Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/oaVb8oiHU-RGdbYd2jA5TZAVbAo.cer
File: oaVb8oiHU-RGdbYd2jA5TZAVbAo.cer (raw, json)
Hash identifier: IzypzPOvz3ciz1jqxTKiT0OfTMkrqCWHBHO1l6ILuFU=
Subject key identifier: A1:A5:5B:F2:88:87:53:E4:46:75:B6:1D:DA:30:39:4D:90:15:6C:0A
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018E1E5C2D401580A370BD2FDFB24D0AB3C3
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/38/2dab18-7bb7-4aa1-98ad-27c9d9114238/1/oaVb8oiHU-RGdbYd2jA5TZAVbAo.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/38/2dab18-7bb7-4aa1-98ad-27c9d9114238/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Fri 08 Mar 2024 13:59:01 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 208919
IP: 194.147.219.0/24
IP: 2a12:67c0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:1e:5c:2d:40:15:80:a3:70:bd:2f:df:b2:4d:0a:b3:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Mar 8 13:59:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a1a55bf2888753e44675b61dda30394d90156c0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:f0:d5:a2:6e:21:25:85:3a:20:dc:b4:fd:86:
72:bf:6a:b4:92:79:62:6e:76:36:d3:3c:ad:01:92:
79:14:e6:de:b7:c3:9e:25:81:f6:e0:3d:fa:07:71:
6c:93:79:54:ce:35:3a:c0:91:cb:9a:d7:bc:40:e7:
82:59:42:f9:69:d4:8d:6b:49:78:70:98:75:d6:7d:
2c:30:4c:5f:e2:bc:e4:33:d5:5b:35:10:fd:14:c3:
84:62:7c:05:eb:16:c4:9b:64:85:49:20:4c:79:37:
87:c0:9f:d0:5f:07:b7:a9:37:0d:db:e4:3b:bc:fd:
b0:cf:2d:68:79:47:e9:bf:2c:5b:24:2b:7c:55:99:
1b:59:cf:4e:19:73:ce:4f:4e:54:02:97:e7:78:1a:
5e:13:b8:bc:9d:55:94:d0:17:ca:5a:ae:ac:63:b4:
c9:c5:3a:91:8e:52:ec:b3:7b:f7:1d:50:29:11:b2:
0d:3a:92:22:7d:d8:b6:62:0b:67:8f:a8:5b:86:38:
71:06:2c:d3:76:a4:d5:85:a0:df:13:a6:4e:c7:7b:
36:47:6d:bf:ca:24:9c:83:c0:99:a1:e8:cb:6f:07:
f0:d8:d3:a0:93:a8:57:98:6e:f2:65:ec:60:b2:65:
50:7f:cf:a1:50:4e:c5:58:a2:c8:91:b4:a4:d0:05:
6b:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:A5:5B:F2:88:87:53:E4:46:75:B6:1D:DA:30:39:4D:90:15:6C:0A
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/2dab18-7bb7-4aa1-98ad-27c9d9114238/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/2dab18-7bb7-4aa1-98ad-27c9d9114238/1/oaVb8oiHU-RGdbYd2jA5TZAVbAo.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.147.219.0/24
IPv6:
2a12:67c0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
208919
Signature Algorithm: sha256WithRSAEncryption
1c:8b:d2:7d:40:f6:33:48:a4:da:1b:e0:7c:4a:f9:cc:23:2e:
60:bd:66:2c:8a:8f:e9:a4:6b:45:b2:c6:65:ea:73:2f:fc:8a:
c0:58:5e:d9:af:ba:84:b8:e4:4a:ef:16:69:db:07:45:56:78:
5b:d2:bb:76:bb:60:32:2e:62:fa:4e:0f:f3:a0:04:fe:93:41:
f9:c0:a6:79:2b:df:c5:c7:22:f7:3d:dc:43:d7:60:87:71:37:
a1:a8:fc:46:ab:98:8d:cb:1a:7c:70:6c:63:6e:f4:aa:8c:42:
1f:50:68:83:69:0b:22:8b:d1:5c:67:54:39:24:ac:bd:a5:23:
18:66:80:bd:19:03:3e:dd:b2:da:73:28:1f:3d:c1:05:fa:2c:
6c:dd:ad:fd:aa:80:d1:95:e9:cf:ab:db:a2:b1:0a:0b:71:c7:
cb:5d:e6:a4:f0:2a:b9:1e:29:96:d4:25:1a:4f:96:3c:27:cd:
0d:aa:62:ce:2d:a0:aa:e7:e0:b9:56:92:ec:55:fa:1f:e0:87:
2d:22:6d:67:11:17:53:c1:c4:89:3a:c8:3a:c9:27:34:e6:4e:
80:50:da:f1:a8:67:d9:98:d6:ed:78:ca:3d:ed:be:e9:f0:d2:
e1:e0:01:44:7b:8a:61:af:85:2a:91:91:a6:e0:75:2e:f4:fd:
47:05:39:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 08:18:00 2024 by rpki-client on console-fra.rpki-client.org