Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/o-boI_bdpn0oOp9BpykJkGrJqDc.cer
File: o-boI_bdpn0oOp9BpykJkGrJqDc.cer (raw, json)
Hash identifier: sAqI4xuKc/kJih2MBFMJJ1hz+w4y2y1YB5WvIfvJ1Tc=
Subject key identifier: A3:E6:E8:23:F6:DD:A6:7D:28:3A:9F:41:A7:29:09:90:6A:C9:A8:37
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC8015DBB5F0A99E7E60B764E404893C2
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/46/18a1bc-967c-4931-85b5-00f00af1c8d7/1/o-boI_bdpn0oOp9BpykJkGrJqDc.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/46/18a1bc-967c-4931-85b5-00f00af1c8d7/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 02:29:41 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 44124
IP: 78.31.136.0/21
IP: 79.124.96.0/19
IP: 81.161.104.0/22
IP: 185.15.0.0/22
IP: 185.34.236.0/22
IP: 185.189.136.0/22
IP: 193.189.116.0/23
IP: 195.20.218.0/23
IP: 195.225.244.0/22
IP: 2a03:6600::/29
IP: 2a0b:ea80::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:5d:bb:5f:0a:99:e7:e6:0b:76:4e:40:48:93:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 02:29:41 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a3e6e823f6dda67d283a9f41a72909906ac9a837
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:6b:98:c0:d9:8a:3b:2f:7d:4b:e3:9e:d7:50:
12:ed:fd:6b:f8:03:50:85:f0:b0:4f:df:51:b5:45:
a9:52:a9:10:93:61:3d:c1:54:82:01:88:80:7d:38:
ab:bf:f7:fc:44:fc:71:6f:89:a4:45:3b:62:5a:cb:
cf:0a:93:4b:41:9f:31:7e:5b:98:2f:17:b8:31:23:
e7:c7:61:77:5b:41:93:48:30:1a:28:66:1b:39:79:
2d:64:fc:ae:16:82:99:97:a8:ac:79:da:49:ac:4b:
43:63:85:70:39:f1:dd:6e:d5:9c:7e:8c:5f:b7:5f:
e5:12:83:b0:b0:d3:35:fd:bf:6b:a3:c8:e4:d8:64:
f7:d3:a5:0b:c7:18:28:18:1c:39:86:e6:33:5c:69:
56:ed:95:2f:23:d3:44:13:ab:8e:33:e7:b4:cf:e4:
18:60:eb:4d:e3:a4:9f:94:2d:ce:c5:06:7c:4f:a7:
6c:10:a3:cc:2b:9a:aa:5b:79:e7:c3:f1:cd:77:b1:
62:35:6c:8a:38:d4:8a:01:b6:41:8f:78:14:e8:a6:
b1:77:a6:ea:9a:71:89:56:ab:84:5b:55:ae:9a:4c:
ba:14:c0:90:02:63:66:d5:d2:8f:92:de:be:60:63:
b9:ae:ed:db:40:c0:f4:20:90:50:cb:25:04:67:23:
2c:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:E6:E8:23:F6:DD:A6:7D:28:3A:9F:41:A7:29:09:90:6A:C9:A8:37
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/18a1bc-967c-4931-85b5-00f00af1c8d7/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/18a1bc-967c-4931-85b5-00f00af1c8d7/1/o-boI_bdpn0oOp9BpykJkGrJqDc.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.31.136.0/21
79.124.96.0/19
81.161.104.0/22
185.15.0.0/22
185.34.236.0/22
185.189.136.0/22
193.189.116.0/23
195.20.218.0/23
195.225.244.0/22
IPv6:
2a03:6600::/29
2a0b:ea80::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
44124
Signature Algorithm: sha256WithRSAEncryption
33:6d:3a:98:60:ce:01:ee:29:15:7c:09:70:49:ba:35:1f:79:
11:e6:03:dc:79:d9:a5:0d:b4:c3:83:0a:62:29:4c:0e:9c:d1:
2d:2e:ee:f5:42:0e:2d:81:0e:e4:23:99:e2:1e:8a:c2:ce:61:
9e:38:2b:a3:4d:fe:dc:0c:c9:4c:96:25:fc:f8:30:40:f7:db:
ec:cc:cc:30:fd:f2:c4:b8:bb:fa:49:42:1a:2a:2c:32:30:03:
b7:de:45:aa:23:09:83:68:77:1d:06:16:af:31:6c:c2:2b:5f:
b3:6d:b1:76:66:d8:2e:2d:33:c8:e3:67:e9:91:aa:ee:83:53:
3f:5a:20:a1:33:76:82:fa:8c:82:a0:0f:3e:4b:e9:bb:75:1a:
c0:fd:ac:10:d1:64:31:a1:e1:a0:99:1b:f6:01:f6:59:a1:81:
49:57:ad:33:8e:c5:3f:20:87:25:21:e9:69:d7:b8:63:50:a6:
4e:ef:a6:66:32:a9:fd:b3:6e:14:bc:35:0f:47:33:6c:fe:39:
5f:ca:c3:12:f4:c1:10:04:15:a5:46:fa:4c:4e:f6:67:e5:9b:
af:cb:79:cf:00:4a:4e:37:0a:4d:9b:33:76:cb:f2:69:c3:36:
a4:d2:1a:32:ad:aa:bf:ef:48:58:3c:39:c5:96:4b:c3:99:cb:
45:c2:cf:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 02:13:54 2024 by rpki-client on console-ams.rpki-client.org