Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/izGWcRDKvuxKZreAN-Uqh7K8j10.cer
File: izGWcRDKvuxKZreAN-Uqh7K8j10.cer (raw, json)
Hash identifier: UwbiJc/BSHbKpBrcun2jIhFNMasL7jfQB5nfTlQgLlk=
Subject key identifier: 8B:31:96:71:10:CA:BE:EC:4A:66:B7:80:37:E5:2A:87:B2:BC:8F:5D
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC9BC4BB3192D58CAA3061AD297C49ADF
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/0f/31df07-dcb5-4a50-a704-a017c368466d/1/izGWcRDKvuxKZreAN-Uqh7K8j10.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/0f/31df07-dcb5-4a50-a704-a017c368466d/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 10:33:29 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 34122
IP: 91.216.117.0/24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:4b:b3:19:2d:58:ca:a3:06:1a:d2:97:c4:9a:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 10:33:29 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8b31967110cabeec4a66b78037e52a87b2bc8f5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:2a:80:6f:24:99:f8:ef:19:42:66:81:dc:8a:
bf:6a:cc:3e:02:4c:42:2a:14:2e:0d:39:2c:cb:1f:
54:8e:ef:95:ea:2a:c7:df:f7:6d:8e:14:4d:7f:41:
fc:8c:e4:74:78:79:0f:39:b7:c3:cf:7a:4e:42:3e:
0b:e2:74:49:7e:65:8f:1b:38:b0:db:74:68:30:87:
7b:43:d5:72:05:eb:63:a1:17:b3:66:92:61:e0:e1:
c5:d1:51:ad:ae:10:9a:9d:24:6c:e9:c7:82:b3:63:
83:ea:46:68:de:ff:ac:17:f0:2e:b0:96:f5:52:e8:
0b:fa:e9:1e:73:6d:49:15:91:1c:61:23:ed:1e:c9:
11:fa:16:db:19:36:e2:fc:f5:b9:d8:ec:72:da:28:
92:38:58:5b:aa:00:c0:73:39:cb:44:b9:5b:34:0e:
95:24:37:1d:fb:a7:ff:49:7b:15:d5:6b:cc:ae:45:
77:cf:43:52:b3:9f:ca:96:47:4d:0d:2b:af:32:75:
2e:cc:bc:ff:37:a3:a1:0f:f3:cf:d6:11:c3:27:75:
c1:95:d5:26:65:46:1e:51:57:f1:96:92:88:44:19:
53:66:0d:94:81:ca:66:07:aa:2f:27:ae:de:db:3d:
0a:41:d2:3f:3e:d7:50:84:85:fd:07:f8:8d:dc:9d:
5e:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:31:96:71:10:CA:BE:EC:4A:66:B7:80:37:E5:2A:87:B2:BC:8F:5D
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/31df07-dcb5-4a50-a704-a017c368466d/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/31df07-dcb5-4a50-a704-a017c368466d/1/izGWcRDKvuxKZreAN-Uqh7K8j10.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.216.117.0/24
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
34122
Signature Algorithm: sha256WithRSAEncryption
74:f8:6d:cb:ca:72:0f:28:6d:53:8a:1c:ac:c0:35:45:f1:69:
74:01:d4:60:1f:0b:ed:0a:bb:91:12:5d:24:12:13:69:56:52:
e1:dd:c1:c5:f9:21:d8:d3:90:b1:9e:db:16:08:2c:40:27:7f:
c7:de:ef:3c:d1:24:31:9b:9f:08:a6:08:41:8f:0f:b3:1e:42:
4c:1b:87:75:f1:31:64:92:6a:fb:16:b7:f0:ef:ca:af:b9:f1:
fd:91:a2:e1:04:cc:5a:47:47:f9:09:0a:76:6a:61:11:f7:c1:
05:80:e4:d4:c8:f4:1d:8d:03:19:ae:ee:c4:52:a8:65:69:71:
88:30:da:ab:37:8f:26:44:93:a8:98:de:19:fe:13:ba:4d:36:
6d:73:35:24:33:6e:94:5a:61:60:db:d3:79:69:a7:d1:83:94:
b6:1a:c9:40:f6:2d:20:6c:81:d7:f8:59:b9:95:1a:e0:13:2b:
06:54:0b:44:f6:80:c6:ec:2e:6d:b2:c6:c6:67:fb:22:87:ff:
dc:9f:ac:00:b9:1d:d9:46:4d:43:b7:76:96:4d:2f:df:27:bb:
23:b1:f5:58:10:a9:b6:22:d4:9b:6a:73:5a:c3:d3:c2:b3:67:
91:1a:b3:0b:25:e2:d5:2b:ba:cb:9e:e0:bf:27:94:82:7f:cb:
ae:fa:0a:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 10:53:39 2024 by rpki-client on console-fra.rpki-client.org