Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/_SxsGlV_WItkfheRGmMA40LGYes.cer
File: _SxsGlV_WItkfheRGmMA40LGYes.cer (raw, json)
Hash identifier: o6oOKz/RHiXcyCkqL7lGiAoxBXDTkl7vid2t0lDw3CQ=
Subject key identifier: FD:2C:6C:1A:55:7F:58:8B:64:7E:17:91:1A:63:00:E3:42:C6:61:EB
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC500473B56E93F9E19B7FA6684ADE73A
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/3e/6a3f6e-2d43-4ec6-a7ec-e13deb4ac7b7/1/_SxsGlV_WItkfheRGmMA40LGYes.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/3e/6a3f6e-2d43-4ec6-a7ec-e13deb4ac7b7/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 12:29:38 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 49791
IP: 45.144.48.0/22
IP: 2a05:fc0::/31
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:00:47:3b:56:e9:3f:9e:19:b7:fa:66:84:ad:e7:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 12:29:38 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fd2c6c1a557f588b647e17911a6300e342c661eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:4d:df:7a:cf:42:1f:0e:e8:de:0e:9f:50:be:
d5:54:49:82:d2:dd:03:40:7a:05:73:57:3e:7e:c4:
ab:94:ab:58:10:6e:12:d0:c8:1c:8e:df:dd:5b:6b:
22:ad:73:77:03:5c:77:ce:4c:11:d8:90:84:e7:7e:
45:9d:53:40:ed:20:fa:6f:97:7d:3b:3d:ef:60:08:
20:4f:68:05:d0:62:b6:35:99:5e:d3:58:13:44:ea:
77:08:e6:46:ab:c7:b7:d7:5c:e1:4f:85:df:86:b0:
f7:4b:08:73:0c:ce:48:74:57:9e:c2:8e:60:82:39:
e4:3d:10:25:c8:c4:e6:7e:91:44:cd:eb:4d:35:d4:
56:bf:48:74:2b:2e:ce:40:cc:fe:8d:3d:03:26:ac:
b9:c6:98:af:e5:c5:72:d9:1b:25:9e:c7:3e:5f:b1:
30:7f:b3:a9:7e:57:d0:19:d3:42:94:7e:07:9c:08:
b6:b4:24:3a:f6:d6:eb:cf:21:b8:d4:aa:ac:81:a0:
56:fd:93:ed:f9:d5:ac:a8:00:fb:5d:92:07:ee:fe:
7a:2e:9a:ad:d8:15:7a:42:af:8b:75:b7:56:3a:6b:
9c:77:e0:8b:da:eb:1f:80:dc:20:62:3e:bd:94:a0:
ac:52:69:07:c1:77:5e:1f:fa:63:56:d1:7d:db:52:
95:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:2C:6C:1A:55:7F:58:8B:64:7E:17:91:1A:63:00:E3:42:C6:61:EB
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/6a3f6e-2d43-4ec6-a7ec-e13deb4ac7b7/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/6a3f6e-2d43-4ec6-a7ec-e13deb4ac7b7/1/_SxsGlV_WItkfheRGmMA40LGYes.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.144.48.0/22
IPv6:
2a05:fc0::/31
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
49791
Signature Algorithm: sha256WithRSAEncryption
3d:de:46:92:44:70:a0:9e:e4:84:88:00:3a:b3:f4:a2:b0:a4:
ae:f1:37:42:16:13:16:bc:17:8c:6a:8a:15:04:29:d2:30:f2:
16:bd:75:53:e6:d4:06:1a:4d:cc:93:95:e0:63:23:92:37:e2:
f3:e9:40:cb:af:62:0d:92:ed:eb:34:da:1e:f8:28:44:bd:a9:
10:c8:6e:bf:2b:73:08:fe:07:5b:3f:58:65:29:7e:de:cc:45:
d3:04:15:8b:47:58:da:c9:84:12:eb:70:93:3a:1f:19:ac:c7:
24:d7:12:00:ee:f1:41:7c:22:85:c7:2f:e1:4e:1c:db:86:42:
a9:73:ab:5d:c0:77:e4:7d:7d:18:c2:a4:1d:44:12:bf:65:ca:
6c:ed:b7:b3:96:e7:45:92:49:b9:a4:8f:55:5e:e7:73:27:30:
2e:1f:45:9c:0f:0a:46:a7:f2:5d:14:a6:ff:97:4d:bf:a9:b2:
52:98:bf:84:03:02:ca:1a:6f:3c:84:4e:56:da:5d:76:7b:68:
8e:fc:5b:fd:3f:00:f5:b7:02:7a:40:7f:e6:b9:37:67:a4:40:
a9:d8:1f:59:ba:c8:5b:1b:f3:92:2f:85:e2:66:39:c4:d8:3c:
56:59:38:07:aa:37:11:3a:27:77:6c:dd:03:17:de:a5:c0:42:
fd:96:b3:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:55:38 2024 by rpki-client on console-fra.rpki-client.org