Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bzycduKvxzzO28ngKS_7mfZec1I.cer
File: bzycduKvxzzO28ngKS_7mfZec1I.cer (raw, json)
Hash identifier: m1UpKRNclZplYNzm80U4hd96a+5J+4dnSGe8zfpYgbM=
Subject key identifier: 6F:3C:9C:76:E2:AF:C7:3C:CE:DB:C9:E0:29:2F:FB:99:F6:5E:73:52
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC794FF0980BA22C0D394476CD17CAFF5
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/80/e5dfe6-18bb-48a5-8622-59207d8420d0/1/bzycduKvxzzO28ngKS_7mfZec1I.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/80/e5dfe6-18bb-48a5-8622-59207d8420d0/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 00:31:19 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 203730
IP: 185.106.116.0/22
IP: 2a0d:9f80::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:94:ff:09:80:ba:22:c0:d3:94:47:6c:d1:7c:af:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 00:31:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6f3c9c76e2afc73ccedbc9e0292ffb99f65e7352
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:60:2b:50:cf:0c:9d:84:f8:f5:f5:92:a4:ce:
23:ec:52:77:42:dc:49:fe:37:91:f3:12:a6:89:f1:
2e:4b:83:01:22:5c:8f:d0:23:9c:42:f1:39:e3:dd:
c3:a9:f2:c5:80:c0:7a:fb:78:37:86:d5:49:96:0d:
3d:ff:f3:08:51:9d:53:87:8b:1c:89:e0:b5:88:5b:
35:c0:48:fd:7a:5b:99:48:ce:f6:24:f9:19:d8:d7:
77:30:2d:73:8a:6d:8d:8f:71:5a:3f:f0:d3:f4:cf:
73:4f:34:68:9d:36:f7:df:55:8d:58:0c:0a:7d:7c:
8b:d1:33:55:cb:20:c1:f8:38:f5:33:31:54:98:47:
3b:8d:c1:62:af:2e:f6:fb:64:b3:e5:5b:88:3c:ec:
1a:7b:ff:d0:02:25:17:e2:4f:13:e8:08:78:c1:37:
33:a6:5a:24:fb:cc:8b:2b:89:22:26:e0:12:45:32:
4d:3d:f7:91:db:5b:f1:c6:0a:31:c3:e1:d6:1c:e9:
c3:a5:51:cf:5b:d0:52:e6:25:03:6c:c7:2c:84:6f:
bf:30:21:17:75:fb:29:48:1d:09:c7:04:bb:d9:f9:
e1:20:2a:2f:bc:07:2d:5c:d6:50:9d:fc:f6:b2:0a:
97:96:87:71:bd:af:51:49:47:e3:d5:31:e1:fa:75:
fd:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:3C:9C:76:E2:AF:C7:3C:CE:DB:C9:E0:29:2F:FB:99:F6:5E:73:52
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/e5dfe6-18bb-48a5-8622-59207d8420d0/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/e5dfe6-18bb-48a5-8622-59207d8420d0/1/bzycduKvxzzO28ngKS_7mfZec1I.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.106.116.0/22
IPv6:
2a0d:9f80::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
203730
Signature Algorithm: sha256WithRSAEncryption
88:f2:78:8f:41:09:07:88:a7:52:22:df:1d:81:66:65:5f:f2:
e0:f5:18:88:1d:a2:bd:5a:a5:4a:b8:69:dc:b9:30:df:b4:73:
3d:3a:45:09:30:8d:3b:97:d9:ca:42:94:44:64:b6:92:c5:df:
4f:99:81:17:1f:eb:1a:ad:d2:e4:42:50:87:dd:79:fb:5b:72:
cc:51:6f:af:c5:2d:a8:4f:e5:8e:cf:9f:fe:2e:06:eb:94:2e:
92:6a:7a:bd:2b:b0:22:ce:9b:33:b8:e4:3b:87:8d:ce:3e:16:
60:b4:31:7a:68:9b:3f:4f:5b:aa:79:fc:f5:eb:60:a3:21:03:
59:60:4e:6c:44:dd:8b:61:ac:d5:dc:a2:68:86:e9:98:4c:dd:
6c:c4:4e:02:dc:5f:bc:ee:cb:ac:a1:d9:c9:6d:15:c0:dc:e5:
1f:37:a0:51:ea:93:da:d7:ed:a4:e7:b0:3b:7d:25:04:7c:83:
39:aa:08:fe:ed:c5:79:8c:20:3b:4b:a5:44:b1:b4:07:66:17:
31:c9:98:e4:a0:cf:ea:46:1c:57:5f:47:41:9a:75:2b:72:d0:
26:cd:9f:79:90:6e:af:e9:b1:1c:d4:71:92:7e:78:07:11:50:
ac:45:dc:5e:49:3a:eb:2e:da:47:8e:36:27:42:8a:63:9e:47:
46:d3:cd:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 01:56:33 2024 by rpki-client on console-ams.rpki-client.org