Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/r3P_HsVfSSlt1zQDn6AoTMQA6yY.cer
File: r3P_HsVfSSlt1zQDn6AoTMQA6yY.cer (raw, json)
Hash identifier: +qgrakjlRjGF3XpQiur+3QC4Gug/FttBuzNBsWk4k8Y=
Subject key identifier: AF:73:FF:1E:C5:5F:49:29:6D:D7:34:03:9F:A0:28:4C:C4:00:EB:26
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC348A22AD6451597C8B65DD92CD3F4D3
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/00/cea581-5cde-4574-ba0a-2c62de7b3e45/1/r3P_HsVfSSlt1zQDn6AoTMQA6yY.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/00/cea581-5cde-4574-ba0a-2c62de7b3e45/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 04:29:26 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 24864
AS: 211099
IP: 89.188.64.0/21
IP: 94.177.116.0/23
IP: 185.159.56.0/22
IP: 188.241.124.0/23
IP: 193.110.28.0/22
IP: 194.156.235.0/24
IP: 195.234.157.0/24
IP: 217.13.176.0/20
IP: 2a02:7c8::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:48:a2:2a:d6:45:15:97:c8:b6:5d:d9:2c:d3:f4:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 04:29:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=af73ff1ec55f49296dd734039fa0284cc400eb26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:96:5e:09:c1:e4:9f:0c:d2:fe:92:12:c5:53:
d3:6f:e9:14:e1:3b:6b:e7:75:2f:31:13:bc:02:bc:
b2:e4:6a:b9:24:a1:ea:55:e7:c2:d5:2e:eb:8c:ea:
98:d3:51:10:66:0f:91:15:ad:48:8f:d6:5b:07:d0:
ee:5b:e0:97:47:1e:d4:5c:e8:e2:a2:31:40:a9:ea:
6d:a2:7d:ff:8c:fa:a2:39:5f:bb:90:2c:64:1c:0d:
d5:60:47:cb:00:27:f5:8a:58:45:3e:34:40:20:b3:
6e:a1:d1:9a:4d:06:c9:43:0e:bc:3d:cd:93:5a:65:
bb:6f:0a:27:2c:e8:08:e6:29:60:f2:b9:5a:da:ad:
61:3a:c7:ce:52:96:8e:ce:a6:6c:ff:90:65:39:7f:
7f:4e:6f:be:b3:9f:73:8b:e9:63:31:a2:a3:e6:4a:
2d:f2:aa:26:ab:d9:4f:8a:f1:b6:64:82:80:6f:e4:
0d:e8:a7:c7:42:8a:0f:d6:a9:2f:49:9a:6a:2b:79:
62:55:11:5c:73:77:2a:69:f6:f1:f0:8d:2e:73:18:
69:c7:c9:a8:30:68:ec:98:39:53:09:cf:5b:b3:62:
54:e2:ae:e7:39:22:e6:20:f3:5c:bf:8b:a1:58:12:
d1:02:97:2c:0d:42:5b:dc:dd:33:fe:df:47:6f:d6:
0b:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:73:FF:1E:C5:5F:49:29:6D:D7:34:03:9F:A0:28:4C:C4:00:EB:26
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/cea581-5cde-4574-ba0a-2c62de7b3e45/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/cea581-5cde-4574-ba0a-2c62de7b3e45/1/r3P_HsVfSSlt1zQDn6AoTMQA6yY.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.188.64.0/21
94.177.116.0/23
185.159.56.0/22
188.241.124.0/23
193.110.28.0/22
194.156.235.0/24
195.234.157.0/24
217.13.176.0/20
IPv6:
2a02:7c8::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
24864
211099
Signature Algorithm: sha256WithRSAEncryption
14:70:66:51:ba:57:03:85:ab:c8:c5:f1:4a:19:ca:7a:63:64:
d8:d8:a0:02:06:d6:80:7f:ee:b4:0d:14:e4:a9:b4:d6:5f:99:
86:49:ed:a1:83:b3:ec:ec:53:c4:97:6c:2a:9a:9f:71:41:e9:
18:45:b6:c5:9e:00:ba:a7:18:3f:9d:61:32:01:7b:8d:c2:5e:
1d:09:60:23:9f:a2:bd:95:23:91:f2:cd:b6:ee:67:78:40:53:
cd:8c:02:52:95:a4:c7:b8:78:46:76:fb:09:17:f5:c8:af:09:
2a:8b:f8:8e:64:04:d0:2f:7a:22:a7:bf:d3:0f:e0:04:62:80:
4f:72:e6:dd:e3:6c:50:90:2a:98:55:cd:4f:49:da:03:e0:80:
81:a9:01:18:4d:ff:1f:bf:5a:f5:44:97:87:55:f5:2e:10:07:
d6:ae:3b:52:86:08:a9:3b:cc:57:61:26:f4:7c:68:4d:34:27:
fb:cf:b9:57:12:91:98:b0:b4:e2:3c:f6:d1:8a:c5:bb:aa:00:
7d:7c:3a:cb:8e:26:6f:53:12:a1:16:93:59:76:64:78:3d:a2:
fe:7d:80:77:ea:ec:1a:ec:4e:ff:4d:a7:f0:07:53:8f:0b:d5:
f6:4f:0e:cc:26:87:8c:5d:24:e5:eb:be:4b:98:71:32:f0:42:
f4:00:cc:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 03:45:16 2024 by rpki-client on console-fra.rpki-client.org