Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/h6WU4wS2ghg6ojWeQOHc75P-BXA.cer
File: h6WU4wS2ghg6ojWeQOHc75P-BXA.cer (raw, json)
Hash identifier: jj+xFBWV1ImXNLCUhWHcVDXGEN5o1BJWv7o0NhbPZaU=
Subject key identifier: 87:A5:94:E3:04:B6:82:18:3A:A2:35:9E:40:E1:DC:EF:93:FE:05:70
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018E8004C03BEAC242C16BD67FFCC5F21737
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/78/4f8699-7b52-406e-82c0-b9e34a38f3a9/1/h6WU4wS2ghg6ojWeQOHc75P-BXA.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/78/4f8699-7b52-406e-82c0-b9e34a38f3a9/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 27 Mar 2024 13:06:18 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 5531
IP: 91.224.2.0/23
IP: 194.165.24.0/23
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:80:04:c0:3b:ea:c2:42:c1:6b:d6:7f:fc:c5:f2:17:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Mar 27 13:06:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=87a594e304b682183aa2359e40e1dcef93fe0570
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:c1:91:b7:6d:87:32:ba:44:6f:65:f3:2c:ff:
5d:70:af:70:96:44:6c:1d:7f:d6:7d:9f:08:ed:24:
11:3b:39:ae:e7:b1:e1:0e:8d:1b:ce:ad:d6:ae:f3:
87:f4:55:56:08:7a:f3:5d:98:b8:0a:83:4e:f1:45:
e9:ed:51:f9:f1:f8:09:af:c3:4c:45:b8:7e:c6:5a:
c9:a8:3d:16:38:89:98:5c:5a:3f:9e:50:e1:78:27:
0d:ee:29:0e:d0:97:61:26:a5:7d:19:f5:c7:03:c5:
a1:d0:77:d6:68:f9:b2:8d:70:41:06:25:8e:39:dd:
ee:35:3e:49:7f:23:92:0a:e7:df:db:51:0b:3b:9f:
e3:24:08:56:f0:db:a3:7d:a9:ee:ac:de:df:d4:64:
d4:d2:12:bd:39:a1:14:5c:07:f4:49:f9:0f:bf:d6:
85:58:52:49:93:49:5d:e6:fc:be:45:ed:24:54:09:
c8:30:f5:37:ff:60:b3:0f:d7:1f:6f:a0:50:87:26:
17:e2:64:a1:f0:93:64:ed:7a:24:30:a1:b3:29:c3:
4c:97:1e:84:ce:f1:d4:39:11:45:04:2d:c7:71:c5:
ba:ae:33:6b:d6:77:c9:1f:57:a0:b6:b3:e8:c6:20:
38:3e:a3:04:5f:6c:6f:7d:09:23:47:b8:36:a5:0a:
08:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:A5:94:E3:04:B6:82:18:3A:A2:35:9E:40:E1:DC:EF:93:FE:05:70
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/4f8699-7b52-406e-82c0-b9e34a38f3a9/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/4f8699-7b52-406e-82c0-b9e34a38f3a9/1/h6WU4wS2ghg6ojWeQOHc75P-BXA.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.224.2.0/23
194.165.24.0/23
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
5531
Signature Algorithm: sha256WithRSAEncryption
52:b9:1f:da:6c:4e:29:5b:ab:fc:05:07:27:9f:4c:06:a3:39:
0f:d3:ff:11:90:c0:cd:78:f0:dd:6f:ab:48:07:06:15:8a:df:
32:0c:ab:40:97:16:71:81:e6:3a:68:59:b9:0c:6f:ee:93:fb:
70:b6:88:6c:cb:3c:7d:4e:24:05:3f:0b:06:6f:21:2d:89:c5:
b8:43:4c:de:43:e8:89:3c:08:9d:f2:ac:c9:bc:a1:96:76:1f:
e1:34:c8:91:2b:9c:2e:eb:95:65:a0:7b:41:6b:0d:50:1b:da:
21:04:13:00:43:c6:4c:cd:60:b7:1f:85:cd:0f:1e:6d:61:62:
2e:19:a4:bd:d5:4d:3f:3f:82:64:21:ab:06:d5:ba:bd:ea:07:
c4:90:a3:d1:43:2b:3c:96:96:cd:4f:69:84:96:2b:94:4c:c2:
53:5d:95:f4:28:48:3d:67:c4:d8:39:ac:2c:a6:c6:33:f6:bb:
19:8e:b2:cc:1a:ac:c5:fb:10:90:4a:39:80:4b:69:af:d8:a0:
ad:77:ff:2a:64:11:58:b1:95:ec:7e:39:8c:9e:7b:43:04:0f:
b1:22:b6:2a:6b:aa:87:d0:38:0d:c0:b7:ab:e8:0c:4b:4e:2a:
2c:5f:81:4c:62:e9:75:6c:96:d8:12:e1:ba:b4:47:72:b6:56:
6d:5c:ca:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 11:02:27 2024 by rpki-client on console-ams.rpki-client.org