Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a-pT2WLWegFI5je0tGib5NCEqeU.cer
File: a-pT2WLWegFI5je0tGib5NCEqeU.cer (raw, json)
Hash identifier: X+91ccqqawcNlJiYcHI/tsPQkbZov71CM6ika/0kkfI=
Subject key identifier: 6B:EA:53:D9:62:D6:7A:01:48:E6:37:B4:B4:68:9B:E4:D0:84:A9:E5
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CF56015FD7D55EF25E68D98DBC41E6BA4
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/4b/9c8571-c9d7-4550-8841-e20b7e679622/1/a-pT2WLWegFI5je0tGib5NCEqeU.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/4b/9c8571-c9d7-4550-8841-e20b7e679622/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 10 Jan 2024 21:56:04 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 201060
IP: 185.36.103.0/24
IP: 2a10:7c0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 11:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:f5:60:15:fd:7d:55:ef:25:e6:8d:98:db:c4:1e:6b:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 10 21:56:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6bea53d962d67a0148e637b4b4689be4d084a9e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:c9:31:b9:a5:cc:11:fa:06:c1:9d:80:58:cb:
2c:91:b1:b1:83:fe:b2:a4:ec:f7:67:b6:81:b5:14:
02:7f:76:f3:93:61:6e:bc:92:e7:28:43:10:58:4a:
e2:2c:8b:28:e0:d9:67:bb:9a:16:a8:f3:0b:6c:1b:
5b:11:c7:61:4d:0f:e1:d9:ef:ad:e4:ec:d5:e8:4e:
97:ea:71:2a:51:67:88:ed:51:9d:79:a7:48:41:17:
38:3c:ce:ec:29:65:1e:51:22:5a:66:8f:8f:8b:38:
39:e3:5e:86:23:81:0b:c5:78:73:ca:27:91:b3:f9:
60:5d:94:da:a0:a0:b7:b9:96:7d:98:0e:c5:51:d3:
0b:43:22:01:b1:1f:17:e9:09:00:0c:16:d1:42:0b:
88:8f:0c:29:39:e6:f9:7b:96:87:9d:f1:27:8a:44:
47:a3:a7:f4:91:c4:7b:b9:c8:c6:de:69:73:3d:bb:
93:20:41:93:cb:c1:4e:9d:84:7a:e8:e9:5a:07:7e:
96:1e:01:25:e3:02:6b:6d:37:95:a0:65:83:54:74:
ed:1e:3b:6c:3d:ac:8c:cf:1a:18:2e:25:e3:f0:e1:
08:54:f0:47:05:11:df:79:11:c4:dc:1e:9c:11:f4:
7f:89:8b:29:65:8d:94:fc:d0:ea:3a:ef:99:ca:ac:
ae:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:EA:53:D9:62:D6:7A:01:48:E6:37:B4:B4:68:9B:E4:D0:84:A9:E5
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/9c8571-c9d7-4550-8841-e20b7e679622/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/9c8571-c9d7-4550-8841-e20b7e679622/1/a-pT2WLWegFI5je0tGib5NCEqeU.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.36.103.0/24
IPv6:
2a10:7c0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
201060
Signature Algorithm: sha256WithRSAEncryption
7d:b1:d7:51:bb:0d:18:27:51:ed:5d:6f:2b:f2:41:b4:bc:4c:
1c:b6:aa:8a:d6:63:64:09:89:26:bb:55:98:6e:68:16:ce:f7:
19:25:c1:bf:e3:0a:26:a8:dd:17:6f:5f:a7:c5:fb:3a:cc:62:
ce:06:b2:ca:06:55:c2:9f:2b:a3:a1:9f:c9:7a:cc:c9:a5:61:
df:18:30:7a:14:09:a7:45:52:41:fd:77:d9:8c:bf:ae:68:fd:
dd:9a:1c:7b:fd:44:45:12:26:d0:c4:0f:d6:bf:5f:88:94:66:
14:b1:38:92:ba:cf:e0:3a:79:94:ff:65:fa:7d:9f:47:48:e4:
3a:4f:fe:9a:e8:3c:49:8d:59:ff:0d:3c:54:ce:44:b5:ef:b2:
a0:b4:bf:fb:13:fb:23:24:b9:88:ef:d8:c1:a5:9c:25:d0:b4:
e6:66:69:29:a6:17:f2:66:d7:47:82:4f:f3:33:6f:a7:d5:55:
e9:52:7c:c5:89:6c:26:f4:01:b7:5e:06:ef:f9:d0:2d:14:50:
8d:e3:a5:4f:e3:21:23:3f:d7:db:e2:54:04:b3:bc:fc:1b:7c:
51:0a:70:a9:f6:fe:e1:7c:7d:1c:b4:35:ff:94:67:f7:85:6e:
e3:bf:59:ea:d8:0c:2e:ea:d0:41:79:58:fa:c1:9c:cb:2f:a5:
25:46:a6:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 13:49:33 2024 by rpki-client on console-ams.rpki-client.org