Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/iSWuMjSiyXwn9171HT_zJr4GDiw.cer
File: iSWuMjSiyXwn9171HT_zJr4GDiw.cer (raw, json)
Hash identifier: oC/5CgUhzO6MMGI+Vm88p1Y2lgeiiD5P0rkYLsyO4m0=
Subject key identifier: 89:25:AE:32:34:A2:C9:7C:27:F7:5E:F5:1D:3F:F3:26:BE:06:0E:2C
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC649FDE3C1B54455FE526B31C0D2571F
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/2b/fb6270-0353-46fc-b9f5-7e8e6e888dac/1/iSWuMjSiyXwn9171HT_zJr4GDiw.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/2b/fb6270-0353-46fc-b9f5-7e8e6e888dac/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 18:29:47 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 203378
IP: 185.117.128.0/22
IP: 2a06:8480::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:49:fd:e3:c1:b5:44:55:fe:52:6b:31:c0:d2:57:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 18:29:47 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8925ae3234a2c97c27f75ef51d3ff326be060e2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:68:04:5b:0b:99:80:98:45:96:d1:b7:dc:48:
3a:42:ae:54:c3:d0:ca:99:04:55:43:4b:e0:eb:29:
55:42:5c:3a:e4:eb:16:41:89:cf:3b:95:32:94:f0:
ae:1a:e8:18:20:bf:46:d8:d6:03:cd:a6:22:fa:be:
3b:28:50:ca:fa:6b:d2:7f:1b:20:9b:39:9b:38:34:
05:b3:65:82:df:5a:b4:00:67:5b:84:43:cf:dd:80:
44:4f:78:52:e8:f5:15:f1:fc:c9:36:4b:8a:f6:6b:
83:ea:ee:66:02:39:25:a0:65:47:75:b4:36:88:2b:
ba:a9:62:d6:1e:87:b1:6f:78:4e:ae:20:07:9d:78:
57:7f:ba:fc:3e:3c:3b:39:d2:4f:27:38:34:64:62:
31:26:85:a1:10:8f:29:2c:5f:d9:8b:61:b6:6c:85:
23:82:cd:b4:07:9e:9c:84:15:73:20:2e:be:2e:d9:
4a:f8:38:62:12:8d:43:90:da:bf:e0:96:50:a4:70:
da:8c:4f:38:8a:8c:37:c3:cc:15:5e:09:38:56:aa:
57:3b:8c:d0:a7:66:8f:68:51:18:c5:14:26:22:fd:
47:65:99:a5:f1:12:1e:a2:50:4e:ab:3f:ac:5f:4e:
a2:0e:ba:a0:7a:95:da:13:ec:fa:90:6d:a2:76:f1:
45:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:25:AE:32:34:A2:C9:7C:27:F7:5E:F5:1D:3F:F3:26:BE:06:0E:2C
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/fb6270-0353-46fc-b9f5-7e8e6e888dac/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/fb6270-0353-46fc-b9f5-7e8e6e888dac/1/iSWuMjSiyXwn9171HT_zJr4GDiw.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.117.128.0/22
IPv6:
2a06:8480::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
203378
Signature Algorithm: sha256WithRSAEncryption
69:55:43:bb:31:f0:ef:f1:48:ba:43:6a:dc:d4:0c:d8:28:6c:
9c:6a:98:13:ab:01:c9:03:9f:18:33:ab:49:f9:2f:a4:76:97:
3e:2b:07:f1:b8:15:8c:8c:bd:69:cd:17:dd:15:6b:42:e2:e7:
b9:30:6f:82:b1:59:98:e3:3a:e4:20:69:28:25:7e:5d:cc:a5:
19:d4:cf:42:32:d5:ab:6e:fd:30:4d:e1:84:2f:f5:54:e3:0c:
64:68:99:60:f3:58:89:0a:c2:c9:4b:f6:2a:2a:a4:9b:e3:cb:
56:7c:93:a2:21:50:c0:72:4f:93:b7:85:c0:95:f1:16:79:c5:
58:37:25:0a:87:ca:56:a4:c1:79:64:c0:1e:6d:92:57:b2:4b:
65:17:d1:08:d5:f8:60:a8:76:e7:71:0d:25:5c:f4:d6:20:b7:
0b:1e:6c:f2:e3:cb:e9:47:01:6d:b8:de:2a:33:4a:9b:3a:c9:
1c:77:53:35:ba:8d:ec:a3:7b:49:39:5f:7a:18:82:9f:f7:73:
a8:59:4e:d7:41:d0:c1:bd:5b:f9:a6:ec:d9:4e:d6:c3:0e:fc:
dc:88:95:20:47:4c:2f:2c:21:33:16:6f:ee:6e:c0:e7:d1:2d:
f6:ab:f4:a9:cb:13:48:95:4d:0b:9c:4f:c4:69:1a:74:ba:51:
ec:46:bf:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 08:12:28 2024 by rpki-client on console-fra.rpki-client.org