Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aesALwAL1CbkpkDHHWwCAbUFDjQ.cer
File: aesALwAL1CbkpkDHHWwCAbUFDjQ.cer (raw, json)
Hash identifier: 76MgDMZ5tgFSwK4EsvK80AvlDZNIX4Zx6tN3MKJwEik=
Subject key identifier: 69:EB:00:2F:00:0B:D4:26:E4:A6:40:C7:1D:6C:02:01:B5:05:0E:34
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC80122C3BD6C6545D4FC13D66E1EFB7C
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/00/d3e682-3370-4271-9437-785475c22c9b/1/aesALwAL1CbkpkDHHWwCAbUFDjQ.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/00/d3e682-3370-4271-9437-785475c22c9b/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 02:29:26 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 61967
IP: 45.137.92.0/22
IP: 91.220.244.0/24
IP: 185.20.232.0/22
IP: 2a04:1600::/29
IP: 2a0e:94c0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:22:c3:bd:6c:65:45:d4:fc:13:d6:6e:1e:fb:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 02:29:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=69eb002f000bd426e4a640c71d6c0201b5050e34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:c2:0f:b3:b6:73:12:09:10:a8:c4:69:12:8c:
3e:57:15:7d:c3:96:38:55:7b:08:60:6b:5d:f0:95:
10:eb:95:b3:be:9b:a8:9f:08:69:ff:4c:80:52:e4:
59:93:7a:69:a1:88:60:74:ad:3b:dd:f5:57:36:de:
fa:b3:a6:43:af:b3:5b:e9:c8:4f:fd:b9:bb:81:bc:
92:92:87:97:cb:bd:54:13:31:35:cd:44:4c:2d:58:
b9:a7:e8:fc:b9:6d:13:3d:25:b4:33:0d:8f:ad:4b:
c8:51:46:58:73:68:cb:ac:70:7f:08:a5:0e:7b:00:
ed:39:68:92:b0:45:45:b6:89:c6:4d:24:94:eb:29:
2a:04:12:51:19:7a:0d:1b:e2:55:ba:a7:18:98:20:
40:9b:a0:68:db:8f:5f:b4:00:43:2f:8a:1b:20:3f:
2f:66:18:34:73:33:77:4a:05:a5:cc:f9:98:8f:f5:
4e:01:a8:fb:89:f2:4c:d6:f3:1a:6c:90:3e:0c:b1:
e9:b4:96:f6:0f:29:87:e6:db:f3:6f:32:f9:04:2d:
c4:4b:dc:3c:86:82:7d:8c:03:2d:19:25:1c:16:7f:
a2:86:2a:44:ea:3d:b4:e5:ef:e1:f2:7e:a6:1b:1c:
82:11:98:cc:8c:cf:7e:e6:60:60:19:dd:73:c3:9a:
9e:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:EB:00:2F:00:0B:D4:26:E4:A6:40:C7:1D:6C:02:01:B5:05:0E:34
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/d3e682-3370-4271-9437-785475c22c9b/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/d3e682-3370-4271-9437-785475c22c9b/1/aesALwAL1CbkpkDHHWwCAbUFDjQ.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.137.92.0/22
91.220.244.0/24
185.20.232.0/22
IPv6:
2a04:1600::/29
2a0e:94c0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
61967
Signature Algorithm: sha256WithRSAEncryption
01:65:3a:ac:61:67:ed:43:91:e5:b0:c4:99:3d:92:dd:65:c5:
30:9d:bc:fa:5c:c2:e3:cc:3d:99:80:d0:59:c8:52:6b:e1:4d:
15:09:17:7b:a0:32:49:5c:d0:fe:7c:c7:05:d0:d6:51:03:3d:
55:c0:d3:b9:df:11:5d:60:80:3a:bc:a8:80:12:42:c3:ee:46:
e7:01:59:86:b5:89:d6:fc:81:3b:f1:4f:cc:57:76:4c:d9:31:
a2:34:9e:6a:d1:e9:56:5a:58:a3:37:84:b9:33:80:6a:f8:89:
aa:02:a5:03:b5:bc:51:33:89:71:b2:fd:e4:5f:83:90:17:75:
25:95:6c:98:b5:5c:63:31:c2:04:29:3e:50:e7:f4:35:61:c7:
47:70:c1:64:41:96:2c:5d:45:b1:7e:8d:00:d4:10:7c:c1:6f:
5f:6a:5b:b6:ec:0d:2e:3d:f8:63:aa:56:f9:b4:3f:a4:7d:f9:
61:26:d8:e1:07:c8:ba:8d:b8:8b:8a:3a:5e:bf:cf:3f:bc:af:
1d:60:51:b6:ab:32:3d:5d:34:57:b0:39:e5:71:45:af:fc:3d:
2b:4d:eb:f6:d4:33:c5:11:97:97:2f:d8:65:92:9c:50:58:ab:
9a:f6:ef:7a:29:7c:36:19:ff:92:80:11:03:c1:dc:bd:a3:9e:
5f:4a:4b:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 09:15:25 2024 by rpki-client on console-ams.rpki-client.org