Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/oOOBtudsuVIOjY9Wd27KD-F2zEA.cer
File: oOOBtudsuVIOjY9Wd27KD-F2zEA.cer (raw, json)
Hash identifier: Zo3QzLVTUTmjt/KRCS3hXDHxfCqd5cGiqzx/mkK7miE=
Subject key identifier: A0:E3:81:B6:E7:6C:B9:52:0E:8D:8F:56:77:6E:CA:0F:E1:76:CC:40
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC5DBFBCE30D77C6F4946845270FC68C8
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/49/8e6f08-30f0-46dd-a7a1-a9c384128d42/1/oOOBtudsuVIOjY9Wd27KD-F2zEA.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/49/8e6f08-30f0-46dd-a7a1-a9c384128d42/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 16:29:37 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 39650
AS: 57240
AS: 204203
IP: 185.161.36.0/22
IP: 185.164.72.0/22
IP: 185.229.28.0/22
IP: 2a06:5a40::/29
IP: 2a0a:d400::/29
IP: 2a0d:6600::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:db:fb:ce:30:d7:7c:6f:49:46:84:52:70:fc:68:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 16:29:37 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a0e381b6e76cb9520e8d8f56776eca0fe176cc40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:f0:5a:9f:aa:e9:be:e9:26:86:c3:1f:1b:a2:
03:a8:31:fb:42:36:ee:e4:fa:22:a2:0e:21:4b:0c:
c5:08:f1:77:e4:15:89:fd:fb:39:af:2a:89:ce:dd:
c0:e9:e8:4b:52:62:93:9d:2e:4e:54:54:6c:05:24:
18:af:00:50:d8:89:cf:48:d9:57:80:ce:14:3f:d8:
d0:29:7d:b2:15:b1:af:f2:e7:d3:1d:fc:22:96:42:
2d:de:df:5a:2c:6c:fe:d8:98:42:0f:bb:c1:29:db:
84:e6:3c:39:fd:51:d6:41:b5:40:a2:f5:0a:6f:76:
37:37:1b:83:aa:84:35:2b:e8:a4:bb:0f:96:16:8f:
f2:b4:7c:56:41:bb:1a:86:1b:32:ae:a6:d9:40:c5:
3c:b7:f5:b6:0a:cf:ed:52:74:10:10:84:84:93:7f:
51:b2:b0:f6:8a:5c:96:4c:fa:7e:e4:3b:1c:cc:6f:
a6:e0:ca:66:7f:54:25:a7:23:36:88:d2:ba:5a:fc:
c2:92:ad:04:0d:da:fc:5b:cf:dc:26:bf:0c:1d:7d:
b2:31:aa:ee:6f:a4:fc:6e:22:d5:3e:f3:0d:9e:c2:
5e:bb:4c:01:d0:aa:16:6e:be:28:ad:b4:45:32:53:
4f:11:21:78:ad:28:32:6e:ca:dc:fd:db:4e:84:83:
79:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:E3:81:B6:E7:6C:B9:52:0E:8D:8F:56:77:6E:CA:0F:E1:76:CC:40
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/8e6f08-30f0-46dd-a7a1-a9c384128d42/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/8e6f08-30f0-46dd-a7a1-a9c384128d42/1/oOOBtudsuVIOjY9Wd27KD-F2zEA.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.161.36.0/22
185.164.72.0/22
185.229.28.0/22
IPv6:
2a06:5a40::/29
2a0a:d400::/29
2a0d:6600::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
39650
57240
204203
Signature Algorithm: sha256WithRSAEncryption
65:41:2d:04:b4:5c:6c:30:40:3f:de:36:19:d0:40:d7:3a:e6:
35:6b:9f:4a:a5:62:cc:dc:ab:45:a5:92:7d:94:97:b4:43:c1:
4d:04:4a:98:d4:23:16:99:4c:2a:6f:d7:bf:24:1c:f2:3a:51:
b1:de:10:9b:63:27:74:97:d0:f5:ec:70:36:76:99:cc:bf:45:
e0:51:e3:5e:33:2c:cc:7d:13:fb:92:9a:67:64:fb:f7:4d:04:
c5:6b:a0:cb:fa:f8:d4:14:9f:13:01:2d:c6:20:a7:fb:35:fb:
5d:01:1f:e1:b8:c5:64:e2:34:00:79:00:10:9a:e6:7c:a1:d1:
c8:a9:0a:41:47:41:c1:88:6c:ce:98:d0:14:65:e9:8d:22:11:
18:81:be:d3:70:78:c9:a5:2e:11:a3:3e:33:8d:4c:f1:5e:8e:
63:19:1b:71:dd:58:82:e5:da:35:df:cb:8d:d0:c7:8b:b5:ec:
b0:1b:07:aa:04:7c:50:d8:90:9a:f4:a3:fa:55:4c:e7:8c:35:
4f:e6:10:8f:35:87:ad:4e:1e:1a:7f:bb:b7:e8:03:58:ab:31:
76:21:77:3c:1a:67:0d:4e:c9:da:24:6d:7d:bb:5b:3b:b8:f0:
0f:16:98:ef:f0:32:1c:c4:54:6d:ff:2e:88:5f:bd:42:e3:ee:
b3:df:82:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 02:30:25 2024 by rpki-client on console-ams.rpki-client.org