Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bds4s0PaLRGTCe2qGceniHAyfr4.cer
File: bds4s0PaLRGTCe2qGceniHAyfr4.cer (raw, json)
Hash identifier: 8tN+ROzojebIhIt3GEiHE21gBWradPg2vBlC3VKjz+A=
Subject key identifier: 6D:DB:38:B3:43:DA:2D:11:93:09:ED:AA:19:C7:A7:88:70:32:7E:BE
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC5DC304DB353CE1EA4F132CFF19407A4
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/bds4s0PaLRGTCe2qGceniHAyfr4.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 16:29:51 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 198357
IP: 5.159.48.0/21
IP: 45.94.212.0/22
IP: 89.42.44.0/22
IP: 89.44.240.0/22
IP: 89.46.216.0/22
IP: 185.3.200.0/22
IP: 185.239.0.0/22
IP: 188.212.96.0/22
IP: 188.240.196.0/24
IP: 188.240.212.0/24
IP: 2a02:6040::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:dc:30:4d:b3:53:ce:1e:a4:f1:32:cf:f1:94:07:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 16:29:51 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6ddb38b343da2d119309edaa19c7a78870327ebe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:61:6d:8e:38:a0:62:a0:a3:4d:94:85:4c:65:
88:33:39:fc:1d:06:f0:ab:20:d1:5d:6d:b4:58:74:
fa:86:40:63:07:8b:cd:18:61:35:1c:ab:bc:69:8d:
79:04:18:13:79:43:13:e2:9c:62:d8:35:88:93:82:
a5:53:7e:f6:49:42:87:a2:af:f3:a2:11:5e:2e:7d:
9f:03:9f:77:95:3d:96:98:44:8c:42:96:d1:82:a7:
87:2f:88:ec:cf:0b:e6:9b:3d:1f:b9:02:cf:a5:68:
9a:b7:e5:9a:e2:a6:2b:a4:db:55:28:2a:02:66:8e:
1d:9a:b9:2a:63:b1:6b:07:31:fe:e1:40:67:2d:09:
84:3b:81:14:00:68:5d:c9:bd:64:dc:31:54:fe:b4:
2f:dc:ce:71:03:25:45:a6:c7:4f:43:47:79:ea:e0:
72:8a:bd:42:47:3f:13:d7:1a:06:7e:0b:f1:a7:a6:
d8:13:e9:3a:e1:e2:31:a8:04:1a:34:65:e4:15:eb:
3c:36:e2:a5:f2:ee:17:89:30:6d:8e:bc:01:11:83:
65:2b:1d:8e:0d:07:2e:8b:36:0e:1d:1b:a4:45:7e:
00:75:e2:24:c4:1b:08:91:f5:6b:45:e2:89:18:28:
9e:47:a9:f3:98:10:c5:d5:af:26:a2:a9:c4:26:32:
3b:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:DB:38:B3:43:DA:2D:11:93:09:ED:AA:19:C7:A7:88:70:32:7E:BE
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/bds4s0PaLRGTCe2qGceniHAyfr4.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.159.48.0/21
45.94.212.0/22
89.42.44.0/22
89.44.240.0/22
89.46.216.0/22
185.3.200.0/22
185.239.0.0/22
188.212.96.0/22
188.240.196.0/24
188.240.212.0/24
IPv6:
2a02:6040::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
198357
Signature Algorithm: sha256WithRSAEncryption
a8:eb:47:36:1c:b7:43:19:28:ef:9a:33:61:f4:4f:b4:7a:4b:
30:a8:a4:c5:61:d7:3d:43:4e:0a:f8:da:61:3e:ca:d5:08:77:
fb:bf:aa:ab:6b:13:96:d8:04:bb:45:ac:1a:45:23:66:5a:5c:
b4:ca:63:8a:d0:13:59:ca:ae:ab:2f:49:59:3b:be:1d:58:de:
39:ae:e2:fa:b0:3d:13:89:fa:dd:86:c9:95:bf:4a:56:cd:a7:
96:21:96:8d:ad:f1:b7:9e:ce:46:e0:10:25:81:6c:88:46:1f:
3d:91:31:fe:c1:e3:ac:4f:65:25:25:16:fc:cd:04:67:50:95:
e2:72:54:8d:33:22:ec:d8:5c:f2:7e:c3:e8:4f:3e:d8:aa:1d:
0f:14:ca:a7:40:3c:5d:c3:86:32:e3:8f:47:20:00:ce:3b:af:
43:18:4e:9a:de:94:06:e9:b2:ad:37:54:f1:3f:92:4c:96:12:
33:61:ba:39:21:bf:a7:bb:c9:2b:68:d9:14:30:43:f2:02:bc:
dc:b6:bc:cd:44:d8:7f:78:10:7d:f7:d8:5b:07:30:1b:40:42:
ad:06:b3:42:19:a3:fb:b6:21:49:b3:c4:0f:2b:96:f6:1c:e7:
cf:a5:91:58:9a:51:67:3c:c6:2f:4f:3a:5a:0f:c0:eb:31:7f:
59:6d:be:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 01:56:02 2024 by rpki-client on console-ams.rpki-client.org