Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/q3rQAuSQheSApRIaeaJvztr_oZs.cer
File: q3rQAuSQheSApRIaeaJvztr_oZs.cer (raw, json)
Hash identifier: arGEFWosAuDzXgascYdaCiH/rNSnreT2ulqm0gLyAoA=
Subject key identifier: AB:7A:D0:02:E4:90:85:E4:80:A5:12:1A:79:A2:6F:CE:DA:FF:A1:9B
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC9BBD509F3EB2410552985E2DD8E2045
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/22/24fbb6-86bc-46cb-88e5-b5873ba8fe47/1/q3rQAuSQheSApRIaeaJvztr_oZs.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/22/24fbb6-86bc-46cb-88e5-b5873ba8fe47/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 10:32:59 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 56996
IP: 91.229.237.0/24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bb:d5:09:f3:eb:24:10:55:29:85:e2:dd:8e:20:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 10:32:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ab7ad002e49085e480a5121a79a26fcedaffa19b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:6d:f8:15:a0:18:49:e4:ba:23:cf:d5:7f:f8:
6c:1d:36:02:66:74:55:82:e2:7c:d8:5b:3d:38:e2:
e0:8e:75:3e:4d:e9:cd:88:a3:1a:d1:97:91:f5:74:
47:8a:92:4e:d2:fc:7d:21:07:8c:2c:01:1c:c3:ee:
54:53:8e:91:45:4c:f7:cb:9e:73:0a:95:9a:01:ff:
ea:7d:b3:24:ce:4b:31:4f:57:f9:a1:ab:18:e9:07:
d0:a3:e2:4c:5f:ce:eb:ef:f9:5a:f7:c9:a3:a8:23:
5e:16:b0:50:24:df:e1:e5:37:01:78:d7:fa:a5:22:
de:38:58:be:91:30:c5:81:a1:56:7c:b9:cc:de:78:
5b:91:48:6a:be:d4:30:fd:36:b8:23:0b:37:7a:30:
a5:f4:e8:91:7e:98:43:e3:0a:e6:57:02:dd:fe:0f:
c0:41:d3:51:08:42:a7:41:7a:1d:34:8a:c7:26:a0:
03:95:d7:1b:95:72:4a:35:63:e2:91:77:04:30:e5:
3d:e4:94:2c:8a:cb:07:29:eb:eb:26:77:03:e0:e4:
53:62:5e:9b:96:b1:42:7d:94:a3:cc:0b:ed:98:96:
dd:51:0a:bd:14:1c:2d:a6:c3:ae:3d:61:4d:a6:3b:
d6:2f:d5:22:70:cf:63:08:0a:f1:d5:49:6f:c5:60:
03:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:7A:D0:02:E4:90:85:E4:80:A5:12:1A:79:A2:6F:CE:DA:FF:A1:9B
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/24fbb6-86bc-46cb-88e5-b5873ba8fe47/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/24fbb6-86bc-46cb-88e5-b5873ba8fe47/1/q3rQAuSQheSApRIaeaJvztr_oZs.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.229.237.0/24
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
56996
Signature Algorithm: sha256WithRSAEncryption
5a:9f:e0:4e:a6:6b:d0:3d:be:54:65:53:8e:6e:7d:68:56:63:
4f:3e:b3:7f:8d:cd:6c:5c:84:f5:00:5a:d2:21:87:aa:95:ee:
d4:dc:e5:82:f9:a2:11:a5:1f:36:1b:f7:c8:e4:33:4b:b3:78:
3d:98:83:00:b6:2a:67:2c:eb:18:ac:46:f9:bb:89:bd:c1:4f:
4e:5f:db:22:c6:e4:d3:2a:6f:03:2c:65:a1:24:e3:22:0e:44:
73:0e:68:4b:be:b0:6e:0d:39:55:3b:1d:83:79:5c:e4:f3:1d:
a5:8c:aa:0d:d7:2f:7d:b7:df:a7:ef:6b:68:5c:8e:ef:62:51:
00:9f:81:32:02:80:bd:0b:31:9b:6c:b9:30:1d:22:98:ba:b8:
1d:ed:6d:7c:2d:20:fa:dd:b8:e6:d5:68:4e:67:0e:36:23:dc:
40:f2:66:8a:e2:da:9d:76:f7:f0:a9:a8:94:4e:42:c5:22:5b:
5c:42:1b:f6:61:46:e4:ec:72:55:70:7e:cc:19:52:94:ae:ef:
af:de:73:2e:c3:ba:e9:e5:0a:e2:1a:f2:92:a2:78:8e:6a:43:
06:3c:fa:e0:91:88:90:7e:9d:97:cf:b8:da:5f:33:43:06:f4:
63:e6:ad:3a:f6:39:5a:13:e1:35:a4:15:87:c2:9e:be:10:52:
e9:c5:5d:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 09:37:41 2024 by rpki-client on console-ams.rpki-client.org