Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fSW-cEBtOB5yXT4r7xL2qPPdglc.cer
File: fSW-cEBtOB5yXT4r7xL2qPPdglc.cer (raw, json)
Hash identifier: xp/MKbh8WI0yMu8rD07lv+NVbvc+E55pF+7J54Z89es=
Subject key identifier: 7D:25:BE:70:40:6D:38:1E:72:5D:3E:2B:EF:12:F6:A8:F3:DD:82:57
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC49327CB613B1BBAAFF335FAED475BF5
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/29/6a301c-8532-46f0-a33e-eb65f1f46e0b/1/fSW-cEBtOB5yXT4r7xL2qPPdglc.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/29/6a301c-8532-46f0-a33e-eb65f1f46e0b/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 10:30:27 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 50293
IP: 193.39.195.0/24
IP: 2a10:e440::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:93:27:cb:61:3b:1b:ba:af:f3:35:fa:ed:47:5b:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 10:30:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7d25be70406d381e725d3e2bef12f6a8f3dd8257
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:ae:59:bd:94:27:df:96:71:8a:0e:02:49:79:
8d:ec:19:9d:a6:87:bd:46:e6:84:59:b4:7c:5d:91:
b1:72:b7:b4:5c:41:e7:57:c4:75:52:bd:16:4c:bf:
e5:0e:43:05:a6:62:59:af:44:12:f7:fa:b3:24:a2:
56:ac:3c:e6:5d:01:f6:fb:a6:27:84:22:5d:11:70:
fb:89:90:92:d2:2c:17:76:74:fc:75:cc:b3:6b:7d:
63:a1:87:76:11:8f:c5:db:ec:5f:17:1f:67:29:5b:
b6:8e:bc:60:81:a8:00:23:c4:f0:b5:43:de:16:c4:
c0:af:76:69:19:24:4a:51:8d:11:9d:1a:b4:0e:f2:
e3:b7:1d:45:17:1e:38:b6:9d:fe:23:b1:ae:1a:51:
65:dd:18:6e:ab:b8:08:9d:ba:59:10:7b:27:b6:83:
7f:80:dc:a8:97:be:66:84:83:5b:a0:56:11:8b:dd:
0b:b1:13:fb:ab:10:01:c9:e2:99:e3:42:95:27:2f:
49:56:cf:5b:58:0c:fd:2f:6d:21:f0:45:e8:e4:5f:
3f:c6:cc:88:56:39:bd:d3:7e:0c:63:1a:cf:30:fc:
a6:5e:6d:fc:c4:f3:5c:5b:67:2c:d8:75:95:30:ec:
70:34:ed:ba:3c:0e:78:dc:16:ad:4e:08:96:5d:29:
b7:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:25:BE:70:40:6D:38:1E:72:5D:3E:2B:EF:12:F6:A8:F3:DD:82:57
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/6a301c-8532-46f0-a33e-eb65f1f46e0b/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/6a301c-8532-46f0-a33e-eb65f1f46e0b/1/fSW-cEBtOB5yXT4r7xL2qPPdglc.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.39.195.0/24
IPv6:
2a10:e440::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
50293
Signature Algorithm: sha256WithRSAEncryption
04:bc:47:1a:c1:90:b4:af:60:32:93:26:9b:61:9b:03:8f:7a:
61:54:b3:58:8b:64:d9:4e:60:91:7a:dc:68:b4:f4:dd:a4:01:
d2:38:59:33:9e:e6:fa:4a:26:7a:db:28:9d:48:f1:57:9f:74:
7f:c3:63:94:3e:47:ff:cc:26:90:38:de:81:a1:f1:1f:8d:20:
98:96:dd:2b:63:39:b0:b7:a8:1e:8e:7c:40:1b:05:31:db:90:
0e:9d:24:e4:3d:c2:dd:e9:4a:d0:71:49:ee:fd:41:20:28:ed:
91:74:6a:0b:1c:cb:ac:67:8c:37:26:b6:36:e1:b9:d7:86:8e:
45:70:94:cd:8f:4d:32:57:6b:c9:e6:47:74:1e:a5:06:59:c4:
f1:5a:c0:83:a5:8e:6b:d6:7c:97:9f:98:4f:97:8b:4e:84:ac:
55:db:2e:08:85:9f:87:57:1d:62:77:67:cd:95:b6:85:1e:da:
99:bf:ea:11:db:70:a4:c7:82:e8:f8:6b:9b:f6:6f:88:4a:76:
c6:d0:5c:3d:be:f9:a1:fb:de:17:a9:6d:c0:5e:f1:f2:27:e2:
84:04:50:71:05:66:a4:2b:dd:45:0b:35:a1:2f:86:05:3a:17:
77:26:11:39:21:7c:2e:9b:39:21:b0:03:7d:fa:4b:2d:10:35:
02:80:54:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 03:32:56 2024 by rpki-client on console-fra.rpki-client.org