Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cS-cs8KYsVC-t5CAN290verEOKw.cer
File: cS-cs8KYsVC-t5CAN290verEOKw.cer (raw, json)
Hash identifier: HsGFgl3Zna1GSBEPd2ckPYW0g/gfXbL2URuhuBR0g0A=
Subject key identifier: 71:2F:9C:B3:C2:98:B1:50:BE:B7:90:80:37:6F:74:BD:EA:C4:38:AC
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC64A892D4D965A13464B20421ABCF249
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/d9/e2e119-fd78-4b1a-b16a-987da4392056/1/cS-cs8KYsVC-t5CAN290verEOKw.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/d9/e2e119-fd78-4b1a-b16a-987da4392056/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 18:30:22 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 49623
AS: 60983
IP: 185.22.128.0/22
IP: 193.169.46.0/23
IP: 2a00:6060::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4a:89:2d:4d:96:5a:13:46:4b:20:42:1a:bc:f2:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 18:30:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=712f9cb3c298b150beb79080376f74bdeac438ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:74:f5:1d:59:6c:c0:6a:e7:4a:ab:ca:8b:64:
bf:36:63:05:68:0a:d9:47:4f:1b:0a:9a:e7:41:cf:
d8:19:78:0a:c2:bc:c1:57:fa:af:79:c6:26:67:11:
7d:6f:98:16:b5:b8:81:49:c4:b5:e5:41:70:cf:c0:
51:c7:93:be:7f:77:cf:2e:68:3d:c2:f3:84:50:57:
0a:c3:31:a6:30:c6:92:ed:1c:7b:3f:3e:13:20:4f:
0c:64:a8:5a:6a:01:1e:6a:9c:25:96:49:8c:dc:e4:
44:92:77:4c:96:74:77:ca:4b:19:6b:8c:d2:3c:75:
41:56:25:2d:68:47:c5:76:c4:9f:75:f1:ae:db:c6:
c7:0d:45:c5:27:8b:52:46:9f:cd:42:81:a3:86:d6:
60:b3:c3:c1:cf:40:fd:da:18:0c:76:e1:38:45:4c:
56:8b:d5:bd:c4:a8:9d:f4:9a:26:4c:65:ca:07:af:
32:3e:6a:5e:eb:12:23:82:96:01:b6:57:b7:4a:b2:
76:ab:bd:8d:63:36:88:0a:27:36:bc:d9:cb:1d:4d:
fa:ef:9b:bb:e4:6d:41:07:f0:9f:44:c6:e2:e9:fe:
ed:d6:ee:10:75:7b:f1:cf:a8:39:fd:1e:21:d3:32:
03:c6:90:bf:a5:aa:34:9a:08:2d:1e:17:19:75:eb:
07:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:2F:9C:B3:C2:98:B1:50:BE:B7:90:80:37:6F:74:BD:EA:C4:38:AC
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/e2e119-fd78-4b1a-b16a-987da4392056/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/e2e119-fd78-4b1a-b16a-987da4392056/1/cS-cs8KYsVC-t5CAN290verEOKw.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.22.128.0/22
193.169.46.0/23
IPv6:
2a00:6060::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
49623
60983
Signature Algorithm: sha256WithRSAEncryption
91:66:7b:a0:4a:2b:98:c7:77:33:45:d5:07:41:3d:1a:4f:2a:
d5:7d:99:9f:97:06:c8:d4:82:3e:c9:f6:50:d6:ff:52:ba:de:
25:64:2b:d1:50:a9:aa:ea:4a:05:e0:8f:44:cf:99:6b:ce:ac:
c9:39:78:e3:09:67:ef:09:b6:e7:5f:5d:49:30:88:f3:67:0c:
89:29:a8:05:87:a8:83:2f:b9:35:14:ea:06:5c:96:fe:4f:9b:
b5:bd:b1:1c:ff:f0:c3:b8:a3:a0:a7:f5:14:99:a3:c7:2f:af:
55:7e:13:5d:ce:32:0b:0f:8a:5b:f5:0c:2a:96:26:da:08:54:
0f:94:aa:fb:7b:e7:90:9d:86:e2:2a:f6:4c:e8:c9:ea:8a:2d:
01:62:74:7d:b3:0f:45:97:05:9c:32:60:24:92:b5:99:a9:9d:
eb:46:12:ec:c8:7f:ed:f7:69:75:86:2e:bf:2f:82:dc:ce:db:
2d:23:a8:85:96:37:ef:ea:a5:32:19:57:ea:02:8c:9f:39:76:
a7:b8:46:14:ad:f7:77:68:49:6e:00:24:c0:b9:a5:1a:6c:72:
17:b4:50:f7:ff:3d:81:44:6c:27:bc:ec:44:ef:df:67:c3:a4:
fc:53:21:a7:c4:23:8f:70:b5:7f:27:97:01:cd:b7:80:fa:32:
65:e7:b2:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 07:14:10 2024 by rpki-client on console-ams.rpki-client.org