Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dIZPUCPsYmPvnxb5AYf18oBh0RU.cer
File: dIZPUCPsYmPvnxb5AYf18oBh0RU.cer (raw, json)
Hash identifier: ag6t3yT/JnfNCpwKqf+tKiB62JTNbFA8L01FT36YQCM=
Subject key identifier: 74:86:4F:50:23:EC:62:63:EF:9F:16:F9:01:87:F5:F2:80:61:D1:15
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC801C6A377E0E9852F2C8A4D7658EE75
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/01/0ca4df-2e06-4406-9688-78f02805c709/1/dIZPUCPsYmPvnxb5AYf18oBh0RU.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/01/0ca4df-2e06-4406-9688-78f02805c709/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 02:30:08 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 198470
IP: 91.235.82.0/24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:c6:a3:77:e0:e9:85:2f:2c:8a:4d:76:58:ee:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 02:30:08 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=74864f5023ec6263ef9f16f90187f5f28061d115
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:c3:22:02:ba:25:12:9a:3b:8b:dd:e6:10:0d:
81:91:5e:38:c3:18:5f:31:5a:1a:fe:0b:98:86:54:
7b:64:ef:5d:86:9e:22:42:3e:e7:ec:ca:e3:6b:92:
6a:c9:36:b7:d2:76:85:c5:13:20:a1:6d:bd:3d:35:
61:52:a5:2c:c0:78:f6:5a:eb:d1:c2:95:1d:b9:ac:
25:0d:2c:2f:2f:e3:5b:af:8b:17:8c:f7:9a:1c:2d:
99:2b:9d:3e:d2:c2:82:91:a0:63:a0:f7:ce:3e:b9:
6c:11:17:c1:0e:6c:7d:7a:82:f0:ab:85:0a:e4:f8:
90:1f:ef:18:16:32:ca:ee:c2:00:ab:83:be:e6:5d:
8e:a5:d2:a7:45:84:79:68:6d:7c:6e:a8:a2:0f:5f:
c1:c7:96:08:f8:8c:d6:01:1c:3a:ab:a5:67:a3:5a:
25:ae:9f:07:ca:9e:19:43:ca:3c:20:c2:f8:52:66:
8e:3c:56:cd:6f:d5:01:75:f9:a7:17:72:78:f2:d7:
e1:07:a4:8c:b9:d1:fc:4d:8b:3c:91:74:4c:6d:16:
b6:01:8a:4a:1e:36:f7:0a:f1:f5:e6:7e:76:e4:c8:
5f:40:dd:0b:22:06:ae:7f:39:f4:59:e9:0b:a9:22:
5f:e0:be:62:af:55:71:0f:08:52:5e:26:5f:74:f4:
dc:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:86:4F:50:23:EC:62:63:EF:9F:16:F9:01:87:F5:F2:80:61:D1:15
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/0ca4df-2e06-4406-9688-78f02805c709/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/0ca4df-2e06-4406-9688-78f02805c709/1/dIZPUCPsYmPvnxb5AYf18oBh0RU.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.235.82.0/24
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
198470
Signature Algorithm: sha256WithRSAEncryption
32:f8:35:2d:23:50:91:48:89:9f:30:2d:ef:5a:cf:83:e2:e6:
0e:38:ce:32:a6:c2:92:6f:5b:f6:1d:e8:8e:cf:61:e1:b5:8a:
00:4a:11:3c:a5:18:94:8e:e4:65:cb:e3:42:8f:9c:e1:3d:b7:
48:15:d4:c6:e3:3f:9e:8d:57:96:ac:57:e1:25:18:33:e6:95:
5e:9b:41:38:29:04:09:6d:7b:ec:09:05:7b:c4:7b:02:0e:85:
d8:73:14:54:57:ae:fd:80:c4:76:99:13:5c:72:c4:7b:0e:4f:
d0:08:6d:2d:20:4d:7a:86:23:63:f7:d2:30:a3:b8:c9:5f:b4:
1a:6c:17:3d:82:e5:54:06:43:11:26:ce:c6:fa:58:70:6e:bf:
96:01:7f:d5:a3:7e:d2:5b:72:1e:39:b4:4c:0a:c1:75:93:87:
cb:ab:81:13:5f:81:0b:b1:e9:94:ef:51:0f:fc:d9:30:b0:f0:
9a:6a:5b:9b:82:32:58:3a:0e:a3:c1:b8:36:b7:2f:ae:86:7d:
26:44:d7:20:39:fd:d9:b2:28:35:a3:1c:10:cf:e4:81:2b:fd:
ec:fa:fb:c6:09:20:cf:db:67:f0:36:16:1f:61:f8:bb:81:7e:
9b:98:dd:4d:90:d3:c5:6f:45:e9:f3:df:07:e2:d0:bf:42:8a:
c4:87:77:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 10:39:59 2024 by rpki-client on console-fra.rpki-client.org