Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/jWLdvflYu0uYPali7PA76u441Ek.cer
File: jWLdvflYu0uYPali7PA76u441Ek.cer (raw, json)
Hash identifier: J7bRu95TmTWcP0+tCMUFdzhigOdgi8bDxwkMm9SQmSM=
Subject key identifier: 8D:62:DD:BD:F9:58:BB:4B:98:3D:A9:62:EC:F0:3B:EA:EE:38:D4:49
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC94E5579E23F043B85F9BE818B7FBBE5
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/52/b20bec-3846-4bd1-812f-06e00a3ea062/1/jWLdvflYu0uYPali7PA76u441Ek.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/52/b20bec-3846-4bd1-812f-06e00a3ea062/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 08:33:23 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 206114
IP: 87.255.160.0/19
IP: 2a04:2800::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4e:55:79:e2:3f:04:3b:85:f9:be:81:8b:7f:bb:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 08:33:23 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8d62ddbdf958bb4b983da962ecf03beaee38d449
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:ca:53:8d:77:e9:cd:e4:54:91:40:ed:8c:45:
b5:19:a3:e2:bd:a2:9d:73:86:23:56:d5:31:e0:7c:
29:96:1b:3d:3a:f6:74:64:80:f9:ce:57:74:5f:7f:
fb:03:be:d1:a3:30:d5:79:2d:01:a0:3d:6e:f9:82:
8c:76:9e:3b:8a:cc:2c:97:24:4e:4b:01:e2:16:20:
a5:98:7e:5a:ab:2d:2c:e1:5c:10:ce:d6:9e:13:56:
d0:3c:22:5c:3a:6c:6b:de:b8:4b:a7:66:37:00:40:
3b:f5:a6:a9:22:1c:8c:99:ac:2e:c6:2e:3c:49:37:
65:10:3f:4d:19:c7:d4:38:94:b0:52:77:db:05:fd:
e5:c2:86:41:92:9f:84:7d:79:5b:1f:96:8c:f0:2e:
ae:f2:d1:0b:d9:6f:ed:7c:c4:d6:46:91:2f:57:b7:
f1:7f:72:4c:5a:dc:3d:c9:f2:c8:2f:73:77:e8:37:
ac:5b:d1:66:b8:90:32:67:f2:6f:1f:47:4a:84:15:
94:87:5b:99:dd:32:49:1b:ce:49:10:50:50:3b:a8:
e3:5d:da:ab:33:ac:9b:2a:a3:23:7d:92:04:85:b2:
d3:a9:f4:13:d7:e3:9a:f3:a2:79:24:4b:6f:a0:b5:
07:df:1e:75:cd:2b:36:93:3f:15:ce:a5:a6:b8:61:
5e:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:62:DD:BD:F9:58:BB:4B:98:3D:A9:62:EC:F0:3B:EA:EE:38:D4:49
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/b20bec-3846-4bd1-812f-06e00a3ea062/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/b20bec-3846-4bd1-812f-06e00a3ea062/1/jWLdvflYu0uYPali7PA76u441Ek.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.255.160.0/19
IPv6:
2a04:2800::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
206114
Signature Algorithm: sha256WithRSAEncryption
02:fe:64:fa:97:db:aa:57:73:8e:3f:a2:25:d2:c9:3c:1b:c7:
78:47:0f:26:19:d9:40:f7:1b:6a:e7:54:7e:af:04:7f:e0:b4:
e4:54:37:62:3c:a9:11:2a:90:8f:5d:ba:b2:66:48:39:1f:12:
dd:0b:4d:44:fd:1d:4c:d7:4a:08:a7:19:4a:9b:c0:60:55:4a:
8d:b2:d1:74:21:b6:02:90:19:df:f7:e2:57:44:5e:37:d2:5f:
05:2b:ae:3a:2c:22:3b:ef:72:a3:65:dc:fa:aa:b0:ac:a1:83:
01:0f:83:b1:11:23:56:76:c4:44:86:42:47:c9:4a:f5:57:8a:
50:6b:82:f9:80:d2:93:7a:0f:fb:d9:7f:ad:0b:07:76:b5:90:
a0:ae:1d:b0:b1:b7:e9:73:11:47:27:8d:e4:a3:86:19:15:c7:
d2:ce:d5:0f:7f:98:93:16:fe:5d:4a:a7:8b:bc:cc:3f:08:f6:
aa:92:bd:32:59:a3:a8:e8:09:66:1b:c8:69:c2:04:1f:8b:56:
3d:08:43:b9:2d:29:f2:f3:65:30:1d:86:3b:7d:dc:9b:80:3c:
72:2f:59:c7:61:03:13:8a:a5:c2:5c:5b:fd:a2:5c:29:f0:a4:
5d:2c:ce:f8:a6:7f:e4:4c:f6:60:6f:a3:47:87:8f:64:5e:f4:
4f:2d:de:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 03:38:07 2024 by rpki-client on console-fra.rpki-client.org