Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ews7OUhl5LhbaGo59V7UvmU2pII.cer
File: ews7OUhl5LhbaGo59V7UvmU2pII.cer (raw, json)
Hash identifier: gCkOYurVF9Hp0NQjQjhdpPyuXVx1HZCZPm22KSNOIyM=
Subject key identifier: 7B:0B:3B:39:48:65:E4:B8:5B:68:6A:39:F5:5E:D4:BE:65:36:A4:82
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC9BC92C102E8570A3D014E0B2189D662
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/bd/db38ab-c3cf-4622-87f6-2c8d0011e88a/1/ews7OUhl5LhbaGo59V7UvmU2pII.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/bd/db38ab-c3cf-4622-87f6-2c8d0011e88a/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 10:33:47 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 25017
AS: 25020
IP: 193.201.101.0/24
IP: 195.234.137.0/24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:92:c1:02:e8:57:0a:3d:01:4e:0b:21:89:d6:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 10:33:47 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7b0b3b394865e4b85b686a39f55ed4be6536a482
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:bc:99:10:b3:96:b9:ed:e6:8b:1e:f8:be:2d:
77:3c:b1:93:2f:42:28:5e:ef:e4:6b:ae:f3:25:d1:
a7:98:73:e7:fe:48:a3:27:d1:89:f5:00:84:f1:85:
fe:31:23:64:ce:9c:3d:1a:92:67:08:8a:88:cf:76:
6a:6f:2f:3c:21:b1:35:c2:b9:95:0c:d0:8c:bf:8d:
d3:aa:31:7f:36:ad:2d:fa:24:b6:46:98:e4:b2:2c:
3b:11:0e:0b:f5:ad:09:46:38:ce:5a:1a:de:11:c9:
27:10:22:02:d1:7e:66:3a:6c:ec:1c:81:7c:7d:cc:
94:bb:f3:a9:63:bd:23:c1:59:21:b7:b8:54:27:2a:
fa:45:b1:d4:b0:08:f1:1c:03:eb:43:a8:cf:06:da:
b0:49:fb:7a:87:16:dd:25:36:8e:e8:47:55:fe:a1:
93:99:91:02:9c:5b:f4:3a:0e:f5:33:c4:b6:8f:0c:
93:f3:62:01:a8:74:11:fa:78:fb:61:37:be:bd:36:
fd:01:a1:a5:b1:60:af:dd:0e:07:cb:39:f3:9b:e2:
07:73:0d:df:4b:34:b6:37:5d:d4:34:a6:19:04:cf:
2e:00:b4:c2:df:1f:d7:6a:60:16:89:af:f9:ba:e3:
50:de:65:f9:9b:d3:04:6b:05:32:6d:57:22:44:8f:
f3:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:0B:3B:39:48:65:E4:B8:5B:68:6A:39:F5:5E:D4:BE:65:36:A4:82
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/db38ab-c3cf-4622-87f6-2c8d0011e88a/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/db38ab-c3cf-4622-87f6-2c8d0011e88a/1/ews7OUhl5LhbaGo59V7UvmU2pII.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.201.101.0/24
195.234.137.0/24
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
25017
25020
Signature Algorithm: sha256WithRSAEncryption
4d:71:46:2a:e1:1e:3c:ab:fd:8e:1f:93:d2:c5:f9:c2:0d:5c:
9d:c9:11:38:87:cf:1b:43:f2:ab:79:f7:ab:9a:28:a8:81:57:
c5:55:40:84:1f:1f:14:65:2c:20:6e:74:bf:8d:d4:5d:28:e1:
9f:71:c3:1a:6a:0d:31:2a:d0:dd:e6:6b:18:25:46:42:16:80:
10:27:ca:ce:9b:d1:06:cf:18:7b:75:4d:4b:5e:34:d6:0d:88:
c7:89:ac:25:ff:90:f5:ea:b6:d8:3c:b4:64:2b:31:a5:72:a4:
15:30:b0:97:bb:50:78:97:69:21:30:ba:80:0c:d4:fb:96:ce:
30:51:63:de:fb:c2:c9:52:f0:bf:e5:35:44:b6:7d:95:20:c9:
ce:e8:17:06:de:a1:74:a1:9e:c4:34:65:2f:64:fd:48:b2:9f:
62:8b:af:61:87:59:46:00:b9:dc:ff:b1:97:d1:ca:e4:bc:1b:
fd:c0:e6:a3:5f:52:44:9f:b5:42:64:b0:4f:75:78:e3:68:37:
41:79:8c:de:da:f0:d2:40:a1:df:6f:44:12:ed:0d:30:18:10:
ea:d5:12:a0:36:5b:b1:3a:b6:17:90:6e:44:96:62:4d:0c:2b:
1f:a3:06:55:79:d5:cd:95:86:fb:0e:92:09:0b:b7:59:0f:c6:
3e:cb:79:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 09:28:30 2024 by rpki-client on console-ams.rpki-client.org