Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/jS8HkbBSUVlyCxkcQRvMR0IPHOI.cer
File: jS8HkbBSUVlyCxkcQRvMR0IPHOI.cer (raw, json)
Hash identifier: jznYOglSnj51hrJBJBJ0T9NvPRFPayY+iXLSG/jJ2/U=
Subject key identifier: 8D:2F:07:91:B0:52:51:59:72:0B:19:1C:41:1B:CC:47:42:0F:1C:E2
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC86FCE30BB403EC47E260286406139D2
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/05/8c52a7-6609-450a-b361-63939505fe66/1/jS8HkbBSUVlyCxkcQRvMR0IPHOI.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/05/8c52a7-6609-450a-b361-63939505fe66/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 04:30:19 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 206601
IP: 185.146.4.0/22
IP: 2a07:4b80::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:ce:30:bb:40:3e:c4:7e:26:02:86:40:61:39:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 04:30:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8d2f0791b0525159720b191c411bcc47420f1ce2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:98:6b:c5:8a:81:f0:ab:53:ba:bf:6e:8f:58:
cd:d7:c0:be:b9:28:64:46:f4:13:19:6c:34:35:ad:
c5:f0:fe:16:43:c5:92:97:a3:90:ac:be:92:12:42:
f8:fb:67:bd:9b:64:43:9a:f0:32:d2:61:68:0c:6a:
51:39:78:36:01:c4:e4:fe:fb:83:9a:29:cc:de:6d:
50:c1:d7:20:0c:64:cf:9d:2b:84:e4:5a:bf:8b:7e:
bb:40:73:a5:d9:f2:c4:34:82:d0:cf:f7:b2:18:b9:
1f:11:4e:d4:0f:14:5d:be:b2:71:5e:26:cc:27:64:
7b:4b:1e:b3:29:6f:dc:55:54:74:5e:69:af:45:13:
78:7f:1d:bd:65:c9:4e:2c:8e:fb:6b:31:23:9a:d2:
be:f4:24:2f:b9:19:24:90:74:ca:78:4e:98:6a:c7:
ad:47:58:b8:bb:79:d0:33:2e:39:ed:5a:fc:12:41:
10:f8:b9:87:b8:c7:3f:3a:f1:0e:45:e3:e4:d0:a8:
5f:3e:79:92:82:c6:05:1c:28:82:a3:c1:fe:39:c8:
80:a9:11:4e:80:9d:c6:42:13:e4:3f:93:1f:f9:7c:
5b:7b:c9:07:20:21:0d:47:2f:fb:86:e0:df:bc:68:
d3:b7:c2:03:1b:38:91:a0:cb:7c:78:55:53:b2:22:
0d:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:2F:07:91:B0:52:51:59:72:0B:19:1C:41:1B:CC:47:42:0F:1C:E2
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/8c52a7-6609-450a-b361-63939505fe66/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/8c52a7-6609-450a-b361-63939505fe66/1/jS8HkbBSUVlyCxkcQRvMR0IPHOI.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.146.4.0/22
IPv6:
2a07:4b80::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
206601
Signature Algorithm: sha256WithRSAEncryption
79:d9:fc:e6:77:2f:84:17:bc:56:35:25:72:b0:59:11:8a:66:
07:b4:f7:f9:54:d1:9b:c0:bf:77:a6:fd:df:1f:84:bc:11:ad:
7b:b2:7b:fa:d0:03:96:0c:68:39:1d:b2:2e:8a:de:04:46:87:
1a:d7:56:8c:65:73:4b:17:43:45:6b:4d:cd:5b:f5:b0:5d:fa:
bd:c1:99:4d:7e:24:a2:dd:69:15:41:1a:5a:90:f6:20:ee:07:
3c:01:73:b3:d9:39:91:76:1c:91:7f:c3:d4:40:66:95:f5:11:
31:6d:0e:59:94:fa:ec:4b:0a:aa:28:67:71:e4:02:b5:25:33:
e0:8f:a5:24:98:40:c2:c9:a6:2a:61:b4:29:b6:38:fd:0d:e1:
1b:8e:4b:74:94:af:c5:a4:66:03:e4:91:e0:bb:29:6d:16:d5:
1d:40:2e:f2:11:58:42:2d:22:4c:3f:82:bc:e7:7d:c6:b8:67:
0e:3b:3c:39:4c:bd:e0:43:82:10:f8:94:cd:99:37:65:bf:3f:
e3:eb:14:05:e2:41:d4:28:c5:a3:3e:bc:cf:35:14:03:81:7d:
ed:5a:a4:44:de:e3:aa:23:56:eb:80:2f:e1:70:61:a3:ac:a6:
25:3f:68:37:2c:ad:ca:05:39:5c:6a:79:c2:10:9c:88:8c:6c:
00:2f:95:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:20:23 2024 by rpki-client on console-fra.rpki-client.org