Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/qs5nJaCg3dFoBICoN4XSzVe_arA.cer
File: qs5nJaCg3dFoBICoN4XSzVe_arA.cer (raw, json)
Hash identifier: oBstcdCJOxN32G/hV+iSqggVHewSIXEKKSYiHqJrOqQ=
Subject key identifier: AA:CE:67:25:A0:A0:DD:D1:68:04:80:A8:37:85:D2:CD:57:BF:6A:B0
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018D79B7F58B58F0E53937673DFAD292A3A7
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/c5/8112ff-b216-406f-8f59-72a082cdb182/1/qs5nJaCg3dFoBICoN4XSzVe_arA.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/c5/8112ff-b216-406f-8f59-72a082cdb182/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 05 Feb 2024 14:41:55 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 200443
IP: 46.28.236.0/24
IP: 91.247.164.0/24
IP: 185.228.207.0/24
IP: 2a13:5f40::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:79:b7:f5:8b:58:f0:e5:39:37:67:3d:fa:d2:92:a3:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Feb 5 14:41:55 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=aace6725a0a0ddd1680480a83785d2cd57bf6ab0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:8e:94:42:54:c7:97:91:af:91:d0:fc:a5:95:
4f:bf:d2:ca:d7:24:13:11:3d:f4:0e:5d:dd:ae:33:
3a:b9:80:8d:eb:70:c3:b2:1f:4c:00:1c:c7:dc:09:
4d:ae:73:91:0c:5c:36:6b:c5:ce:75:d0:ff:5b:04:
c0:ec:6d:6f:05:f9:ce:27:b3:7c:11:03:fe:34:c5:
c4:87:ca:38:89:95:9d:b8:b6:9f:87:ba:e7:52:90:
84:f7:a6:fb:56:91:42:d3:82:dc:81:3c:fc:8e:97:
d0:3b:c8:85:56:07:ed:19:4e:dd:f3:9e:4c:56:f2:
fb:c2:d6:6a:21:5b:c4:f8:d7:2d:88:15:98:0b:9a:
3b:26:8e:48:4c:3c:7a:32:e6:ee:7f:ab:b9:a5:d8:
b7:71:35:03:42:d9:a0:06:cb:4e:db:1d:25:eb:83:
9b:06:63:cd:62:75:47:de:4a:2b:2b:2b:d3:0a:07:
96:45:05:7c:d1:d8:05:67:ce:95:c1:ce:a9:9f:bc:
95:9f:18:d9:ca:85:7e:e7:b4:08:9f:0d:57:67:ea:
a9:9e:e5:e2:5f:d6:e8:d7:53:45:55:5b:a5:77:89:
4a:86:f1:5f:e1:d3:74:6e:00:c7:50:81:21:61:88:
d1:36:30:3f:65:bd:47:40:bb:e8:4c:74:16:bc:a2:
f1:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:CE:67:25:A0:A0:DD:D1:68:04:80:A8:37:85:D2:CD:57:BF:6A:B0
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8112ff-b216-406f-8f59-72a082cdb182/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8112ff-b216-406f-8f59-72a082cdb182/1/qs5nJaCg3dFoBICoN4XSzVe_arA.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.28.236.0/24
91.247.164.0/24
185.228.207.0/24
IPv6:
2a13:5f40::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
200443
Signature Algorithm: sha256WithRSAEncryption
0b:8a:90:33:27:03:3f:e5:51:57:61:e0:bf:82:8b:d3:21:ab:
07:b0:08:c6:e3:67:f8:e2:96:32:8f:ff:db:cf:8b:f0:f5:c0:
15:7f:5b:01:ec:01:69:c1:d8:cf:c8:c4:e2:23:92:6f:ec:36:
21:fe:1d:5f:28:da:47:f8:62:c0:e6:f3:33:69:00:fd:90:51:
a4:96:43:f2:5b:4d:91:13:03:fd:f3:8b:18:8f:51:fd:3e:0b:
92:8a:c1:d2:99:82:b5:b9:7f:3b:eb:11:a1:6b:40:a2:36:ea:
e0:f5:17:10:5d:87:93:29:32:d8:cb:a1:d6:ae:1b:0b:16:69:
c1:69:ca:ca:83:5f:de:1e:b2:65:87:3c:d3:8c:58:eb:e1:0b:
5d:5e:d7:38:10:11:de:d9:a2:23:cf:eb:77:b0:d4:25:6a:90:
41:75:91:13:b5:c2:cd:cc:e3:92:5b:dd:73:0b:5b:b0:b0:a6:
a6:34:0f:7a:fe:9f:7b:cc:74:fa:e5:34:c2:ea:8d:d2:e8:0b:
fd:0e:c8:07:7a:ab:67:43:45:21:c7:44:bd:7e:75:c6:a3:d5:
c2:1a:29:81:f2:08:a2:1e:a6:5b:08:a2:dc:9f:e9:64:f4:a9:
27:33:e9:26:1e:6c:73:15:c8:9a:cb:a8:ca:33:8f:75:5c:60:
82:88:e3:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 03:45:05 2024 by rpki-client on console-fra.rpki-client.org