Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/nS2GwCi_w46HVFXPgmiaNiZTAsI.cer
File: nS2GwCi_w46HVFXPgmiaNiZTAsI.cer (raw, json)
Hash identifier: EG9zHfb4nslxquXZUt0Q3iwhnWM2ws6DU6NEYix65OQ=
Subject key identifier: 9D:2D:86:C0:28:BF:C3:8E:87:54:55:CF:82:68:9A:36:26:53:02:C2
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC6B901B78DC2D1E288B854B729307BF9
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/b6/c078fd-d2b6-46ba-a6ba-44c3b75d3f33/1/nS2GwCi_w46HVFXPgmiaNiZTAsI.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/b6/c078fd-d2b6-46ba-a6ba-44c3b75d3f33/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 20:31:02 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 205321
IP: 185.217.248.0/22
IP: 2a0c:af00::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b9:01:b7:8d:c2:d1:e2:88:b8:54:b7:29:30:7b:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 20:31:02 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9d2d86c028bfc38e875455cf82689a36265302c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:1c:ad:60:a1:a6:23:42:69:d5:36:4a:b0:65:
0a:d9:6d:07:8e:f2:e5:30:28:59:01:fa:a4:41:54:
f2:a5:94:e4:88:b2:6f:25:5e:89:c5:dd:79:a6:31:
96:ee:2c:82:2f:98:c8:3c:2b:94:d8:ea:cb:87:39:
15:10:31:67:de:61:2b:6b:7d:91:be:b3:f2:98:3b:
65:71:77:a3:32:7c:9d:ab:8b:0e:1e:5c:30:ac:92:
a4:1c:5a:c3:56:43:3a:c7:a6:37:05:02:04:8a:cd:
ba:3f:cc:66:a0:49:d4:8a:22:9f:06:d3:24:41:9e:
63:c7:ce:0f:46:8a:2e:93:eb:d1:07:43:26:f7:74:
34:87:81:ed:65:3e:bf:f4:11:77:52:9f:04:6b:e7:
23:7a:bc:30:37:b9:d9:f9:78:2b:e7:cc:93:09:03:
bd:29:e0:65:0a:06:a5:0d:09:14:2e:15:dd:07:54:
b1:e4:0f:13:33:8b:ef:9a:5c:66:17:b4:d9:d7:3c:
2c:c3:f8:b8:c9:50:14:ab:9b:af:ca:54:b8:a1:9f:
6b:a6:9a:5b:5d:a9:ef:95:17:a2:0c:96:39:46:cd:
fe:97:4b:40:4e:ac:36:ac:f1:b7:ff:85:1d:5f:f9:
12:fc:14:64:dc:ea:ce:6f:51:5c:98:24:05:78:96:
62:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:2D:86:C0:28:BF:C3:8E:87:54:55:CF:82:68:9A:36:26:53:02:C2
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/c078fd-d2b6-46ba-a6ba-44c3b75d3f33/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/c078fd-d2b6-46ba-a6ba-44c3b75d3f33/1/nS2GwCi_w46HVFXPgmiaNiZTAsI.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.217.248.0/22
IPv6:
2a0c:af00::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
205321
Signature Algorithm: sha256WithRSAEncryption
47:1b:6d:f8:82:07:e6:b8:9b:e0:e1:63:a1:52:b4:71:be:09:
53:a6:9d:f1:25:5e:a0:e4:58:15:1d:ae:7a:3b:a8:75:d0:a2:
b0:82:9b:6c:21:80:fa:19:29:1f:a3:48:5f:07:e3:d5:88:24:
ab:d5:61:e7:ff:35:11:22:c3:05:41:cc:f7:a8:5a:a1:a1:dd:
9e:2a:6b:28:bd:7a:8e:34:8d:bd:26:ad:02:4c:4e:e7:33:32:
89:fd:41:4c:91:22:e4:12:5c:17:02:fa:11:91:d2:28:21:d6:
6a:50:09:21:54:67:92:da:a5:f2:3f:91:2e:ac:74:1c:99:2e:
fc:86:33:bb:81:96:b6:42:3d:65:6d:50:10:45:29:2a:24:85:
64:e8:dd:42:71:5f:f4:82:69:37:3c:2d:5d:ee:b5:1a:2b:c6:
c3:46:64:c3:97:91:e6:80:e6:c5:6b:4c:ac:90:03:df:db:04:
08:be:70:bb:5a:34:06:aa:44:02:d8:45:53:62:5d:f0:80:4a:
25:99:2b:3d:db:6b:19:82:86:b0:b8:78:90:1c:e5:a8:f4:75:
7b:1e:da:9f:da:78:5d:71:71:d3:9f:d1:34:2f:9d:6a:1e:85:
2c:cb:6e:6c:10:d9:a5:87:34:4b:51:25:f7:86:07:de:e5:58:
aa:c3:6c:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 03:41:49 2024 by rpki-client on console-fra.rpki-client.org