82:1c:d8:
b4:86:a6:50:86:9f:b1:23:b4:75:00:dc:c0:85:16:fc:ad:10:
8b:a7:5e:ba:4f:09:fb:49:bc:39:23:cd:28:38:c7:0d:1a:c7:
98:f6:75:0f:1f:d3:a7:e2:da:42:f1:7d:df:b7:8f:91:0c:27:
3e:70:36:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 07:41:09 2024 by rpki-client on console-fra.rpki-client.org