Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eU9rWbQ50XaZMgWdGYQoy4Bq51M.cer
File: eU9rWbQ50XaZMgWdGYQoy4Bq51M.cer (raw, json)
Hash identifier: gU1Ibh3p1dUrWRrYiW7VbwFrXYB3NHukXDuFje578Sw=
Subject key identifier: 79:4F:6B:59:B4:39:D1:76:99:32:05:9D:19:84:28:CB:80:6A:E7:53
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC5DBF1E9B2843BE5B544848104AEB530
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/08/17d0ad-801c-4814-b891-e0a652004878/1/eU9rWbQ50XaZMgWdGYQoy4Bq51M.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/08/17d0ad-801c-4814-b891-e0a652004878/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 16:29:35 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 205743
IP: 185.208.4.0/22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:db:f1:e9:b2:84:3b:e5:b5:44:84:81:04:ae:b5:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 16:29:35 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=794f6b59b439d1769932059d198428cb806ae753
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:90:b8:b7:c3:24:60:2b:ce:1d:51:8c:b4:56:
c2:f7:79:8f:8c:50:1c:1b:f5:76:92:a0:9d:fe:f7:
23:0c:69:dc:cb:cf:50:b5:3d:0a:a4:01:1e:82:b1:
32:01:06:ec:73:db:97:fa:6e:df:c2:26:31:13:cd:
1b:7e:a0:8f:57:01:f4:46:65:37:3c:4d:77:f9:47:
b8:72:c4:8b:a3:f7:87:2d:53:a2:27:9e:cd:e5:08:
c0:62:ad:0a:2b:42:be:af:b9:f4:99:f7:bc:88:e5:
fa:49:d1:45:f4:18:79:c0:b2:0e:e4:c4:75:8c:a7:
c1:c7:76:01:cb:44:ca:ee:04:a8:53:e2:0b:3e:a7:
ce:2d:03:c6:e8:e4:49:ac:19:e2:7b:93:6b:34:cd:
73:3e:ef:db:7f:3a:ce:b1:bd:06:f1:72:63:12:b1:
47:cb:9e:67:06:79:1d:ee:6f:15:99:4e:18:41:b5:
bb:b9:82:96:2c:71:f3:bb:22:d6:a3:dd:d5:c5:ff:
29:0f:74:e4:f1:c8:13:13:7d:15:07:d3:8b:68:65:
b4:09:57:b2:a9:2a:2b:10:d3:38:7b:9f:1c:c6:f3:
99:81:79:32:cb:33:c5:76:0a:5a:d8:ea:a8:2c:e0:
e8:71:90:db:60:e4:6e:cd:19:97:68:7d:d2:66:34:
65:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:4F:6B:59:B4:39:D1:76:99:32:05:9D:19:84:28:CB:80:6A:E7:53
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/17d0ad-801c-4814-b891-e0a652004878/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/17d0ad-801c-4814-b891-e0a652004878/1/eU9rWbQ50XaZMgWdGYQoy4Bq51M.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.208.4.0/22
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
205743
Signature Algorithm: sha256WithRSAEncryption
62:da:46:fb:55:9f:42:97:28:bf:5e:55:58:5d:7b:80:4d:db:
d9:7f:bd:c0:47:8d:00:19:ca:ac:1e:cb:a0:eb:6a:1f:24:53:
85:df:f1:c5:69:67:63:d9:99:69:e4:f6:a3:97:7b:11:2c:4c:
3e:b3:ec:dd:22:03:83:14:24:8d:7a:5b:7d:24:cf:4c:4a:1c:
27:1b:0b:1a:6f:07:65:b0:9d:ae:d8:4c:80:e4:2f:df:32:fa:
43:4c:5a:da:d0:be:9d:d9:db:1a:25:bc:03:ee:a3:05:b1:97:
ac:90:92:86:3f:ae:b6:ef:f6:cc:04:63:ce:74:67:bd:fc:70:
8c:a7:d1:d8:9d:5a:4b:ce:03:c5:1a:3e:fb:b4:6b:f1:2e:72:
ac:a5:51:b5:bd:48:db:7e:f8:15:8d:34:85:a0:2f:36:07:14:
87:c3:24:5f:cd:7e:92:c0:63:89:f1:99:55:f8:97:01:97:3b:
2d:19:a2:39:78:f8:9e:45:90:e1:a4:e1:2d:c7:70:b3:88:7d:
0a:3a:3b:c2:1d:36:8c:0b:4d:01:33:06:94:79:ce:f0:07:25:
b1:a2:c3:f8:52:da:af:82:5e:4c:6e:a9:bd:43:fa:a0:bb:f0:
4c:d0:ea:2a:5d:42:fa:24:00:4b:a9:99:b1:15:5f:22:44:d4:
cb:46:bd:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 10:44:41 2024 by rpki-client on console-fra.rpki-client.org