Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5KQMR5unPpeUX-rsNlvqaccPaE.cer
File: d5KQMR5unPpeUX-rsNlvqaccPaE.cer (raw, json)
Hash identifier: NhwRgRcl1k4Du2vJNB1nPqpcl9+4qTq6mgB7nOCBNyA=
Subject key identifier: 77:92:90:31:1E:6E:9C:FA:5E:51:7F:AB:B0:D9:6F:A9:A7:1C:3D:A1
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC5010DF22B33C80FA8E9045E5AF81F17
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/71/b8e03e-c398-4eee-8939-f909d79a44ad/1/d5KQMR5unPpeUX-rsNlvqaccPaE.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/71/b8e03e-c398-4eee-8939-f909d79a44ad/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 12:30:29 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 208071
IP: 45.159.160.0/22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:01:0d:f2:2b:33:c8:0f:a8:e9:04:5e:5a:f8:1f:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 12:30:29 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=779290311e6e9cfa5e517fabb0d96fa9a71c3da1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:e3:1f:ad:76:c8:01:23:85:95:4b:fb:f6:92:
99:99:41:af:a3:3a:b5:55:bc:1c:6b:1b:a1:57:29:
ed:57:37:28:5c:ed:ec:08:3b:3a:a8:87:be:5a:86:
15:ea:cb:7a:64:34:e1:24:20:cc:f8:62:f0:04:85:
4c:cf:a0:f8:11:bd:21:13:01:7d:2d:81:d9:e5:d5:
3e:3e:0f:37:7e:fd:55:d8:f7:4a:ca:66:50:05:a7:
ac:d5:a4:d2:1c:16:11:d4:b2:8f:db:27:0c:d9:c2:
cf:f9:ca:e9:54:22:26:6c:59:5b:b1:f0:a2:de:da:
e3:b9:1e:03:d4:50:ad:0d:46:75:9d:4e:78:35:a3:
08:b3:d2:d6:08:a2:88:3c:42:96:2e:d9:0b:0c:72:
1e:30:b6:40:41:20:32:f0:eb:cf:89:8c:e0:cf:71:
ae:49:bf:1f:fa:e5:21:41:99:68:26:ee:fa:f3:ac:
0b:c3:6d:29:48:ca:97:7e:01:1c:58:78:75:56:76:
d6:29:cf:96:e7:0b:ed:a1:f3:97:2e:cb:76:fb:f3:
38:ae:23:ae:a7:7d:68:19:ce:2b:65:0b:c0:51:c1:
8f:8f:c2:9f:25:f2:46:78:e5:44:85:c6:60:02:00:
61:a2:4d:1b:7e:c9:0d:a9:49:d8:62:ed:da:19:b4:
64:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:92:90:31:1E:6E:9C:FA:5E:51:7F:AB:B0:D9:6F:A9:A7:1C:3D:A1
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/b8e03e-c398-4eee-8939-f909d79a44ad/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/b8e03e-c398-4eee-8939-f909d79a44ad/1/d5KQMR5unPpeUX-rsNlvqaccPaE.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.159.160.0/22
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
208071
Signature Algorithm: sha256WithRSAEncryption
09:93:9e:4a:c6:0c:e9:54:b4:5b:5b:d2:d9:61:ff:a0:8b:8a:
8b:69:80:c6:73:bf:2d:d6:ce:86:fc:13:e0:95:06:9a:72:40:
a0:9a:74:f3:ba:75:98:a0:de:1a:d2:48:d9:f3:8d:0f:31:f5:
d7:b4:77:7d:c7:a0:27:3a:3d:54:f7:1b:1d:71:23:be:5c:40:
65:8e:a3:17:09:dd:d8:bf:a4:75:f0:60:57:f3:59:be:6a:55:
6f:84:05:1f:85:15:07:86:b8:4d:8f:1e:f2:c6:06:e3:de:ab:
1f:6f:ff:0b:11:61:c9:04:4b:82:8f:a6:6c:a5:e3:79:10:69:
ac:6c:fe:83:26:17:7b:18:bf:2d:a6:ca:62:6f:65:77:d9:08:
72:ff:ae:14:b0:0f:f0:9e:5b:af:fb:9c:1b:79:27:0b:7a:e0:
1d:f2:be:40:77:ba:e9:3e:66:b0:99:24:dd:19:85:3e:68:3f:
d8:4a:7c:de:4d:2e:86:ba:be:bb:95:fb:03:0f:85:2c:fe:1c:
30:b3:51:c8:d2:b9:14:db:fb:5b:2a:40:59:e4:6b:25:ed:bc:
de:16:e7:a2:0a:50:2b:a5:44:3b:9a:1b:bb:ee:d4:b3:89:dc:
ac:70:f9:06:5b:57:4e:42:69:43:af:ca:1f:04:24:93:7b:33:
05:8a:7b:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:57:47 2024 by rpki-client on console-ams.rpki-client.org