Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/nHLoTFLlxJCdvHAqodIS1HiHX60.cer
File: nHLoTFLlxJCdvHAqodIS1HiHX60.cer (raw, json)
Hash identifier: 98Wl1E+qRKAp/BH51KVk7pvaJSL6TNP3S5hNZX9hCCo=
Subject key identifier: 9C:72:E8:4C:52:E5:C4:90:9D:BC:70:2A:A1:D2:12:D4:78:87:5F:AD
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CE48CDC56C122F998D992F629342CFD84
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/29/daccc4-36c8-4d4c-8c4e-5760b5d54df9/1/nHLoTFLlxJCdvHAqodIS1HiHX60.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/29/daccc4-36c8-4d4c-8c4e-5760b5d54df9/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Sun 07 Jan 2024 15:31:25 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 49924
IP: 91.109.192.0/21
IP: 109.73.176.0/20
IP: 176.101.171.0/24
IP: 185.123.232.0/22
IP: 2a06:be40::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:e4:8c:dc:56:c1:22:f9:98:d9:92:f6:29:34:2c:fd:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 7 15:31:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9c72e84c52e5c4909dbc702aa1d212d478875fad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:50:5b:66:02:2e:c6:c5:89:d0:40:9b:a2:96:
d0:5a:93:f8:3e:98:01:76:b6:50:1d:c7:83:c1:16:
b4:eb:6d:41:9d:13:0a:18:12:ab:f7:3a:3d:d8:c4:
dc:af:05:1e:7c:7b:2f:3d:96:3f:9b:e3:92:cf:3e:
ff:4e:ac:94:49:8b:1b:73:a5:75:36:83:a8:3d:6e:
fd:1d:47:6b:98:48:be:14:4f:0a:a6:f8:46:c0:ff:
e4:db:4c:1c:e0:82:7e:fa:7b:24:b9:16:fb:ae:e6:
7f:29:fd:9f:a7:6c:7a:af:e5:4f:a9:ae:a2:2a:8d:
b0:37:5a:9f:ec:1a:6a:dc:74:aa:40:63:22:fd:18:
9e:a2:36:1b:d6:89:1d:f6:78:ac:aa:6d:53:c5:ec:
99:4f:02:7d:33:82:1f:d7:2c:eb:3d:11:85:d8:ba:
6c:68:f3:9a:98:8c:b4:18:14:02:d6:f0:61:e5:02:
ef:d6:31:c0:d9:09:3f:1b:23:bd:5c:1c:06:08:3c:
55:ef:51:2f:15:40:06:de:ba:8e:65:da:e2:dc:29:
7a:6c:04:9c:97:ca:da:05:15:ff:13:e1:ac:2f:d8:
00:77:62:b4:51:74:f0:a7:f2:27:86:33:62:db:62:
ec:78:2b:0a:0d:d7:10:15:4a:fb:a9:16:29:3a:1b:
6d:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:72:E8:4C:52:E5:C4:90:9D:BC:70:2A:A1:D2:12:D4:78:87:5F:AD
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/daccc4-36c8-4d4c-8c4e-5760b5d54df9/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/daccc4-36c8-4d4c-8c4e-5760b5d54df9/1/nHLoTFLlxJCdvHAqodIS1HiHX60.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.109.192.0/21
109.73.176.0/20
176.101.171.0/24
185.123.232.0/22
IPv6:
2a06:be40::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
49924
Signature Algorithm: sha256WithRSAEncryption
a6:40:be:fa:30:59:cf:c5:b5:f5:83:4c:32:51:5e:72:67:8f:
b6:8a:2b:e3:dd:c9:06:51:5f:28:e1:5f:f4:1f:66:af:93:ec:
b1:7c:f0:b4:6e:a3:8d:46:70:91:9d:3c:f5:09:d0:cc:d8:b0:
b6:7a:67:f0:27:58:2c:59:95:5b:bb:1b:51:06:94:11:2c:7a:
6a:82:06:d9:71:6a:ef:29:8e:c9:4e:36:45:25:8b:13:c7:99:
28:82:98:3e:29:ff:ab:81:88:d9:b9:d3:5c:0c:2d:ac:2a:f1:
67:6f:d9:36:0f:76:8b:c4:6b:8b:24:40:d3:fc:62:1d:88:8c:
3f:20:6d:9c:d0:4b:16:79:1a:e6:fc:43:61:12:a8:be:63:57:
fb:23:c7:02:f8:ef:62:65:e1:39:09:d4:17:35:07:25:23:8f:
77:96:d1:e4:c6:95:96:37:5b:50:cb:8f:5a:c7:45:34:4e:e3:
1e:c0:5f:c3:27:cc:b2:81:9a:b7:cb:5a:8a:23:c6:8a:10:94:
dd:18:27:ce:51:26:02:fb:1f:ca:64:62:5f:55:1d:28:20:af:
d7:92:80:88:0c:51:32:b3:d6:45:5f:a8:39:06:0f:21:b3:a4:
bb:76:32:f1:57:f2:63:e9:d0:e7:ae:c3:b1:fc:bc:16:bc:ed:
11:9f:b9:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 10:57:25 2024 by rpki-client on console-fra.rpki-client.org