Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eSMEzs5_tlUdYh4ld0N1PX0-fro.cer
File: eSMEzs5_tlUdYh4ld0N1PX0-fro.cer (raw, json)
Hash identifier: 4q2Mu5Vtgr0a7cdbpVYZdfDXA/YCtLHBToEvA38Cm/w=
Subject key identifier: 79:23:04:CE:CE:7F:B6:55:1D:62:1E:25:77:43:75:3D:7D:3E:7E:BA
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC5DCD1E4DFAD0B3F569131F7127B45FA
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/8f/e84b5d-3511-44e9-9261-ed82ae7dbd59/1/eSMEzs5_tlUdYh4ld0N1PX0-fro.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/8f/e84b5d-3511-44e9-9261-ed82ae7dbd59/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 16:30:32 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 59574
IP: 95.215.230.0/23
IP: 185.204.110.0/24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:dc:d1:e4:df:ad:0b:3f:56:91:31:f7:12:7b:45:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 16:30:32 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=792304cece7fb6551d621e257743753d7d3e7eba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:92:96:15:ab:a4:36:1e:d3:2d:91:2c:30:f0:
c9:7c:c5:2b:7d:80:85:06:6e:7a:18:92:42:d8:2e:
8e:43:6f:db:d9:7d:4e:67:fc:c5:6e:89:a3:13:70:
cf:fb:5d:60:b5:cc:1b:d0:d2:f3:34:1d:48:a4:d9:
5d:19:5a:29:2d:85:0a:cb:29:9e:15:80:c3:2a:92:
84:23:6a:2b:4e:f9:f6:e6:43:e9:8a:eb:a4:73:6f:
9d:ab:82:d0:ba:19:e4:fc:ac:1f:68:5c:53:77:94:
11:94:2b:ab:71:dc:4c:50:37:27:3a:cf:99:2f:51:
e2:ce:a7:28:6f:47:8f:ae:35:f9:8b:c9:44:4a:74:
8f:c9:6d:74:92:2f:72:08:9a:73:86:b7:e9:4f:46:
a5:ac:e8:09:5e:3b:01:47:e8:c7:20:5d:37:d9:59:
e3:9c:cd:d5:c5:79:e7:e8:87:3f:e3:84:1e:af:05:
b6:e5:2a:a8:a7:e6:f2:cb:17:79:54:5a:89:e7:3c:
8c:c4:b5:7e:14:5c:ba:2f:bf:79:fe:e1:08:74:0f:
56:8f:5f:f1:de:6f:bc:cf:cf:cb:61:c6:82:27:32:
b6:7f:66:bf:eb:10:1f:07:c4:90:9f:e6:3b:c1:fa:
75:8c:5d:e6:63:45:c6:31:9c:44:a7:b9:49:b3:6f:
3f:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:23:04:CE:CE:7F:B6:55:1D:62:1E:25:77:43:75:3D:7D:3E:7E:BA
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/e84b5d-3511-44e9-9261-ed82ae7dbd59/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/e84b5d-3511-44e9-9261-ed82ae7dbd59/1/eSMEzs5_tlUdYh4ld0N1PX0-fro.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.215.230.0/23
185.204.110.0/24
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
59574
Signature Algorithm: sha256WithRSAEncryption
64:61:8e:3d:4c:68:f2:ba:65:d7:e1:14:9f:f2:dc:e4:1b:50:
76:14:30:d6:75:ff:66:40:db:01:7e:7c:4c:41:3f:b0:cc:0b:
28:83:3f:d0:88:49:66:5d:4f:87:ec:72:5d:d7:04:66:8f:ed:
c8:02:50:ff:02:71:0b:78:53:dd:44:25:26:cb:89:90:13:a7:
52:d8:21:f8:75:4e:3f:7e:27:70:6d:7b:2f:c0:f6:46:5f:c2:
4a:20:e0:79:62:5b:f7:29:37:31:cd:5c:50:8e:e9:52:00:ec:
65:ac:78:c5:95:32:01:d7:8c:c6:9f:33:36:a3:f5:03:8a:bd:
fc:ea:2d:7e:c7:57:aa:9a:78:ba:e6:f2:82:ad:6f:18:ad:4b:
8d:53:96:5b:fb:92:81:09:63:a1:3e:3f:c8:48:bf:dd:86:2b:
7d:0c:bc:76:bf:19:e7:79:17:e6:f1:ef:79:3c:22:b9:f9:0a:
ea:ab:b3:6e:9c:12:f3:15:fa:94:c3:d5:fd:7c:c1:83:86:eb:
9f:7f:46:90:26:80:58:f6:88:13:a9:22:c2:3e:a0:fd:2e:6b:
8c:b5:3d:9d:74:fc:bb:3a:fb:94:99:92:eb:11:f0:c1:34:d0:
55:ef:e2:1c:6f:ee:b3:60:f5:38:e5:d5:38:78:de:3a:65:35:
af:3d:e3:7b
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Wed Nov 27 00:38:20 2024 by rpki-client on console-ams.rpki-client.org