Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/kPJzpjxR6vP55a57n6r9spMTQN8.cer
File: kPJzpjxR6vP55a57n6r9spMTQN8.cer (raw, json)
Hash identifier: o9Z7h7lmU/DhDWhVyTqMDmkISm9Hv/AUWd6VSrkI/wk=
Subject key identifier: 90:F2:73:A6:3C:51:EA:F3:F9:E5:AE:7B:9F:AA:FD:B2:93:13:40:DF
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC94E277C91E084937D8BF14606A321CE
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/d7/bc676b-c0b6-4fbb-933f-5082c28b715f/1/kPJzpjxR6vP55a57n6r9spMTQN8.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/d7/bc676b-c0b6-4fbb-933f-5082c28b715f/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 08:33:11 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 203339
AS: 212911
IP: 84.38.128.0/24
IP: 185.220.116.0/22
IP: 2a0b:f6c0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 11:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4e:27:7c:91:e0:84:93:7d:8b:f1:46:06:a3:21:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 08:33:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=90f273a63c51eaf3f9e5ae7b9faafdb2931340df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:a0:65:ea:8d:4f:dc:15:de:0a:c9:ad:c9:0f:
47:9c:52:62:bc:47:34:b6:de:a8:df:1b:64:d8:ab:
54:4c:80:6e:69:71:ea:dc:ea:ac:77:99:21:a2:48:
4e:d7:8f:ab:57:ed:ae:dd:fe:40:e1:0c:a4:88:a3:
47:1c:66:72:59:9a:83:05:cf:c7:5c:76:ac:cd:3a:
84:eb:28:a1:ac:b3:43:74:33:6d:44:5b:4e:de:a4:
96:42:63:48:1a:a9:3d:1e:45:99:fd:72:ce:ab:70:
47:89:f7:23:9d:75:58:57:77:79:f7:51:6f:7d:e7:
e6:68:f3:c4:04:16:2f:84:63:af:ce:10:aa:49:83:
9d:62:81:b3:6b:03:fe:be:2e:77:95:ca:79:29:75:
55:17:25:4a:0d:99:d3:0e:08:f0:1d:b2:db:86:7e:
b1:95:82:b9:c8:e4:82:e9:f3:41:9c:2f:1d:12:c2:
e5:90:18:76:3e:7d:d0:59:6f:48:80:10:de:d5:31:
a9:1c:f3:73:ed:45:11:fa:27:b3:a7:ae:01:c5:e5:
50:48:c6:c6:12:9b:38:4a:4f:e2:19:f2:c3:ce:ca:
b0:8e:72:03:5e:16:81:08:30:c3:96:79:90:50:75:
04:32:81:cd:0b:72:2d:a9:7a:62:1b:38:79:51:2d:
b6:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:F2:73:A6:3C:51:EA:F3:F9:E5:AE:7B:9F:AA:FD:B2:93:13:40:DF
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/bc676b-c0b6-4fbb-933f-5082c28b715f/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/bc676b-c0b6-4fbb-933f-5082c28b715f/1/kPJzpjxR6vP55a57n6r9spMTQN8.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.38.128.0/24
185.220.116.0/22
IPv6:
2a0b:f6c0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
203339
212911
Signature Algorithm: sha256WithRSAEncryption
09:8b:40:fa:c0:5c:ba:76:ca:65:be:f1:5b:98:d9:20:b5:34:
ee:b7:82:7f:b5:0c:00:6e:60:1e:19:4c:ff:cb:30:52:16:09:
87:e5:03:95:57:f6:d2:16:86:cb:3b:71:0e:52:cd:82:5d:14:
9f:df:c4:3e:9b:2b:52:92:3a:bd:e7:61:96:0e:3e:c1:ad:20:
45:fd:cb:5e:b2:88:6a:0f:2b:37:60:62:76:e5:7f:d1:89:12:
2f:90:76:e0:f2:fb:12:45:33:4c:8e:0c:73:99:f7:cf:ee:e1:
e4:3b:6b:54:cb:88:c0:de:0b:a7:88:fc:df:ef:2d:61:9d:cc:
29:b1:19:47:12:5d:10:07:c3:c2:f1:99:bb:ea:b7:d4:2a:52:
47:de:f7:30:4a:b8:cf:e8:49:08:32:d7:7a:4b:5b:64:16:86:
09:8f:44:2b:e3:8f:66:97:b0:7d:d2:af:63:ae:c0:1d:f0:c4:
8d:4b:a5:e0:a6:5d:2b:41:69:45:21:1b:3a:22:f3:6a:13:6d:
63:4f:85:02:0c:4c:3d:1e:8e:92:e4:73:09:40:99:4e:c2:27:
a1:41:4b:64:3c:cd:0e:48:6e:c6:1a:dc:cb:b5:dc:a9:6e:6b:
7d:6b:e7:63:1b:17:60:64:d3:40:48:55:7d:74:51:27:67:70:
8c:d0:ac:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 14:11:37 2024 by rpki-client on console-ams.rpki-client.org