Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/mpYaEhxSAFTfTOWeVZKsaLBQa-8.cer
File: mpYaEhxSAFTfTOWeVZKsaLBQa-8.cer (raw, json)
Hash identifier: GgSrog4x1GDMiRxSRDUWhiXmhyvlG15mLlesHGXPtgw=
Subject key identifier: 9A:96:1A:12:1C:52:00:54:DF:4C:E5:9E:55:92:AC:68:B0:50:6B:EF
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC8E224A8676A984A780F6495AD9EB110
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/5e/c5c233-b478-44bc-ae9e-48bc8cb3cdaa/1/mpYaEhxSAFTfTOWeVZKsaLBQa-8.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/5e/c5c233-b478-44bc-ae9e-48bc8cb3cdaa/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 06:35:12 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 39228
IP: 81.21.48.0/20
IP: 2a02:24c8::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:e2:24:a8:67:6a:98:4a:78:0f:64:95:ad:9e:b1:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 06:35:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9a961a121c520054df4ce59e5592ac68b0506bef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:f6:a0:ae:b6:43:83:3f:c6:12:7a:33:c8:00:
7b:a6:3e:15:0c:26:c4:17:37:db:f3:24:07:19:cd:
cc:54:63:3e:ec:06:6a:07:40:ec:d0:48:e3:7c:61:
62:e8:f8:9b:44:1f:d6:0e:a8:e8:b5:77:f0:ff:d7:
49:14:ce:4f:3f:ea:c1:a1:6d:b2:67:b0:c8:bb:e7:
05:26:44:be:f0:5f:19:bf:30:5d:a8:a5:9f:6b:08:
d6:22:70:b3:ec:5b:3d:e2:2e:8e:8b:66:25:39:71:
b7:8e:fe:d3:d8:cb:de:22:f2:a9:45:92:76:85:0a:
3c:ca:55:9e:46:f4:93:db:56:2f:d9:96:a5:27:13:
5e:aa:84:39:5c:2e:e0:fe:d7:31:2d:7e:ca:16:8e:
63:2c:74:10:99:95:1a:d3:0c:11:85:db:a6:90:26:
38:7a:9c:7e:bc:34:78:2e:a7:fd:8d:33:38:4f:2a:
f8:f8:a4:da:0c:92:1a:e8:05:f2:a5:8d:67:74:ac:
c8:86:92:d8:04:b0:54:4d:d4:7a:2c:91:d1:6e:9a:
81:b6:79:b4:c3:f5:8c:f8:28:e8:31:cc:3d:65:fe:
d7:9f:fa:c3:22:51:90:c7:a2:98:a3:51:89:d1:9c:
2f:50:dc:b4:81:8c:77:4b:b2:2c:b4:ec:06:2a:e5:
dd:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:96:1A:12:1C:52:00:54:DF:4C:E5:9E:55:92:AC:68:B0:50:6B:EF
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/c5c233-b478-44bc-ae9e-48bc8cb3cdaa/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/c5c233-b478-44bc-ae9e-48bc8cb3cdaa/1/mpYaEhxSAFTfTOWeVZKsaLBQa-8.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.21.48.0/20
IPv6:
2a02:24c8::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
39228
Signature Algorithm: sha256WithRSAEncryption
6b:f7:27:2c:e1:9b:cd:3b:b6:17:7a:23:3f:e1:f8:d3:2c:25:
55:df:90:31:52:2b:c4:66:bf:77:89:5a:61:1f:78:3d:d5:e3:
2a:4b:5d:bb:63:91:63:95:5d:7b:5c:9d:78:c9:22:99:29:23:
89:b3:04:f2:a8:a7:c5:19:cf:c8:01:4a:a4:c4:fd:aa:44:95:
e5:b0:8d:d4:a3:23:16:e2:0d:d2:c9:f9:d7:32:f5:5d:5b:c3:
f7:12:d5:2f:24:81:73:96:39:dc:da:c0:e4:62:3f:91:82:de:
76:63:70:49:c6:5f:0d:19:cc:8b:4a:86:dd:f3:46:43:08:7c:
31:15:b3:18:02:60:05:2e:f8:bb:d2:d2:2c:b8:cc:f8:d0:ca:
ca:04:7e:8a:c3:fd:c5:d2:1c:e1:cc:9d:f3:66:63:21:8b:05:
ac:1d:33:be:4c:0f:d9:cd:7e:b7:b5:8d:e3:66:e0:05:fd:9d:
48:c0:14:14:29:97:cc:b0:0f:ec:30:ba:ec:a4:44:98:8a:81:
f7:1c:46:70:e3:47:fb:1a:a3:c0:61:40:b3:26:c7:0d:d9:9c:
80:0e:c5:70:7e:e0:4b:f5:cb:61:3a:bf:52:63:3d:5e:2b:c3:
bc:ed:c8:79:97:96:61:00:74:9e:15:53:18:b5:2d:4e:90:56:
39:2a:52:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 03:41:16 2024 by rpki-client on console-fra.rpki-client.org