Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cCw58YaCB38HK2IRb9TxaQh0r5Y.cer
File: cCw58YaCB38HK2IRb9TxaQh0r5Y.cer (raw, json)
Hash identifier: nr7jpVlrblR/RMPIvVcqHxFZgXQ0RDldVsWRV91sHO8=
Subject key identifier: 70:2C:39:F1:86:82:07:7F:07:2B:62:11:6F:D4:F1:69:08:74:AF:96
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC26D164261D1E121AD97E048E5A4956D
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/66/8365af-f851-4b7c-a891-38805dbff719/1/cCw58YaCB38HK2IRb9TxaQh0r5Y.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/66/8365af-f851-4b7c-a891-38805dbff719/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 00:29:38 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 44912
IP: 217.18.95.0/24
IP: 2a13:c180::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:6d:16:42:61:d1:e1:21:ad:97:e0:48:e5:a4:95:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 00:29:38 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=702c39f18682077f072b62116fd4f1690874af96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:68:94:c9:d8:b9:1a:1d:76:42:36:b5:80:73:
52:dc:1b:a2:28:d8:49:92:71:db:03:87:06:14:93:
95:42:75:e2:9c:16:15:30:26:5a:74:b5:b8:ab:da:
48:2a:d7:86:37:0e:2b:43:fa:fb:88:9c:30:52:6b:
d1:fb:e6:24:9b:21:fa:27:c7:8d:03:77:cd:29:c9:
f1:4c:cd:20:49:d8:21:5a:86:81:f0:8a:16:5c:96:
03:7c:46:fc:c9:8f:f9:60:77:0f:01:54:7b:43:41:
60:0c:1a:14:79:7d:e2:4c:a7:ff:07:2e:59:da:76:
b7:40:05:52:41:16:8a:07:1b:a1:2f:a4:f9:e9:db:
e6:63:96:61:71:ea:ac:e1:7c:b4:61:c0:bb:62:52:
a8:b1:e2:ba:b1:90:15:e8:93:50:4a:54:9a:06:1e:
ab:08:c3:2c:1a:89:57:a3:09:d8:9d:6c:fd:b5:63:
ac:d8:9e:f9:37:7a:d7:1e:ba:9d:cc:d3:41:1d:54:
64:5a:a4:39:3c:f6:36:39:be:9a:be:8f:4c:19:2b:
3b:03:39:0f:9b:5c:79:aa:fc:b3:59:62:65:46:7c:
60:6d:eb:e5:41:a1:d8:0f:d7:77:3e:0f:34:73:96:
b1:8f:82:4c:b5:ba:9e:6e:53:c9:0a:99:98:c1:a6:
9f:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:2C:39:F1:86:82:07:7F:07:2B:62:11:6F:D4:F1:69:08:74:AF:96
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/8365af-f851-4b7c-a891-38805dbff719/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/8365af-f851-4b7c-a891-38805dbff719/1/cCw58YaCB38HK2IRb9TxaQh0r5Y.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.18.95.0/24
IPv6:
2a13:c180::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
44912
Signature Algorithm: sha256WithRSAEncryption
44:48:9b:bd:96:0f:b1:69:8b:ab:87:54:6e:82:5c:aa:eb:a9:
8e:fa:72:07:33:19:30:44:a6:04:67:cd:de:ab:28:d5:16:29:
bd:87:72:21:e4:b6:c9:c6:cc:15:5a:3f:14:12:f6:1d:19:e7:
e6:d4:5e:01:c8:23:48:fb:e2:81:14:b4:7f:56:43:62:5a:79:
28:56:dc:15:68:9a:1b:48:42:3c:5f:5f:dd:3f:ff:bf:03:34:
21:6a:6f:32:83:5d:16:20:ce:aa:1a:8b:a5:5b:2a:e5:ff:d2:
ea:b5:f3:b2:57:06:cc:94:59:d4:c6:14:fa:45:dc:eb:e2:31:
d2:fa:c1:2e:b4:32:5b:2d:89:7b:5b:af:66:20:58:49:bf:83:
d2:a3:d9:fc:2a:b4:79:80:35:73:48:56:7d:21:fa:c5:63:d5:
5c:fd:3e:d1:dd:10:23:9b:79:9e:3a:9f:4a:e4:00:9d:95:8d:
f5:24:d9:05:c4:34:f6:00:9a:85:63:8f:ba:94:90:ee:b9:31:
e7:cb:d8:6c:5b:d5:bc:bd:2e:06:f7:47:ee:d9:68:a0:17:4b:
e5:28:5f:33:e1:e0:e2:7e:49:ec:9b:52:b7:10:15:f2:1f:e8:
26:b6:61:6d:73:ea:f7:85:0a:96:1c:e7:8e:45:95:10:84:9f:
8b:33:16:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 09:20:43 2024 by rpki-client on console-ams.rpki-client.org