Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aOHm6lJ9w4Wnmj4Ign2_aQyRxMI.cer
File: aOHm6lJ9w4Wnmj4Ign2_aQyRxMI.cer (raw, json)
Hash identifier: YwoeNZKPH+H85R91F4BxjMVrnm3+10vdTjnLIjdSX/8=
Subject key identifier: 68:E1:E6:EA:52:7D:C3:85:A7:9A:3E:08:82:7D:BF:69:0C:91:C4:C2
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC26D869A23E3954913B9B515EB80B880
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/f5/9331c9-e164-4d2e-b839-17d097ff89c2/1/aOHm6lJ9w4Wnmj4Ign2_aQyRxMI.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/f5/9331c9-e164-4d2e-b839-17d097ff89c2/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 00:30:06 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 198815
AS: 211589
IP: 37.152.64.0/21
IP: 2a00:b3c0::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:6d:86:9a:23:e3:95:49:13:b9:b5:15:eb:80:b8:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 00:30:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=68e1e6ea527dc385a79a3e08827dbf690c91c4c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:c8:b9:25:f1:96:ae:ad:60:0d:f0:d2:7f:19:
05:ff:1b:d4:4b:a3:0e:33:1c:e2:f5:c5:82:80:30:
1e:05:db:9b:4d:4b:25:04:8c:34:fe:f0:ac:5b:4f:
42:44:03:14:a4:0a:0d:46:59:bf:7d:66:1b:ef:bb:
ab:9e:ad:e1:0e:7b:10:61:65:f8:01:48:80:0d:57:
d6:02:0b:df:7c:a5:9c:d7:d3:46:34:50:91:33:a1:
e9:3e:ae:bc:83:7a:f5:dc:df:60:5a:50:02:08:be:
3a:47:78:d3:68:04:cf:c6:61:d7:57:37:93:8f:09:
06:c0:bb:eb:d7:5d:68:ba:ff:61:6a:f2:a8:dc:36:
20:90:f0:79:cf:f3:3b:88:dc:6f:f2:56:0a:d8:14:
9f:f0:22:6e:37:d0:c5:76:66:44:30:4b:cd:1d:90:
0c:bf:22:e2:e6:aa:ea:cf:42:62:27:93:6f:26:ca:
2b:b1:5b:d8:95:e0:e4:a0:9e:9f:7c:89:6b:8e:09:
da:7a:f3:2b:da:d8:8f:df:1c:f4:8c:24:d8:7c:7e:
51:fd:0d:9c:88:a4:be:db:37:27:85:03:6d:c7:42:
10:ef:39:49:3f:6c:6f:af:a5:61:98:1d:95:54:1e:
6b:87:ac:db:97:63:81:dc:07:01:6f:53:b8:44:97:
da:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:E1:E6:EA:52:7D:C3:85:A7:9A:3E:08:82:7D:BF:69:0C:91:C4:C2
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/9331c9-e164-4d2e-b839-17d097ff89c2/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/9331c9-e164-4d2e-b839-17d097ff89c2/1/aOHm6lJ9w4Wnmj4Ign2_aQyRxMI.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.152.64.0/21
IPv6:
2a00:b3c0::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
198815
211589
Signature Algorithm: sha256WithRSAEncryption
98:83:d9:5f:c1:0c:6f:a5:7e:0f:17:6d:df:cf:0c:fd:9b:a2:
e0:1a:a2:16:41:e0:78:ee:06:b2:d5:55:05:45:8a:56:88:68:
89:8c:b2:83:c7:ad:b5:b2:49:95:a2:2f:91:f8:db:e7:6c:09:
8f:b0:5b:8a:69:5c:ec:ae:7e:cc:d9:27:bf:e2:38:7c:2c:ef:
6c:61:d4:c5:ed:2c:d0:fd:98:29:c0:7b:a1:16:32:95:98:31:
e1:05:22:d6:80:fc:56:85:60:eb:93:83:57:56:e0:36:49:81:
48:b2:97:c0:b4:bc:d8:49:3e:de:de:ce:34:3b:d3:ba:19:cc:
92:04:65:5e:73:8e:27:f7:b4:e1:d7:67:fd:3e:47:db:dc:e0:
f8:8d:63:da:ff:76:3e:50:a3:ef:fd:b1:de:d2:62:59:90:5a:
86:6e:77:5a:87:b8:49:aa:28:b7:19:9d:e7:b3:6b:33:cb:4b:
64:9a:24:85:6e:56:98:d9:be:42:c2:81:7a:d0:7e:70:1b:8e:
e8:7b:8e:7e:6f:1a:12:97:68:9d:47:a8:0b:3b:e5:f4:35:e8:
62:a0:20:e6:97:da:1d:ac:91:9c:e0:3b:e1:e6:94:64:b8:b0:
29:ee:4f:4f:8a:88:a2:b1:78:aa:80:de:57:40:f6:59:14:f0:
04:81:61:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 09:14:27 2024 by rpki-client on console-ams.rpki-client.org