Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/criGdSR84YZaNT9M71sqwoijlpg.cer
File: criGdSR84YZaNT9M71sqwoijlpg.cer (raw, json)
Hash identifier: vS3uVIa/PN9Zjby5oCDWKgZ6cxVF6cYHLYZ6jnnbc/s=
Subject key identifier: 72:B8:86:75:24:7C:E1:86:5A:35:3F:4C:EF:5B:2A:C2:88:A3:96:98
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018EC3228EFC922096267DD59245DE769035
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/c4/14dd6e-6773-47ff-8e3b-1137073fa8f6/1/criGdSR84YZaNT9M71sqwoijlpg.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/c4/14dd6e-6773-47ff-8e3b-1137073fa8f6/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 09 Apr 2024 13:53:25 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 202302
IP: 31.42.188.0/22
IP: 46.175.144.0/21
IP: 91.219.60.0/22
IP: 194.61.52.0/22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:c3:22:8e:fc:92:20:96:26:7d:d5:92:45:de:76:90:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Apr 9 13:53:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=72b88675247ce1865a353f4cef5b2ac288a39698
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:4f:d7:81:49:5c:b3:cf:e8:5d:8b:02:43:dc:
98:3e:af:e2:3c:f7:b4:fd:bf:74:20:89:3f:d3:eb:
6a:8b:82:a5:84:ab:e0:31:db:d3:0c:4d:78:73:01:
ce:f7:93:19:57:ca:1e:da:c7:70:ec:a8:6d:da:d0:
32:92:48:75:77:e7:36:43:ed:13:d9:0d:39:af:f1:
2e:f1:a8:14:9e:73:2b:59:0a:50:fb:27:21:32:3f:
74:e5:2b:24:1a:50:d9:de:a4:46:29:f3:9a:7d:c1:
b3:db:fc:e9:2d:41:5f:b4:74:04:fe:4b:49:d5:ac:
f9:57:59:b0:1b:ed:e2:ad:c3:d6:91:43:b2:02:79:
f5:ac:1d:6d:0a:1f:47:31:95:17:f9:24:cf:85:2b:
73:98:bc:b3:7c:b6:e1:4b:8d:56:42:ce:c2:9d:90:
ab:0b:19:bb:08:aa:b8:e6:1c:02:ef:8e:0e:68:4b:
60:7f:5a:55:25:d6:58:41:f8:ec:c0:0a:bc:6d:2a:
4a:ab:da:9b:e7:b9:a0:ec:33:62:ba:51:ca:75:19:
6d:5e:e8:a8:7a:b6:9f:db:dc:6e:82:80:5c:31:07:
37:5b:d0:ab:13:e9:10:9c:0d:ef:a9:75:3f:00:36:
6a:f1:42:80:a1:97:0d:24:36:af:87:3c:ea:1c:94:
11:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:B8:86:75:24:7C:E1:86:5A:35:3F:4C:EF:5B:2A:C2:88:A3:96:98
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/14dd6e-6773-47ff-8e3b-1137073fa8f6/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/14dd6e-6773-47ff-8e3b-1137073fa8f6/1/criGdSR84YZaNT9M71sqwoijlpg.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.42.188.0/22
46.175.144.0/21
91.219.60.0/22
194.61.52.0/22
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
202302
Signature Algorithm: sha256WithRSAEncryption
18:a5:40:e1:07:1a:36:10:16:c4:e5:36:59:e1:0a:c7:fd:d7:
96:2a:54:d1:0c:47:91:27:fd:19:69:4e:72:af:84:f8:f7:c5:
ea:3e:e7:b0:43:8c:54:1d:30:6e:4c:de:63:ef:3a:b1:bf:45:
03:cb:71:b9:13:2c:b0:59:54:12:60:f8:91:e6:6d:45:5f:1b:
c1:4f:21:d2:52:69:b1:bd:8c:97:2a:07:37:db:9c:3f:7f:f3:
f9:31:14:e2:2e:bd:65:44:0f:f7:1e:d6:02:10:e7:ba:74:fc:
80:d2:22:71:b0:04:cb:54:f0:6b:10:dc:3d:f0:f4:a8:20:27:
d4:7a:9c:fe:ff:68:dc:9d:7d:eb:dc:bd:c5:d4:6f:49:46:91:
28:c8:de:b8:59:5d:d6:a8:21:95:5d:01:9c:a5:18:22:76:1d:
7f:56:48:0a:14:a1:b6:28:18:d7:fa:22:9b:b3:1b:52:b3:15:
21:e3:35:96:d4:f1:32:56:dc:a5:e2:26:86:40:b1:d1:2f:15:
39:42:76:7c:67:5d:da:a3:3d:8e:4b:6c:b2:7c:55:68:10:7a:
47:fd:fc:fa:57:23:d0:8a:17:c9:5f:0c:78:c5:06:43:08:d9:
f2:2b:0c:ff:9b:e5:ec:dc:0a:4f:5b:14:4f:5f:20:b8:c4:e5:
8f:34:1f:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 01:59:54 2024 by rpki-client on console-ams.rpki-client.org