Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/avtfHyEUagk_P9rQxr_3V3avN8Y.cer
File: avtfHyEUagk_P9rQxr_3V3avN8Y.cer (raw, json)
Hash identifier: q2jXGYhszx9k/ZCcKrqI+z+9lUJrdMI+zVDgrctNVzY=
Subject key identifier: 6A:FB:5F:1F:21:14:6A:09:3F:3F:DA:D0:C6:BF:F7:57:76:AF:37:C6
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC3B707A606A5E03353E68FACDAAF8E35
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/cc/e3c0c0-2383-48d5-8618-f98b9d227a94/1/avtfHyEUagk_P9rQxr_3V3avN8Y.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/cc/e3c0c0-2383-48d5-8618-f98b9d227a94/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 06:30:01 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 202034
IP: 185.222.204.0/22
IP: 2a0c:e800::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:b7:07:a6:06:a5:e0:33:53:e6:8f:ac:da:af:8e:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 06:30:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6afb5f1f21146a093f3fdad0c6bff75776af37c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:ec:a7:c0:0d:64:68:c5:d1:1f:e3:da:34:ad:
91:3c:5a:f2:15:f8:07:6d:d4:3e:88:a0:b1:d3:3f:
37:7b:b7:29:16:78:73:45:e9:cf:b2:b0:5a:c7:fa:
d2:c0:3a:46:ba:9b:78:af:85:e9:a7:2a:fa:8b:ca:
ec:98:2b:e7:48:13:a3:f5:26:2b:a5:a7:77:e9:c7:
36:a1:72:10:6c:0c:be:dc:b1:e6:95:46:63:e2:5e:
d6:a4:72:71:a4:7c:a3:e4:8c:e3:e0:34:55:b8:93:
d5:b1:44:72:4f:fc:e1:a2:3b:4c:c9:b1:d5:d8:cb:
6a:11:be:4a:27:53:eb:b3:b5:b5:90:2e:4b:fb:94:
35:3b:2e:b0:aa:80:a3:e1:28:d3:14:8f:88:f9:5d:
fe:df:9f:a0:7b:84:0b:f1:91:5f:df:ee:be:53:ec:
82:ef:7f:42:5d:17:3e:2e:7f:22:24:a4:ca:7e:f9:
48:77:30:26:6a:57:95:16:e9:22:88:d9:cc:64:2f:
e1:9b:4a:c9:9f:fe:a3:bd:47:22:4d:eb:a1:dc:c8:
3f:38:40:59:bf:8a:b7:0d:02:d0:6c:4c:14:34:6d:
3c:1d:fa:ca:ee:d5:ce:7b:0d:38:10:38:97:21:2d:
24:16:de:52:c5:65:a9:83:e6:30:ae:11:a4:ed:b9:
56:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:FB:5F:1F:21:14:6A:09:3F:3F:DA:D0:C6:BF:F7:57:76:AF:37:C6
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/e3c0c0-2383-48d5-8618-f98b9d227a94/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/e3c0c0-2383-48d5-8618-f98b9d227a94/1/avtfHyEUagk_P9rQxr_3V3avN8Y.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.222.204.0/22
IPv6:
2a0c:e800::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
202034
Signature Algorithm: sha256WithRSAEncryption
6d:4c:18:b1:ec:d3:cf:67:8e:d5:57:5e:9a:1e:33:ae:39:df:
c3:5f:f5:4e:5d:4d:73:b2:17:c9:52:a4:88:40:e0:b6:30:41:
f8:06:6f:86:52:d0:be:04:5f:72:f5:c6:c8:69:65:a3:59:90:
96:f1:19:b1:47:ea:73:79:5b:a5:77:92:2d:d8:11:1e:7a:b8:
72:12:da:de:d2:fa:91:a4:16:64:29:d4:25:56:67:b6:28:0e:
7f:3c:10:54:46:a0:03:eb:89:b7:ec:84:63:ec:dc:7b:3d:a6:
d1:b8:6c:24:b8:08:53:62:f4:24:5e:0c:aa:bc:57:94:22:d6:
80:d8:fc:83:fe:7c:b8:ee:8b:63:ba:ba:2d:95:e0:3a:55:bf:
d3:a4:14:f0:24:4a:54:be:8d:24:d8:c0:f4:3c:15:7a:9b:c4:
0b:6e:de:44:2e:6a:a7:55:a7:56:e2:1c:8c:ef:6e:a4:9f:45:
5b:b3:c9:ab:5d:cf:77:36:3b:a7:96:19:f9:db:18:18:04:02:
81:17:30:2f:93:73:60:6a:3c:fb:14:04:a9:77:b3:b1:42:21:
62:3b:cd:3c:b3:aa:2e:c8:9c:cd:97:7d:96:28:20:9e:d3:9e:
ed:2f:9b:eb:b9:9c:04:9b:68:df:43:31:ec:cd:5b:36:e9:02:
31:f0:43:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 10:28:07 2024 by rpki-client on console-fra.rpki-client.org