Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ffEaMWDbjOeRi_PsWLXF4ePpOCE.cer
File: ffEaMWDbjOeRi_PsWLXF4ePpOCE.cer (raw, json)
Hash identifier: nlIHDY9cj/AOMJ7qbQtCzj5cVFZmXAWYhJuSdxioFXo=
Subject key identifier: 7D:F1:1A:31:60:DB:8C:E7:91:8B:F3:EC:58:B5:C5:E1:E3:E9:38:21
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC94C9DDF2DE908BAA91F8112D5BF3B8E
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/03/85b29b-0ea2-4741-b439-e4b66a3fe5bc/1/ffEaMWDbjOeRi_PsWLXF4ePpOCE.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/03/85b29b-0ea2-4741-b439-e4b66a3fe5bc/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 08:31:30 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 41504
IP: 195.3.212.0/22
IP: 2001:67c:2378::/48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4c:9d:df:2d:e9:08:ba:a9:1f:81:12:d5:bf:3b:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 08:31:30 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7df11a3160db8ce7918bf3ec58b5c5e1e3e93821
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:c4:60:d4:9c:df:8e:29:53:cc:d7:23:91:5b:
5f:6a:24:09:99:4e:d4:ff:75:54:a9:87:f2:bc:62:
f8:15:c8:70:e4:68:f0:70:f4:ce:5d:6b:24:39:69:
c6:07:5a:d2:59:58:11:36:e4:75:b2:f6:c5:3e:3b:
be:a5:38:62:aa:01:d8:8b:9e:a7:5c:64:68:2e:c4:
89:cf:a3:64:2f:9f:dd:e6:72:b8:2d:34:c4:06:9d:
48:75:ba:23:86:e3:35:51:18:d6:31:d3:1b:22:2f:
9e:f0:d6:34:80:59:01:fe:61:d8:7f:98:56:2b:5c:
0d:b7:5c:d2:b7:32:47:4c:bc:36:b9:18:bd:e7:e7:
9c:c7:bb:77:d8:21:84:4c:6a:89:cf:f0:19:6d:46:
df:05:20:00:5d:69:00:8d:6e:15:9a:b0:f8:90:97:
89:dc:a6:8b:8e:77:65:b4:0a:a5:be:b3:1c:15:be:
d0:af:ba:0a:26:9c:c3:36:79:c3:f7:a8:8c:c7:1c:
6b:7f:29:0f:28:1e:99:f7:da:e2:a3:a9:82:5e:dd:
8e:fe:ce:79:bd:ef:89:e9:0d:eb:73:78:44:93:b2:
78:9b:48:c8:66:03:04:f1:74:91:73:75:cb:38:99:
1f:86:f5:50:28:a9:76:9c:61:e8:43:07:8d:87:9d:
a3:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:F1:1A:31:60:DB:8C:E7:91:8B:F3:EC:58:B5:C5:E1:E3:E9:38:21
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/85b29b-0ea2-4741-b439-e4b66a3fe5bc/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/85b29b-0ea2-4741-b439-e4b66a3fe5bc/1/ffEaMWDbjOeRi_PsWLXF4ePpOCE.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.3.212.0/22
IPv6:
2001:67c:2378::/48
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
41504
Signature Algorithm: sha256WithRSAEncryption
09:8b:4b:2b:cb:de:27:02:a0:5c:f8:01:fe:71:90:ad:e5:bd:
7f:6b:04:66:fb:19:85:b6:c6:13:4d:3b:fe:07:db:a4:0f:a8:
47:4d:ef:58:97:7f:39:15:7d:66:20:fe:42:69:df:34:70:0c:
f5:f3:74:2b:d7:4e:57:39:fe:cc:37:7b:ec:27:04:b9:21:e1:
9e:82:1e:a9:3f:60:15:b7:01:59:98:9e:d6:d0:01:7f:4d:f0:
a0:f3:ac:77:46:7b:6d:5a:7e:ee:26:af:2c:5c:a9:88:f7:90:
dc:f0:e4:0c:88:4c:81:5d:6c:1f:92:fd:ac:35:36:6b:92:b8:
e0:5d:89:26:66:d3:4f:44:08:5e:af:23:2c:a4:45:e7:c7:5b:
1c:13:37:3b:5c:0d:be:93:8f:09:c2:f0:f2:e6:e1:7e:76:c5:
71:d4:b0:4f:be:1c:1a:80:2c:bf:ed:62:55:dc:91:38:cc:62:
f5:d4:c5:2d:60:03:25:54:89:d0:7a:ab:d5:46:ee:21:12:34:
c6:84:86:9d:34:71:84:ee:23:38:e9:69:7f:3a:68:11:59:fb:
eb:16:39:9a:db:89:c5:26:b6:ca:39:51:59:6e:0a:9d:54:0f:
4b:f4:c1:b6:2e:3d:0f:2c:77:41:58:ab:f7:4c:13:10:9b:d9:
be:ad:f7:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 02:08:54 2024 by rpki-client on console-ams.rpki-client.org