Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bxDY4VZOQDEsnd8huiqgO6VZ6tY.cer
File: bxDY4VZOQDEsnd8huiqgO6VZ6tY.cer (raw, json)
Hash identifier: r8zUNiQjxMmgezqdxhpfpsJhckCzbQYhyWQXTvpTyUU=
Subject key identifier: 6F:10:D8:E1:56:4E:40:31:2C:9D:DF:21:BA:2A:A0:3B:A5:59:EA:D6
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC5DC8961BA4FFE935446FBB7600CC46A
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/4f/cfda05-190d-4142-bd4f-b6a8f8e80f7b/1/bxDY4VZOQDEsnd8huiqgO6VZ6tY.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/4f/cfda05-190d-4142-bd4f-b6a8f8e80f7b/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 16:30:13 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 64476
IP: 46.247.136.0 -- 46.247.141.255
IP: 85.190.64.0/19
IP: 87.121.208.0/21
IP: 185.161.168.0/22
IP: 185.231.8.0/22
IP: 185.253.168.0/22
IP: 2a0a:e800::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:dc:89:61:ba:4f:fe:93:54:46:fb:b7:60:0c:c4:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 16:30:13 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6f10d8e1564e40312c9ddf21ba2aa03ba559ead6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:41:9f:cb:8d:d4:30:18:b6:b4:9b:6f:14:ea:
70:3b:2e:9c:e0:6f:7a:b4:ce:ca:ee:53:14:d1:29:
66:2f:ed:2e:cb:4a:73:81:55:73:e0:fe:08:f9:6f:
4b:a7:d7:ef:c4:9f:fe:eb:b0:1d:9d:67:e1:fb:d1:
73:62:e6:df:96:5b:f9:e0:93:9f:d0:13:ab:e6:cd:
29:20:b5:e1:11:ea:3b:b2:0d:a5:3a:5e:31:57:a4:
e6:7b:11:4f:19:40:de:fd:43:b4:56:a3:e4:37:8d:
c4:b0:7e:b3:82:e1:ba:94:db:83:54:8f:7d:a6:1a:
fb:45:eb:22:c4:7e:ab:b5:5e:ed:68:d4:00:51:a0:
c7:c8:4b:c8:9f:f9:40:5f:5d:b7:f4:da:da:c4:68:
10:f1:22:b7:ba:26:2d:ac:de:37:1b:58:34:f8:f9:
a3:1d:aa:c2:f0:ec:51:34:60:cd:0e:6b:88:6b:28:
13:df:8b:56:0e:a0:82:d6:8e:d6:6a:fb:71:32:89:
64:bd:ac:e0:69:bd:c4:3f:8a:96:c5:56:53:ab:98:
6f:cd:42:3c:f2:ca:0c:6a:97:7f:42:f9:34:bb:e1:
bc:dd:d6:75:36:78:7d:e4:40:62:68:9e:cc:0a:42:
fa:73:4e:d7:90:a8:89:51:2f:c9:6a:ee:08:e9:95:
45:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:10:D8:E1:56:4E:40:31:2C:9D:DF:21:BA:2A:A0:3B:A5:59:EA:D6
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/cfda05-190d-4142-bd4f-b6a8f8e80f7b/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/cfda05-190d-4142-bd4f-b6a8f8e80f7b/1/bxDY4VZOQDEsnd8huiqgO6VZ6tY.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.247.136.0-46.247.141.255
85.190.64.0/19
87.121.208.0/21
185.161.168.0/22
185.231.8.0/22
185.253.168.0/22
IPv6:
2a0a:e800::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
64476
Signature Algorithm: sha256WithRSAEncryption
6e:46:38:68:d6:22:6b:1b:53:84:13:ff:3c:42:ac:7b:32:61:
34:de:6b:80:53:a1:84:b1:e3:93:fb:ea:38:04:48:6f:41:d7:
a6:3a:7a:f7:3f:f5:ec:81:88:4b:79:c0:f9:f7:e4:05:24:c6:
c1:8d:6d:d8:ed:b1:18:d4:46:c0:4b:41:9c:af:11:0d:03:59:
bd:b9:e1:73:73:10:1f:94:10:6f:73:74:a7:4e:a3:37:e7:56:
09:b5:75:27:d4:68:0b:42:6a:b5:53:04:a3:c7:41:52:14:a3:
c7:35:9e:ec:29:19:12:b0:b8:d0:92:0c:7f:fb:17:85:6f:49:
b6:83:f3:82:6e:75:eb:d1:c8:1d:12:d5:ac:7c:75:d0:d7:39:
c4:67:bc:3a:c3:84:3e:a1:6a:ed:aa:06:f6:1d:70:8c:0b:1e:
2f:a3:65:1d:62:ab:f5:33:01:f8:ca:b3:ce:e9:da:a1:97:7d:
12:e6:b8:80:b7:67:7a:c1:20:0b:26:75:2a:1b:a5:5a:bf:41:
e8:7c:c3:b6:0d:74:e5:3f:74:15:da:9e:c2:10:92:ff:7f:45:
86:e9:5f:bf:d4:c1:22:bf:a6:ca:32:2c:15:cd:05:0c:a0:85:
f3:1e:4e:e5:66:2d:5a:82:05:77:22:78:a0:90:4e:bc:a7:65:
0a:98:89:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 03:16:30 2024 by rpki-client on console-fra.rpki-client.org