Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/m1iV5_am1KupyWH3E7LnlxXwIfA.cer
File: m1iV5_am1KupyWH3E7LnlxXwIfA.cer (raw, json)
Hash identifier: bH6brJgPbsZ50d12j4X9o1p+jNxxsMkA8DMBFYg4IxI=
Subject key identifier: 9B:58:95:E7:F6:A6:D4:AB:A9:C9:61:F7:13:B2:E7:97:15:F0:21:F0
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC3B73066442BCC500106CFFC5D034691
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/7b/134b82-bcfb-445c-bd42-fc2a97b7d53e/1/m1iV5_am1KupyWH3E7LnlxXwIfA.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/7b/134b82-bcfb-445c-bd42-fc2a97b7d53e/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 06:30:11 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 51825
IP: 46.31.96.0/21
IP: 147.234.92.0 -- 147.234.103.255
IP: 185.24.204.0/22
IP: 213.137.64.0/20
IP: 2a02:5080::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:b7:30:66:44:2b:cc:50:01:06:cf:fc:5d:03:46:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 06:30:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9b5895e7f6a6d4aba9c961f713b2e79715f021f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:f7:2e:53:9a:c5:b1:09:fc:ab:57:81:2a:fa:
85:fe:ae:09:76:04:97:cd:2d:d5:bf:71:5c:3c:4f:
8a:14:27:47:ac:a6:3d:77:ca:2f:10:86:11:0a:32:
93:df:ae:00:8e:6d:f9:00:37:ff:15:ca:95:7a:b5:
da:ab:48:ca:61:4b:2f:54:7d:6e:fb:8f:87:1a:8b:
fd:76:5a:5a:18:81:5b:aa:0d:a4:ae:2f:cd:20:60:
9a:da:9b:59:9a:b8:15:a9:2b:df:7a:44:bc:ed:ab:
1f:ab:d1:b4:21:fa:2e:33:d6:1e:a3:b1:f8:39:47:
63:ce:d8:e6:d6:79:68:06:f0:2d:eb:8d:3c:f4:c7:
6a:7d:d1:77:a9:ab:db:f2:4d:d8:9b:b7:39:5e:85:
35:a6:02:8b:66:69:3c:e0:5c:10:be:e3:70:85:50:
be:3f:66:2e:61:87:d1:b6:f2:46:3c:7f:0c:fd:77:
93:54:23:7c:4e:90:46:4f:7d:fb:bd:1e:d7:95:f1:
b3:83:3b:88:9f:90:45:26:ec:6c:27:15:e0:b3:d8:
12:dc:94:7b:a7:18:ff:8d:c8:65:02:d2:59:fd:8f:
d5:51:1d:1f:fb:eb:fc:9b:be:5b:43:12:3b:b0:fd:
62:cd:fd:55:5a:ec:7a:ff:e7:57:dd:f9:74:08:e5:
e6:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:58:95:E7:F6:A6:D4:AB:A9:C9:61:F7:13:B2:E7:97:15:F0:21:F0
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/134b82-bcfb-445c-bd42-fc2a97b7d53e/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/134b82-bcfb-445c-bd42-fc2a97b7d53e/1/m1iV5_am1KupyWH3E7LnlxXwIfA.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.31.96.0/21
147.234.92.0-147.234.103.255
185.24.204.0/22
213.137.64.0/20
IPv6:
2a02:5080::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
51825
Signature Algorithm: sha256WithRSAEncryption
85:ba:94:f8:86:e9:9a:1a:76:b6:78:55:ea:86:f0:2a:0c:57:
a7:32:d3:c7:89:96:8a:04:5a:44:f3:51:dd:8e:a0:84:74:8e:
9a:f1:89:c5:45:65:0a:1b:d2:ae:6a:ec:5c:66:b0:d3:dc:da:
27:56:7a:bb:7d:07:03:24:f2:b6:83:da:01:7f:fc:10:4e:b7:
05:b9:dc:56:05:00:f8:b2:31:53:7c:71:1d:4a:75:aa:57:0e:
f1:e9:38:35:99:6e:c0:70:c5:70:2f:bf:66:7d:65:f4:59:a8:
b1:d5:10:ed:94:13:db:4a:9f:19:c8:e5:8b:0d:45:c6:81:a5:
b4:67:6d:29:21:7d:7d:1f:0b:07:2d:6c:ef:03:f6:4b:d7:72:
34:54:07:ea:d3:9a:99:cc:33:ae:9b:52:b9:b0:5a:8d:ac:2b:
7a:57:0c:90:11:e3:66:8b:3a:64:14:47:b7:47:95:3e:40:a6:
47:c9:5f:e8:97:5b:a5:05:77:5d:90:5f:63:9d:3c:50:ca:f2:
84:a3:b0:87:b4:dc:d3:e4:3a:d3:2a:bb:e8:ba:61:50:32:c6:
6f:81:c8:e8:5a:81:66:dc:89:93:37:fd:b1:7b:d2:4f:32:8f:
37:19:cd:0e:39:a3:2e:c4:ac:15:71:db:1f:97:ab:4d:c5:33:
6b:2d:8a:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 08:15:38 2024 by rpki-client on console-fra.rpki-client.org