Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bj5QHSUT5a7UQj1-smXmCCKo540.cer
File: bj5QHSUT5a7UQj1-smXmCCKo540.cer (raw, json)
Hash identifier: cZBmDn4n6qqeCTbJEdrGQs8Y+HypVOq9chabsydkzA4=
Subject key identifier: 6E:3E:50:1D:25:13:E5:AE:D4:42:3D:7E:B2:65:E6:08:22:A8:E7:8D
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC64B4424E57B161279F3DA3509F97A0C
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/4c/9d5fdc-66b2-4718-8b24-11daf170d7cd/1/bj5QHSUT5a7UQj1-smXmCCKo540.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/4c/9d5fdc-66b2-4718-8b24-11daf170d7cd/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 18:31:10 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 208693
AS: 210157
IP: 185.220.108.0/22
IP: 2a0b:efc0::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4b:44:24:e5:7b:16:12:79:f3:da:35:09:f9:7a:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 18:31:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6e3e501d2513e5aed4423d7eb265e60822a8e78d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:54:ba:1e:27:22:15:62:31:b9:6a:80:e8:ba:
fa:47:a2:d6:9e:e5:2c:d9:b0:b2:0c:0a:f8:a8:e4:
40:41:b4:b7:a7:c3:8b:87:53:92:aa:c6:6f:a3:10:
22:10:b0:ad:f4:2c:e9:a1:d5:80:9f:6c:9c:39:d5:
3c:03:70:e7:6a:c7:40:86:ba:74:b1:e8:ad:3b:b9:
e5:1b:06:89:3d:9c:27:7c:9f:32:ba:9e:62:64:bd:
57:75:59:e8:5f:8c:94:7c:48:f7:b6:bc:38:c3:0c:
50:c2:ff:ce:6e:c0:2c:67:96:46:12:35:58:d2:79:
ce:8d:22:17:0d:35:34:46:79:d2:5c:bf:03:f7:4e:
b1:3e:4d:cf:57:7f:19:de:e2:3c:cb:29:e4:d5:ef:
f1:8b:7f:63:31:35:86:b4:af:bf:94:90:c2:cd:50:
ca:e0:ce:38:be:ba:6a:6a:41:52:8f:f3:75:38:79:
14:ee:5e:55:af:b6:f6:31:d5:59:fa:48:87:9f:e8:
5e:c1:bf:09:18:43:51:da:fd:7a:46:06:03:4b:e5:
2c:cb:dc:86:fd:7d:72:ed:19:5d:be:26:68:84:9a:
b3:6e:d5:c0:42:b8:fe:a7:14:0b:43:08:98:a0:c2:
5d:10:2c:75:0b:0a:38:c6:7d:60:c1:14:62:6a:d0:
ba:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:3E:50:1D:25:13:E5:AE:D4:42:3D:7E:B2:65:E6:08:22:A8:E7:8D
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/9d5fdc-66b2-4718-8b24-11daf170d7cd/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/9d5fdc-66b2-4718-8b24-11daf170d7cd/1/bj5QHSUT5a7UQj1-smXmCCKo540.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.220.108.0/22
IPv6:
2a0b:efc0::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
208693
210157
Signature Algorithm: sha256WithRSAEncryption
11:06:57:c5:30:66:29:6a:e2:2d:82:25:df:da:66:3b:88:c3:
2a:87:44:3b:46:ac:44:21:b6:96:f8:29:de:84:e7:04:ff:f9:
a7:41:aa:0c:8f:28:14:ab:e6:42:b6:80:0c:20:c2:aa:7a:dd:
cd:da:ff:a2:57:74:51:d0:f0:2d:48:2c:05:56:f9:b9:97:58:
46:35:4f:98:bb:0f:5b:2c:fd:b9:93:2c:ef:59:e5:10:8b:b8:
cf:f5:7d:3f:4d:0c:9a:9a:3c:ec:6c:d8:e2:bb:20:e0:88:25:
32:3a:96:9f:ac:cd:3d:5b:54:12:c5:06:e6:6f:47:e7:58:22:
9b:d5:e2:33:ce:66:95:d3:8b:62:4c:ea:91:3e:09:4b:00:60:
44:cb:27:b7:69:8c:32:0c:16:a1:90:1e:79:ae:6d:13:f1:95:
c5:06:8f:09:da:ee:7e:f1:5e:56:27:ea:92:71:2b:8a:fc:85:
b5:2f:ff:3d:b5:d4:aa:11:d6:ae:a9:0c:d2:ed:3a:d3:5a:5b:
c4:8d:63:61:99:2f:a5:f5:3b:00:e1:c1:2b:42:77:89:cf:1b:
8a:2f:37:d9:a8:8d:dd:37:26:2d:8c:64:25:f5:90:c0:fb:6f:
72:60:17:0e:9e:86:be:e9:87:ac:e8:4c:e5:b6:de:1c:ff:49:
48:b8:5a:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:58:27 2024 by rpki-client on console-fra.rpki-client.org