Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dixgr01zclhFzq8Le1hed1cGaWU.cer
File: dixgr01zclhFzq8Le1hed1cGaWU.cer (raw, json)
Hash identifier: NdcN0ThKiANTBFgItX40yEImvuAKiRPpMyj47R9GDEM=
Subject key identifier: 76:2C:60:AF:4D:73:72:58:45:CE:AF:0B:7B:58:5E:77:57:06:69:65
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC2DB4FB2D51EEF083D819D645B208778
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/43/e6a02e-0146-44a6-9dfc-d4209fc7f3c9/1/dixgr01zclhFzq8Le1hed1cGaWU.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/43/e6a02e-0146-44a6-9dfc-d4209fc7f3c9/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 02:30:01 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 39402
IP: 91.240.80.0/22
IP: 194.246.88.0/22
IP: 2a0d:e40::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:db:4f:b2:d5:1e:ef:08:3d:81:9d:64:5b:20:87:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 02:30:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=762c60af4d73725845ceaf0b7b585e7757066965
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:3e:48:50:7f:b1:99:ed:d5:ea:10:97:d0:1a:
14:99:63:24:d1:e6:19:f1:d8:77:6d:b6:4d:4f:14:
c8:c0:fb:17:ab:04:cf:44:26:06:dd:9a:04:90:cc:
94:62:af:43:89:51:d0:97:8e:81:1b:ef:b6:6b:55:
42:d5:b0:54:b5:40:4b:00:4a:e7:a1:41:9e:14:ac:
44:8a:98:20:db:bc:dd:10:34:cf:f1:7f:10:0f:a3:
88:71:a6:58:8e:d8:03:16:61:f2:53:32:b1:ba:dc:
51:9d:3f:5e:a7:a4:fe:c8:76:d1:79:e1:4b:b4:99:
1d:61:75:54:51:2b:ec:13:e0:b5:dd:16:25:7e:69:
da:fa:bd:1f:27:38:10:ff:48:e5:9e:21:65:fc:cb:
f3:33:27:73:5a:35:9a:a1:4e:74:fe:fb:fc:b8:e7:
0f:7d:35:5f:d1:5d:a5:69:96:75:94:f6:a4:b9:6e:
5a:e9:2d:21:14:97:57:07:84:49:a1:0f:b2:d6:4c:
9e:c9:e0:06:57:ff:70:9a:c0:37:20:7e:9a:3f:02:
47:59:51:36:a7:65:ad:7f:b7:2a:c1:6b:30:1c:06:
58:f0:e5:b5:7e:67:27:45:1f:1d:9b:a2:78:3e:c6:
94:99:7b:e7:cc:32:03:fc:77:96:58:6a:82:d7:bd:
c0:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:2C:60:AF:4D:73:72:58:45:CE:AF:0B:7B:58:5E:77:57:06:69:65
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/e6a02e-0146-44a6-9dfc-d4209fc7f3c9/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/e6a02e-0146-44a6-9dfc-d4209fc7f3c9/1/dixgr01zclhFzq8Le1hed1cGaWU.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.240.80.0/22
194.246.88.0/22
IPv6:
2a0d:e40::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
39402
Signature Algorithm: sha256WithRSAEncryption
86:18:1f:7a:40:58:00:32:c3:51:28:23:2e:d8:c8:76:11:04:
11:76:2f:71:39:9c:79:59:9f:81:8d:02:62:03:2d:a3:e2:d8:
3b:8f:85:07:6b:2f:c7:5b:54:60:d1:31:e7:33:0d:76:8c:47:
e4:8f:a6:c8:2c:3e:09:9c:38:e2:f8:d8:d7:ca:7a:a9:d5:a1:
45:73:69:6b:9d:e1:76:83:86:01:95:b7:e0:4a:0a:2a:b0:4a:
3d:95:e9:bb:53:b7:3f:0c:db:93:3c:7d:95:e9:f7:ca:49:d5:
77:77:f1:60:8d:b2:4c:e4:23:63:f9:81:40:6e:5a:3c:1f:df:
58:c7:5e:4a:dc:09:b9:0e:ef:71:46:ad:87:c4:27:6f:d8:0d:
f9:65:53:b0:3a:a1:c0:04:8e:4d:83:89:41:ed:85:eb:32:bb:
74:58:64:10:ce:4f:13:e6:97:83:c0:85:2d:88:54:a3:36:7d:
3d:33:f6:d6:2b:dc:3a:7e:cf:fb:ff:fc:86:0d:d9:18:39:83:
fc:71:31:ac:4b:8e:74:6a:0d:3b:7c:5b:6e:17:29:7b:08:a3:
21:ce:7a:e9:f6:01:93:74:41:a2:51:d6:57:51:b9:09:21:b1:
d2:73:39:ec:a7:a9:6e:a7:de:34:74:d2:54:7f:c3:16:1c:ec:
19:7b:28:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 03:25:26 2024 by rpki-client on console-fra.rpki-client.org