Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/iw2B8-Dy0Y87WQ3MU21elM_gcBI.cer
File: iw2B8-Dy0Y87WQ3MU21elM_gcBI.cer (raw, json)
Hash identifier: WkyxwAKFLhMai/SWB6L44es2bU2lKunDukr7c/n0RMY=
Subject key identifier: 8B:0D:81:F3:E0:F2:D1:8F:3B:59:0D:CC:53:6D:5E:94:CF:E0:70:12
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018E50A93BB034894ED7FF47B820BFEE6260
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/64/0517f9-9a1e-4600-b043-f6541f778585/1/iw2B8-Dy0Y87WQ3MU21elM_gcBI.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/64/0517f9-9a1e-4600-b043-f6541f778585/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 18 Mar 2024 08:24:11 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 203690
AS: 204995
AS: 206502
IP: 45.13.220.0/22
IP: 78.108.212.0/22
IP: 185.184.8.0/22
IP: 2a0b:2180::/32
IP: 2a0d:11c0::/32
IP: 2a0e:7c00::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 28 Nov 2024 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:50:a9:3b:b0:34:89:4e:d7:ff:47:b8:20:bf:ee:62:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Mar 18 08:24:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8b0d81f3e0f2d18f3b590dcc536d5e94cfe07012
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:34:cb:b0:64:74:37:48:90:ff:37:08:27:5d:
e8:e0:d6:df:35:ba:07:06:bc:05:c5:7c:c4:5b:2f:
a9:52:2c:3f:0e:7d:28:db:aa:8f:ee:fe:97:23:2c:
3c:67:f3:5a:92:5a:90:0e:77:31:11:c7:ef:84:8d:
34:72:2d:b8:eb:f0:87:6c:08:d3:b2:d7:bb:61:b0:
67:fc:59:1a:83:1b:ee:9b:7a:d7:d8:bb:d5:f6:9e:
bd:83:ab:ee:42:8c:6c:e4:c2:0f:06:90:22:67:2f:
b5:d7:63:1d:48:bd:a6:1e:da:63:d9:fb:47:4f:06:
0a:03:f8:4c:89:43:7f:5a:d4:5a:cd:00:d9:03:ff:
dc:51:65:cc:43:4f:25:f6:d6:2f:8d:9b:e4:09:79:
7e:1c:9d:f5:85:a6:52:21:cd:18:e8:eb:30:bf:6e:
fe:29:e8:0c:ff:1a:50:c7:dd:8c:62:59:ab:ed:28:
13:a8:8f:7c:09:a1:57:32:81:1c:c3:8e:b0:60:a6:
30:3d:7c:91:d6:63:7f:0b:ac:a4:2f:de:5f:bc:43:
72:6c:c3:08:29:49:9a:06:f0:7d:fe:d9:8c:b3:5b:
96:c0:9a:f4:6a:b5:39:a6:ba:8a:59:3e:e1:4b:2f:
d0:2a:83:65:fd:3d:59:f1:94:2d:94:6d:6a:4f:6e:
ab:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:0D:81:F3:E0:F2:D1:8F:3B:59:0D:CC:53:6D:5E:94:CF:E0:70:12
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/0517f9-9a1e-4600-b043-f6541f778585/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/0517f9-9a1e-4600-b043-f6541f778585/1/iw2B8-Dy0Y87WQ3MU21elM_gcBI.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.13.220.0/22
78.108.212.0/22
185.184.8.0/22
IPv6:
2a0b:2180::/32
2a0d:11c0::/32
2a0e:7c00::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
203690
204995
206502
Signature Algorithm: sha256WithRSAEncryption
ac:7c:70:22:cb:d0:4c:ec:e9:25:9a:09:10:c4:fc:8e:d4:ca:
c0:e1:b1:0a:6e:64:af:07:e6:6c:17:be:6b:3e:bc:18:34:62:
a0:04:28:1a:07:7b:90:37:7b:b4:b1:7e:dc:4c:a5:0e:57:94:
b1:99:8e:96:2e:f3:68:b2:29:77:c4:f2:96:9f:98:06:54:df:
83:54:ef:48:bb:f2:b0:5b:4d:b1:72:07:34:4e:5a:fb:b7:c2:
82:3e:d0:7e:59:25:bb:21:36:66:79:96:fe:74:1e:77:ab:99:
80:02:b8:e9:00:3a:62:77:eb:10:52:f0:15:e4:7d:c1:69:73:
18:24:b9:9c:69:87:96:b0:eb:e8:e9:eb:9e:0e:75:68:43:97:
b1:9c:a2:c3:6f:f7:e8:eb:d9:6d:6e:bb:1d:a3:d5:f5:8c:12:
f6:06:00:9c:67:de:79:cf:fb:95:2e:cb:61:ca:72:5b:e2:ce:
22:f9:42:97:98:4b:6b:35:20:24:e6:37:54:52:bd:23:33:b2:
b6:57:cf:7d:ef:10:1e:0f:5a:80:bb:75:a2:d5:69:4a:8a:69:
84:31:bf:89:c1:59:1e:1a:6e:cb:ed:6e:a7:bd:c8:38:01:09:
5b:a7:8c:da:a8:7f:3f:45:88:2e:c1:23:da:34:1f:2c:c8:4f:
b1:5a:24:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 09:00:52 2024 by rpki-client on console-fra.rpki-client.org