Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/qsavDCm-vHxIXPgAHanxmTCs5F0.cer
File: qsavDCm-vHxIXPgAHanxmTCs5F0.cer (raw, json)
Hash identifier: vANv3VmLYfaBEAotrcjpbzHr03rsOCTkWl14AckjLYg=
Subject key identifier: AA:C6:AF:0C:29:BE:BC:7C:48:5C:F8:00:1D:A9:F1:99:30:AC:E4:5D
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC2DAC12B15063957D6B61FECB584766F
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/33/f8c445-0aab-4087-a0d3-9347591910a8/1/qsavDCm-vHxIXPgAHanxmTCs5F0.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/33/f8c445-0aab-4087-a0d3-9347591910a8/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 02:29:25 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 199290
IP: 5.180.248.0/22
IP: 45.8.64.0/22
IP: 185.79.4.0/22
IP: 185.196.16.0/22
IP: 185.241.28.0/22
IP: 2a0c:9780::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:da:c1:2b:15:06:39:57:d6:b6:1f:ec:b5:84:76:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 02:29:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=aac6af0c29bebc7c485cf8001da9f19930ace45d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:04:a9:97:b1:98:f8:11:e8:6f:c1:34:82:dd:
03:9f:c7:76:74:7c:0a:bc:2f:f2:39:51:80:f0:8d:
ee:c2:54:05:44:a4:66:73:b8:a0:2d:1c:e8:78:77:
dc:16:40:5a:75:58:11:39:a8:0b:82:c4:95:ec:81:
73:2b:8f:32:d1:34:13:c0:fe:92:65:8f:a4:3f:15:
40:2e:f5:1d:82:e6:22:d6:9e:2c:f0:90:e7:79:a0:
ff:ba:89:8e:e5:25:b1:e1:c3:25:35:c5:59:e4:91:
4a:d7:bb:42:34:9d:e3:c4:ed:a7:a2:fc:30:0a:3f:
2c:b9:08:47:3a:c2:4a:39:d2:6b:d2:dc:d9:0d:a1:
63:2b:8d:24:f6:12:e3:de:86:94:6c:32:d6:e2:23:
2f:0b:e6:6c:81:ff:39:41:05:7c:4c:2c:3c:23:33:
fb:d2:c4:60:2d:1e:c4:d1:bd:25:6b:eb:64:79:c8:
09:9a:75:6c:b7:2a:76:76:1b:e3:58:38:32:1a:54:
50:63:fe:ac:7a:66:b1:dd:4f:9b:ce:5f:f9:e4:88:
38:65:65:43:06:f7:33:9d:ec:29:8a:a2:90:1d:90:
ae:41:e9:c7:2b:bf:b2:f6:64:55:96:0d:0e:7c:a6:
81:f1:4d:c9:56:3d:5c:b6:4f:92:4d:aa:5a:14:2a:
fe:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:C6:AF:0C:29:BE:BC:7C:48:5C:F8:00:1D:A9:F1:99:30:AC:E4:5D
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/f8c445-0aab-4087-a0d3-9347591910a8/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/f8c445-0aab-4087-a0d3-9347591910a8/1/qsavDCm-vHxIXPgAHanxmTCs5F0.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.248.0/22
45.8.64.0/22
185.79.4.0/22
185.196.16.0/22
185.241.28.0/22
IPv6:
2a0c:9780::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
199290
Signature Algorithm: sha256WithRSAEncryption
31:8e:31:4a:e0:79:6d:30:09:23:c4:9a:70:9c:2f:f1:2e:24:
d3:2b:bf:81:79:df:51:2a:b1:62:09:97:46:44:5e:81:14:55:
74:17:bd:2c:e4:d5:5c:c7:5c:96:70:b6:7e:d8:e8:44:03:e1:
d0:cc:92:11:c7:6c:a3:f0:7c:cd:cd:a0:a9:12:36:98:13:43:
eb:6d:35:18:9f:34:04:3f:3f:f5:01:f0:6e:3f:5e:3e:79:6d:
f8:54:b7:8c:e4:13:af:ab:25:44:df:88:e1:cf:96:02:fd:b2:
51:ec:b8:4c:26:4a:df:06:53:c5:18:47:14:70:6f:84:f8:86:
a5:2c:fb:a8:73:6d:44:c5:29:a3:aa:b3:d0:68:f5:eb:30:43:
a0:ef:e5:05:5c:3a:89:48:11:82:58:cf:3b:e6:ff:c1:7c:e3:
85:88:4a:21:05:64:24:4d:96:ae:49:c2:58:98:92:b0:21:50:
0f:25:e6:ec:10:13:ad:35:a6:a0:20:78:91:03:7e:4f:a7:fb:
42:c0:53:cd:9e:f6:41:bb:61:32:c1:38:bd:88:68:0c:5e:df:
09:4a:25:b0:35:5b:d9:30:b8:c1:f0:c7:42:58:e0:67:dd:2c:
c0:30:7a:c8:bb:38:60:58:78:17:67:89:22:3d:2b:98:bb:c3:
e9:bf:8f:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 02:15:41 2024 by rpki-client on console-ams.rpki-client.org