Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cMnQbFGt1oKQY_G2exddDAAB5zY.cer
File: cMnQbFGt1oKQY_G2exddDAAB5zY.cer (raw, json)
Hash identifier: WbR/l1Lt/HN/gTPb8AX1VPTrSllITSLl/4gcWQpYlug=
Subject key identifier: 70:C9:D0:6C:51:AD:D6:82:90:63:F1:B6:7B:17:5D:0C:00:01:E7:36
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC34920C0E49CC191A65C0A3709EE2D37
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/e6/28dd30-ec08-4dc8-a1d1-5d3a86494775/1/cMnQbFGt1oKQY_G2exddDAAB5zY.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/e6/28dd30-ec08-4dc8-a1d1-5d3a86494775/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 04:29:58 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 216451
IP: 37.230.40.0/21
IP: 89.107.160.0/21
IP: 185.188.200.0/22
IP: 2a0b:2400::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 11:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:49:20:c0:e4:9c:c1:91:a6:5c:0a:37:09:ee:2d:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 04:29:58 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=70c9d06c51add6829063f1b67b175d0c0001e736
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:a0:5f:7f:cb:f9:40:0a:59:e1:a4:ea:48:64:
91:c2:5d:a1:96:a7:9e:a8:ae:a7:87:8e:b1:d9:87:
86:ba:69:f5:9d:8b:3f:58:96:71:45:7e:ab:06:f8:
c0:f0:54:b9:49:01:13:07:12:a6:1f:40:75:5e:1a:
ef:38:55:3f:d6:7f:ce:8f:e1:bb:10:a9:d8:3b:e3:
e8:81:c5:0d:72:4b:91:3c:6f:5b:e5:87:54:0f:c8:
66:7e:0f:57:ed:33:a7:21:5a:29:8d:db:68:18:06:
21:2c:33:84:08:a2:14:0f:20:f6:52:01:42:46:8d:
d5:0b:9d:39:e4:a0:9a:7a:8d:67:bb:d0:f8:24:1f:
82:85:96:8c:e8:f9:72:96:4e:d2:4c:6a:50:c7:c9:
a4:3b:85:fb:5c:53:be:30:4a:70:ca:8f:2d:cd:b9:
e5:7b:04:64:e9:cb:49:84:f6:74:9f:90:45:e6:5f:
f8:80:b9:c7:3b:01:1e:69:1e:59:4a:bc:9a:ad:7e:
26:9f:b7:21:c7:bb:0e:72:b6:6e:f4:87:0f:32:6a:
c0:ce:db:9b:79:e5:63:0e:89:b5:86:ea:09:75:49:
0d:45:6e:e9:81:91:7c:db:8e:80:8d:b8:2b:49:30:
ce:e2:fe:59:d0:9b:ed:d3:e4:95:3a:94:38:7e:b4:
7b:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:C9:D0:6C:51:AD:D6:82:90:63:F1:B6:7B:17:5D:0C:00:01:E7:36
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/28dd30-ec08-4dc8-a1d1-5d3a86494775/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/28dd30-ec08-4dc8-a1d1-5d3a86494775/1/cMnQbFGt1oKQY_G2exddDAAB5zY.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.230.40.0/21
89.107.160.0/21
185.188.200.0/22
IPv6:
2a0b:2400::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
216451
Signature Algorithm: sha256WithRSAEncryption
b0:0a:dd:ec:9e:23:cd:17:c7:72:ca:d8:84:36:50:89:08:c9:
29:ed:e0:d7:1e:83:8f:f0:1e:64:80:5c:df:cc:90:c6:69:7e:
d5:31:d2:21:78:56:8b:55:40:d0:98:7b:22:b7:cc:a2:b8:8b:
8f:a3:c1:2c:75:ad:16:8e:db:81:5c:3d:87:e7:7a:61:de:ed:
36:0e:e9:56:b3:3b:87:b4:df:25:e0:31:11:97:74:87:fa:1a:
27:d1:cb:52:2c:a8:8d:64:65:f0:14:d3:f6:38:86:84:7d:0b:
73:99:e1:21:f3:2e:48:62:20:5f:84:d0:68:8e:d3:1a:41:fe:
ea:ae:b4:d7:e9:c9:e1:65:cd:d5:49:56:37:11:22:9e:cc:d5:
55:d2:d6:d6:6f:84:a3:9d:6e:8f:f6:9d:80:71:01:7b:d7:8d:
35:ac:eb:84:16:27:36:cf:13:48:e0:98:b7:15:6a:85:22:36:
e5:44:7e:aa:63:4b:d0:0c:8b:25:21:fe:3d:5b:df:0a:7a:fe:
4d:b9:40:2c:8b:5b:5c:57:29:1a:ae:0b:9c:68:a8:88:ba:3d:
ab:e0:a3:0f:b0:28:f6:f2:91:f4:8a:46:a8:dc:93:a0:2b:52:
7f:fb:d0:ac:39:52:a8:61:37:e3:9a:5e:d9:34:1c:6a:ae:d7:
57:28:ee:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 13:37:32 2024 by rpki-client on console-fra.rpki-client.org