Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/o6jK9iF86xDdjBRvlrnXc-3YiGQ.cer
File: o6jK9iF86xDdjBRvlrnXc-3YiGQ.cer (raw, json)
Hash identifier: BdEwZvBzJhr/INrc2g8DFKm/w2fkqw3G8znuUULR9F4=
Subject key identifier: A3:A8:CA:F6:21:7C:EB:10:DD:8C:14:6F:96:B9:D7:73:ED:D8:88:64
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC9BBDA3DA89A69D061E70AFADEA8851B
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/cf/5fd023-92ea-4a63-b7d0-e5cba2137308/1/o6jK9iF86xDdjBRvlrnXc-3YiGQ.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/cf/5fd023-92ea-4a63-b7d0-e5cba2137308/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 10:33:00 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 200990
IP: 185.81.228.0/22
IP: 2a03:6220::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bb:da:3d:a8:9a:69:d0:61:e7:0a:fa:de:a8:85:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 10:33:00 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a3a8caf6217ceb10dd8c146f96b9d773edd88864
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:aa:91:2b:20:55:d8:c4:92:b7:b8:9c:2b:88:
32:73:75:59:91:46:b4:02:cc:ac:e7:67:ed:98:cf:
30:c8:59:2d:53:f9:b0:2c:36:de:13:0c:c3:14:2e:
92:82:23:4b:42:8a:e3:27:61:de:22:ea:5f:5f:70:
52:2d:06:14:06:e3:de:8d:01:c7:84:8e:13:9e:40:
25:c1:82:83:ce:66:c2:3e:32:d6:ac:40:43:76:98:
3a:67:15:61:6d:01:f7:7b:dc:6d:3b:d0:32:22:b5:
a0:08:40:8b:ba:73:6f:a5:09:04:6d:c6:0f:ee:9e:
95:4b:19:7a:05:e7:fd:4a:cf:6d:1b:67:c6:ae:65:
52:c5:ba:54:68:18:94:4e:c6:75:0d:5b:6f:38:99:
5c:d8:2d:ab:ba:da:5d:f0:19:58:80:01:99:e6:b6:
d8:5a:9c:ec:27:b2:84:e2:22:bf:7d:67:4d:f4:fd:
c8:b3:1e:7a:cb:ee:69:b2:6c:10:ab:e7:ff:2a:02:
e1:17:a6:03:58:09:47:cf:de:e2:3f:45:b7:82:43:
04:6f:4c:e6:73:2a:06:4c:4f:ec:e8:02:a5:3f:97:
10:3d:fb:d7:2a:3e:57:da:8e:65:f8:2a:26:77:db:
3d:3c:04:79:30:95:3b:18:dc:74:98:d3:8f:c6:fa:
fc:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:A8:CA:F6:21:7C:EB:10:DD:8C:14:6F:96:B9:D7:73:ED:D8:88:64
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/5fd023-92ea-4a63-b7d0-e5cba2137308/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/5fd023-92ea-4a63-b7d0-e5cba2137308/1/o6jK9iF86xDdjBRvlrnXc-3YiGQ.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.81.228.0/22
IPv6:
2a03:6220::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
200990
Signature Algorithm: sha256WithRSAEncryption
99:6e:e7:f6:3f:6d:85:7b:c2:e6:b1:ec:53:b9:54:d5:10:e4:
c9:19:38:2a:ae:6f:ba:a3:3f:48:b9:b2:b0:e2:c9:4a:0a:13:
42:d7:bd:1e:11:42:cd:fd:9f:44:28:2d:b4:a5:de:f7:92:f6:
72:49:87:f1:e7:03:26:a8:33:dd:3e:bf:50:9f:00:a4:fb:07:
44:dc:19:c6:e5:be:bb:b7:0c:73:01:89:02:7c:e7:e4:48:39:
9e:e5:7d:df:1d:2c:b8:32:14:26:d8:7a:9f:ec:60:7e:6a:72:
a6:76:40:60:49:92:2b:b5:74:41:14:76:11:4a:f1:f1:e4:da:
9f:51:0f:17:3b:37:04:e7:ea:3d:71:15:81:bc:20:da:1b:e1:
26:79:18:98:47:a5:4d:ed:67:34:e3:ca:97:ef:2a:c3:a5:23:
cb:ba:37:72:e5:3c:03:38:bd:62:c0:a6:fe:e6:89:57:0b:8e:
b5:3b:7f:04:30:23:38:14:2d:1e:b3:3d:67:93:1d:39:18:5d:
12:92:29:b4:1c:b7:53:ea:a9:2a:84:53:26:10:61:55:03:33:
a1:90:6c:d7:83:a2:09:ac:e0:ff:ab:fe:ab:8d:c2:a2:7f:36:
ec:25:a2:8f:7c:97:a0:65:64:45:6c:15:91:2a:7e:8a:04:9e:
7a:4e:5f:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:42:32 2024 by rpki-client on console-ams.rpki-client.org