Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/kkQvHPx17REAE4d5MKKdhvieu7Y.cer
File: kkQvHPx17REAE4d5MKKdhvieu7Y.cer (raw, json)
Hash identifier: ePQgVlLZN/fwHeKiZmHwfFfFZC5KUqRkjl4rMWjZ8HI=
Subject key identifier: 92:44:2F:1C:FC:75:ED:11:00:13:87:79:30:A2:9D:86:F8:9E:BB:B6
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC348A50C346A4539858A1ECB4A6209A5
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/42/9af881-ba0d-451d-a69b-00f96ffcf734/1/kkQvHPx17REAE4d5MKKdhvieu7Y.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/42/9af881-ba0d-451d-a69b-00f96ffcf734/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 04:29:27 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 201248
IP: 185.80.240.0/22
IP: 2a05:83c0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:48:a5:0c:34:6a:45:39:85:8a:1e:cb:4a:62:09:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 04:29:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=92442f1cfc75ed110013877930a29d86f89ebbb6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:dc:b6:04:64:ec:3a:f0:4c:c6:c3:a2:ab:12:
30:97:14:da:b4:d3:12:8c:7b:a6:26:97:7b:5f:fb:
76:fd:de:3b:a6:95:00:fa:90:6c:45:2b:76:6c:ce:
e3:9e:02:82:7e:80:0c:3c:93:7f:ff:a7:a8:7d:82:
bc:5c:5e:e4:84:23:21:79:b3:a0:96:36:b1:69:91:
fb:d9:5f:0f:84:65:e7:69:9f:5c:2d:c0:28:61:77:
f5:23:62:91:fd:ca:98:84:d6:5d:8f:9f:eb:22:4c:
2d:87:a6:8a:42:33:5d:ef:0b:8c:f8:95:d8:de:e2:
65:56:69:05:40:3e:c5:02:ee:4f:43:04:3d:b4:92:
e4:59:17:3f:91:cb:55:99:d3:d1:c6:9a:c0:58:88:
ee:34:bb:17:40:0a:72:9a:f9:d7:5c:d0:de:07:e5:
f5:b4:17:ec:bb:3b:9e:fa:ab:e1:b3:92:e6:4f:58:
9b:aa:55:5c:65:3a:88:47:e3:3a:9b:9e:8e:2e:a8:
86:61:74:ea:8b:b3:04:de:83:43:22:9b:44:51:31:
3a:53:8b:8d:29:e8:cd:2a:d7:d9:be:cc:b1:99:5e:
2b:74:7d:f9:ae:0f:08:c4:53:6d:7e:2f:56:26:cd:
6e:ee:a4:57:02:f0:f6:26:7e:dc:27:d7:17:e2:c2:
9c:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:44:2F:1C:FC:75:ED:11:00:13:87:79:30:A2:9D:86:F8:9E:BB:B6
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/9af881-ba0d-451d-a69b-00f96ffcf734/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/9af881-ba0d-451d-a69b-00f96ffcf734/1/kkQvHPx17REAE4d5MKKdhvieu7Y.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.80.240.0/22
IPv6:
2a05:83c0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
201248
Signature Algorithm: sha256WithRSAEncryption
86:b2:09:9d:8c:f9:70:fa:67:82:0f:8a:d8:75:3c:e0:43:f3:
4f:a5:b5:a3:55:4e:58:25:44:d9:ef:9e:2c:fc:94:16:bd:fc:
8e:94:30:58:81:c6:5a:1a:cc:1d:cf:e6:4f:cd:5b:21:45:ef:
57:82:94:f2:9c:78:2f:0d:59:0a:81:1d:4b:e1:67:a5:b1:4c:
54:9b:6a:7e:18:6f:b5:98:6c:59:96:bd:2b:0f:19:f7:35:7f:
63:7b:be:82:4a:e3:ed:80:26:7c:06:05:41:df:ef:59:89:e5:
b8:54:0d:04:1b:13:bb:2f:5d:7e:bf:cf:ac:d5:6b:2d:ce:62:
c3:cb:f5:98:5d:f7:d8:68:ab:23:f8:36:04:1d:0c:d3:1c:8b:
b6:89:03:ce:53:ff:8a:7f:0d:0f:af:73:a2:0c:07:a0:8a:16:
65:31:a7:cf:34:e3:d2:0f:2c:3b:a7:a6:c0:e3:ef:f5:e5:94:
74:f7:24:7d:c1:eb:c1:1c:bd:bf:f4:6b:61:14:c7:b1:e9:96:
4c:0e:96:00:ab:31:82:ef:83:ac:d9:56:8a:65:b8:14:5a:cf:
69:64:dd:c6:0c:a0:63:27:eb:80:23:5b:0b:8f:0a:07:31:8f:
1c:cf:79:87:fe:cb:1d:50:a5:83:4e:5d:b1:7d:a9:16:61:6b:
4f:3c:55:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 10:55:13 2024 by rpki-client on console-fra.rpki-client.org