Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dOugEi9kOtygy8b2pGgbbXfpNiA.cer
File: dOugEi9kOtygy8b2pGgbbXfpNiA.cer (raw, json)
Hash identifier: u/FlbNUNaMjbJ1MgwIpQPq9PoZ4luFLf6hUBdcu10ww=
Subject key identifier: 74:EB:A0:12:2F:64:3A:DC:A0:CB:C6:F6:A4:68:1B:6D:77:E9:36:20
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC64B209694AA6685E953526233BEEB03
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/72/b97693-1d02-40dc-9af7-a015168c3323/1/dOugEi9kOtygy8b2pGgbbXfpNiA.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/72/b97693-1d02-40dc-9af7-a015168c3323/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 18:31:01 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 51011
IP: 178.217.24.0/21
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4b:20:96:94:aa:66:85:e9:53:52:62:33:be:eb:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 18:31:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=74eba0122f643adca0cbc6f6a4681b6d77e93620
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:f1:fc:95:a0:03:69:78:c1:ec:f8:24:03:58:
18:54:2c:2f:f1:e4:df:dc:d1:b5:8e:66:d0:a3:8a:
82:70:27:4e:a8:44:e6:b4:91:aa:cb:75:fc:0c:da:
e9:69:a7:fe:e6:f9:13:30:97:b6:b0:0d:b7:45:c7:
9f:e6:c5:2a:0e:fd:b1:bd:ff:ab:9b:f7:df:41:7d:
9a:17:11:07:91:29:5f:b7:ae:d4:9f:d9:72:14:15:
69:1e:04:65:ef:38:ff:b9:1d:4e:9a:53:b1:d4:81:
34:a4:ab:3e:7b:94:da:97:c3:e1:e8:55:d4:e7:78:
f8:f7:f1:b1:06:e2:73:8c:4f:75:69:cd:f4:23:6a:
9c:9c:df:63:f6:9e:d8:8d:db:00:e4:07:34:3a:8c:
8c:44:47:06:f4:ab:55:a8:9f:0a:3b:07:da:c6:f3:
fb:a4:45:5e:a2:75:f8:e6:de:83:30:66:30:ac:8a:
a8:63:e5:18:6e:6a:26:82:72:db:90:da:d8:d6:fd:
4c:80:e5:9e:69:a3:89:d7:8c:92:e8:65:40:e5:ad:
5c:01:24:4e:99:17:6d:aa:81:da:d3:49:a2:e5:f2:
62:74:7c:44:55:0b:ee:d5:63:2c:a0:34:60:63:4b:
a4:02:75:cf:99:7b:08:c0:7a:28:82:b2:80:d3:b5:
03:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:EB:A0:12:2F:64:3A:DC:A0:CB:C6:F6:A4:68:1B:6D:77:E9:36:20
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/b97693-1d02-40dc-9af7-a015168c3323/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/b97693-1d02-40dc-9af7-a015168c3323/1/dOugEi9kOtygy8b2pGgbbXfpNiA.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.217.24.0/21
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
51011
Signature Algorithm: sha256WithRSAEncryption
6d:e2:ea:80:f1:86:6a:d3:80:2b:16:e2:ec:1e:72:6a:6a:ed:
e0:98:19:99:61:f2:8c:ec:ea:25:ec:5f:30:7c:ab:c4:0d:27:
e9:14:03:2a:d9:49:ef:b4:90:87:9c:1f:01:d8:9a:d0:af:74:
00:96:31:da:3d:04:db:fc:b0:54:06:c2:6d:d0:de:35:11:8b:
d1:9d:e8:85:a9:20:44:bd:29:d9:50:78:83:36:a4:11:0c:83:
1d:38:19:1a:f1:88:05:54:4d:66:52:6b:a5:36:ae:1f:46:c8:
06:41:2d:5e:eb:d8:a5:62:a9:0d:00:c7:e9:4b:29:ec:f0:01:
b1:1f:82:d5:69:23:b7:c8:f5:bb:36:5e:a0:27:aa:50:26:28:
da:12:1d:b5:3f:9b:c3:66:97:61:b0:ef:7f:8f:c8:7a:3e:d3:
a4:fb:b1:d7:a3:9c:5c:85:80:50:3c:fb:d5:d5:ab:75:07:ad:
39:80:4e:48:00:f5:1c:9b:09:d1:06:36:a9:69:35:29:5f:02:
0f:49:82:fd:e0:48:6b:1f:e8:ca:bb:e4:3a:19:e4:4c:08:f0:
22:4c:eb:4c:d3:66:ad:0f:a8:11:28:da:de:d2:43:98:33:5d:
82:39:98:d9:a8:e0:b4:ea:8c:3d:e3:60:d1:c7:db:19:a8:f1:
fd:52:40:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 10:40:06 2024 by rpki-client on console-fra.rpki-client.org