Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/enUOttEsV-pkMLnwI5XK8qgb7Pg.cer
File: enUOttEsV-pkMLnwI5XK8qgb7Pg.cer (raw, json)
Hash identifier: 6ldcxxQBVPp0/VUeKFA63Sk2Zz7DLLtgZArPREsrxII=
Subject key identifier: 7A:75:0E:B6:D1:2C:57:EA:64:30:B9:F0:23:95:CA:F2:A8:1B:EC:F8
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC8713C0DF5CB2ECC6B7C1DB5F0DE74A2
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/26/98dc6f-be56-4c8d-b94e-57227982a000/1/enUOttEsV-pkMLnwI5XK8qgb7Pg.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/26/98dc6f-be56-4c8d-b94e-57227982a000/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 04:31:53 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 41415
IP: 185.215.128.0/24
IP: 185.215.130.0/24
IP: 2a0b:aa40::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:71:3c:0d:f5:cb:2e:cc:6b:7c:1d:b5:f0:de:74:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 04:31:53 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7a750eb6d12c57ea6430b9f02395caf2a81becf8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:4a:bb:76:80:40:29:32:1c:6c:23:c9:81:a6:
7e:1b:b0:eb:e2:f7:80:ab:0b:e1:2a:e1:ac:92:95:
61:70:9e:65:f3:6d:07:a5:16:a8:2b:e4:5a:ef:44:
ac:dd:07:0a:5b:4a:60:4d:13:fb:b2:12:c6:c4:0c:
6f:61:4c:3f:2a:17:e2:c8:90:db:1e:93:ae:bb:e8:
69:c6:ee:a0:87:8b:05:79:69:c1:ea:f9:28:3a:37:
82:d0:d9:c9:07:ed:0b:bd:5d:11:c8:47:78:4c:0b:
6b:67:1a:df:a2:d5:ec:ee:5c:37:27:6d:96:70:fd:
50:94:b4:fb:2d:1c:e7:7d:9b:6a:b4:45:6e:90:f9:
f0:fe:ec:04:7e:9c:8d:c1:26:7b:b8:dc:8e:ea:60:
25:31:7c:23:b5:70:a1:56:06:c6:22:15:8f:5d:12:
72:98:c2:fa:21:ea:e7:20:f3:3d:ce:19:98:e1:83:
f7:80:09:54:07:ba:7c:23:30:3d:6c:9c:20:8d:c8:
94:57:a3:2d:b2:2b:66:77:d4:7e:c5:bf:d6:69:81:
39:08:32:42:4f:58:ee:71:35:96:78:6d:a4:af:a0:
5b:12:d3:0a:8f:04:f1:1b:9b:4d:e5:f5:c7:af:1d:
54:be:7f:bb:eb:ff:59:a6:b3:0e:c1:61:59:a1:cc:
31:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:75:0E:B6:D1:2C:57:EA:64:30:B9:F0:23:95:CA:F2:A8:1B:EC:F8
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/98dc6f-be56-4c8d-b94e-57227982a000/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/98dc6f-be56-4c8d-b94e-57227982a000/1/enUOttEsV-pkMLnwI5XK8qgb7Pg.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.215.128.0/24
185.215.130.0/24
IPv6:
2a0b:aa40::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
41415
Signature Algorithm: sha256WithRSAEncryption
0a:ee:21:49:46:1a:c6:bb:6e:19:cb:e0:3c:df:75:05:03:98:
e4:20:89:96:6f:4e:b5:10:79:f5:42:86:19:96:f8:9a:31:59:
52:ae:4c:b8:f5:1a:77:0b:17:74:54:89:86:72:71:e3:3b:b2:
18:ad:b0:be:ac:8b:ed:b9:ed:80:85:0d:c5:94:b7:3f:5c:1a:
84:2d:57:59:ee:7c:bc:0c:37:9f:20:19:e0:f5:6c:df:4a:e4:
4d:02:61:aa:6b:cc:41:32:c0:a1:e8:aa:19:84:c4:74:ce:a1:
8d:27:0d:75:f5:1e:0f:47:00:97:72:99:82:46:0c:0b:11:8f:
5b:36:fb:17:03:34:8d:27:cf:59:8c:b6:1e:be:98:e2:b8:90:
bc:93:90:65:cf:f5:07:9f:2c:59:a8:0f:64:69:ef:77:6a:70:
25:05:59:f1:cc:a9:26:ba:ff:1b:4b:d2:0b:43:6f:08:b9:dd:
73:bf:9d:89:93:e1:cc:09:bd:e9:2b:15:39:59:36:2c:7f:6e:
0c:08:bf:d4:9f:8a:16:41:89:a2:92:a5:e0:c0:f8:07:d0:1b:
4f:8b:ec:25:5e:80:10:fb:12:da:e8:44:66:5d:47:3d:1c:38:
6a:ad:53:f6:ac:33:2a:15:e7:97:ca:1b:9e:50:06:9c:d6:90:
6a:e0:f8:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 10:46:18 2024 by rpki-client on console-fra.rpki-client.org