Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/_tPwXKP9-ef5nGXMagpnJPWTGnA.cer
File: _tPwXKP9-ef5nGXMagpnJPWTGnA.cer (raw, json)
Hash identifier: VY8fsOi0FbQZCzkd+m/M75z7yFL+hI8xCCxsP7sNqEw=
Subject key identifier: FE:D3:F0:5C:A3:FD:F9:E7:F9:9C:65:CC:6A:0A:67:24:F5:93:1A:70
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC5DC2012F4C589E1BA85FE02D5C8AAA3
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/50/c95639-722a-4021-beeb-ac5ee625babc/1/_tPwXKP9-ef5nGXMagpnJPWTGnA.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/50/c95639-722a-4021-beeb-ac5ee625babc/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 16:29:46 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 206299
IP: 185.55.168.0/22
IP: 2a02:4ce0::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:dc:20:12:f4:c5:89:e1:ba:85:fe:02:d5:c8:aa:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 16:29:46 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fed3f05ca3fdf9e7f99c65cc6a0a6724f5931a70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:04:73:c7:eb:c4:3b:bc:c0:a0:69:ef:ee:c3:
4a:49:e4:4f:08:d0:cb:c8:05:df:d9:b8:9c:3b:af:
34:0f:88:65:d3:e6:23:3f:b2:b4:f0:4c:7c:aa:03:
4c:bf:1f:c3:45:00:26:e8:6e:60:ba:2a:f2:1b:1b:
76:5e:81:8d:0f:0a:4d:73:81:04:14:c2:db:f8:3f:
d4:92:fb:bd:94:38:38:02:30:16:5c:00:57:91:0d:
1a:1e:42:57:37:c9:6d:9c:37:ce:d5:54:97:75:13:
12:3a:60:12:8f:30:96:56:f0:44:51:37:8b:fa:53:
fd:49:1e:46:d2:23:f5:02:0d:6f:e7:e1:d7:ec:30:
7f:19:4a:d9:07:a9:cf:47:7e:b3:6e:ae:e0:01:6c:
57:23:01:f2:8b:f8:fc:66:39:7d:12:74:e9:d0:46:
d8:88:14:41:73:a7:7b:27:9b:a1:74:06:93:22:83:
00:6a:df:a8:c7:d0:0f:e6:0f:88:38:fa:72:e8:f5:
13:e9:8d:e9:2f:42:10:37:48:76:41:12:fb:3b:f1:
3a:c7:5d:0e:5d:e6:5c:55:ee:3b:ca:04:d8:b8:80:
5b:8e:c0:f6:ec:4e:10:19:16:dc:0a:20:51:77:30:
98:ff:28:db:51:a6:44:a4:7f:cb:e8:bf:32:14:a5:
8a:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:D3:F0:5C:A3:FD:F9:E7:F9:9C:65:CC:6A:0A:67:24:F5:93:1A:70
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/c95639-722a-4021-beeb-ac5ee625babc/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/c95639-722a-4021-beeb-ac5ee625babc/1/_tPwXKP9-ef5nGXMagpnJPWTGnA.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.55.168.0/22
IPv6:
2a02:4ce0::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
206299
Signature Algorithm: sha256WithRSAEncryption
9b:7a:19:61:91:cf:89:32:39:a6:83:49:95:eb:ff:91:61:d0:
59:e9:4b:65:29:cc:a0:b3:37:33:94:1b:0d:8d:47:72:78:dd:
4b:f1:2b:38:c1:4a:8c:35:63:05:57:82:a2:45:f9:6e:79:2c:
7d:cd:b1:1d:01:12:45:dd:17:f5:da:35:cc:61:36:cc:bf:71:
da:c1:65:b9:a4:00:78:91:f0:3f:b1:d7:82:d5:6a:cb:4d:eb:
8d:06:13:c1:15:54:06:58:39:6c:ab:64:a2:6b:44:fc:b1:b7:
80:c0:a4:0d:94:1e:b2:71:2f:41:c0:fe:c3:d1:cf:c5:da:45:
d7:df:7d:bc:24:ad:ca:58:a0:28:0a:58:f6:a1:df:0e:4b:a1:
5f:e9:36:c3:8f:1e:15:9e:09:c6:6f:50:e3:04:47:5a:ea:8a:
1f:d5:75:08:20:a3:35:48:de:d4:c5:f6:41:6b:4f:82:66:b4:
c7:46:1a:10:74:6f:d1:85:b3:d6:f8:4e:b7:4f:4c:57:9e:0d:
c0:97:0c:62:a8:7a:6e:0c:b9:37:ba:cf:19:11:57:e0:c5:ee:
03:d8:86:43:2b:e1:ca:b1:0e:f0:24:8c:99:6d:37:c5:ad:ba:
cb:8b:6d:7d:fb:71:e6:9c:d3:30:bc:24:2f:a1:5e:8a:cb:ac:
56:c1:9d:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 07:06:01 2024 by rpki-client on console-ams.rpki-client.org