Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/quibwwl3aKzWfC3XR9O-Gtty6Zc.cer
File: quibwwl3aKzWfC3XR9O-Gtty6Zc.cer (raw, json)
Hash identifier: AwRMBYm11eAoReY466nEVD7ueTXMfL9xRTdA6JjlWOI=
Subject key identifier: AA:E8:9B:C3:09:77:68:AC:D6:7C:2D:D7:47:D3:BE:1A:DB:72:E9:97
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC7260389737E0DE737B3D6AC01CB9CAB
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/0e/32e650-0cec-4262-bc93-e3dd776489a1/1/quibwwl3aKzWfC3XR9O-Gtty6Zc.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/0e/32e650-0cec-4262-bc93-e3dd776489a1/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 22:30:06 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 41656
IP: 91.200.73.0/24
IP: 194.145.203.0/24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:26:03:89:73:7e:0d:e7:37:b3:d6:ac:01:cb:9c:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 22:30:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=aae89bc3097768acd67c2dd747d3be1adb72e997
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:fc:25:79:08:ab:3d:43:cf:f2:b2:22:b3:fa:
2b:91:18:01:0d:d2:76:c6:6d:3f:75:ab:0c:bb:57:
91:06:39:6b:4c:25:3c:7b:12:0c:27:92:ce:cd:ec:
bd:84:8f:8c:b3:7b:bc:a5:6c:55:e1:d3:c8:c0:07:
5c:7c:00:48:20:b1:0e:d9:9f:cf:5c:54:72:59:0c:
30:19:ce:91:c4:49:6c:fe:ac:c2:ec:c4:bf:6b:bb:
f3:e4:d8:61:b0:cd:08:6d:3c:12:b1:ec:8e:5c:48:
ee:ea:c9:62:dc:cb:c6:f6:c6:bf:86:3b:86:6c:32:
bf:38:d2:5c:fc:e7:ae:02:13:94:a3:38:bf:0f:95:
1a:0f:da:cc:81:96:66:e6:7d:ff:24:14:75:81:6e:
66:33:fa:c3:ed:ed:4c:c1:1e:fb:6b:a1:59:3f:32:
d4:7d:6d:86:61:7e:31:02:1a:4a:20:f4:6d:94:ba:
35:3a:9b:bb:3c:2b:a2:a2:0d:c9:86:25:f4:59:91:
c4:31:9d:91:8b:95:d8:f8:93:b6:46:61:4b:a6:7f:
5a:c3:4d:29:42:d2:cb:0c:db:8b:b1:81:70:12:92:
84:ec:b0:b3:8b:1b:3d:6f:2f:2b:6a:98:44:b7:d9:
58:a0:1f:d9:4e:53:3e:ac:60:c2:33:c0:25:6a:e0:
11:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:E8:9B:C3:09:77:68:AC:D6:7C:2D:D7:47:D3:BE:1A:DB:72:E9:97
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/32e650-0cec-4262-bc93-e3dd776489a1/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/32e650-0cec-4262-bc93-e3dd776489a1/1/quibwwl3aKzWfC3XR9O-Gtty6Zc.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.200.73.0/24
194.145.203.0/24
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
41656
Signature Algorithm: sha256WithRSAEncryption
3b:6d:1b:fc:00:74:bb:1d:29:6e:c6:68:a7:ef:c7:be:7a:6b:
e7:41:e2:d6:09:51:c5:f7:f4:1a:30:93:27:df:d5:b0:b9:42:
0d:9b:be:d5:5c:1e:df:e7:3c:af:f8:0b:82:a0:53:cc:d4:48:
07:90:5f:e1:28:da:8c:4a:3b:9b:5c:1a:47:bb:d0:98:10:39:
27:1c:66:e7:4b:86:41:df:3a:67:c8:62:76:79:17:59:5e:ba:
c7:59:26:83:1d:af:46:6f:cb:2e:76:4b:48:65:e7:05:63:c7:
21:a0:b0:52:ff:fe:38:b7:7f:75:12:44:dd:f8:47:d3:4f:01:
9d:9a:71:5b:7e:89:37:f2:f6:e2:94:63:15:c8:cd:85:1a:3f:
c8:29:56:16:d7:9e:1f:4f:ab:32:95:6d:34:5e:56:54:f0:37:
52:45:fc:f0:d3:43:ce:b0:5e:e4:02:a5:ae:32:ba:9f:8a:77:
31:53:34:4a:4f:a4:49:86:09:f1:96:ae:09:0d:ec:fb:19:14:
4a:dd:8a:99:05:74:d5:9e:99:dc:5f:7b:5e:86:52:47:2a:4d:
26:60:94:d0:f2:da:e4:54:8d:4e:8c:a7:65:aa:3d:7c:13:c3:
c0:73:09:7c:14:08:31:f9:d4:45:8f:0e:54:13:fd:f9:ff:39:
7a:43:28:db
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Fri May 3 03:45:07 2024 by rpki-client on console-fra.rpki-client.org