Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/rHvpLb_jhWFWQG-nJeFd9ZiOXBA.cer
File: rHvpLb_jhWFWQG-nJeFd9ZiOXBA.cer (raw, json)
Hash identifier: A6MZArPhhvP5WJI4RmuL+8WnEX7T6I7pUd1AV8wj1Jg=
Subject key identifier: AC:7B:E9:2D:BF:E3:85:61:56:40:6F:A7:25:E1:5D:F5:98:8E:5C:10
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC56EC80F789CB07AA7E97319404E5DB1
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/1a/0fae2f-2691-4c7e-a018-99d7252f5be0/1/rHvpLb_jhWFWQG-nJeFd9ZiOXBA.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/1a/0fae2f-2691-4c7e-a018-99d7252f5be0/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 14:30:20 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 60999
IP: 185.90.168.0/22
IP: 2a03:8760::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:c8:0f:78:9c:b0:7a:a7:e9:73:19:40:4e:5d:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 14:30:20 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ac7be92dbfe3856156406fa725e15df5988e5c10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:83:cf:0d:0e:90:d6:7a:8a:0a:1c:71:a4:7e:
bb:7c:e5:7b:c3:de:cc:66:a9:03:e4:63:f7:ac:d9:
81:64:aa:e7:b5:63:f0:ed:1a:31:8e:28:82:c4:72:
68:95:99:dc:69:3d:03:e6:88:2e:b7:54:35:35:42:
2a:ba:8c:c5:6f:a5:8e:32:90:5a:18:2a:87:7c:8c:
b2:6f:ad:c8:f4:9c:94:d7:02:04:d6:66:73:64:29:
10:04:ec:80:4a:8a:8c:51:e2:e9:92:a1:1c:df:63:
a7:76:e3:42:8a:a7:05:12:3e:13:f0:94:2b:c1:dd:
61:e6:07:33:db:5f:4d:30:c8:3b:5e:f3:36:d7:38:
e4:10:fe:76:58:31:ef:d3:5d:ce:b5:e0:e7:04:a4:
dd:c3:d0:a8:c8:62:70:98:d4:7c:4d:bf:da:c3:59:
f6:ab:ae:c1:6d:06:89:1b:fc:d2:3e:a7:cf:cd:fd:
22:14:f4:d7:3a:0a:98:fc:57:65:30:a5:51:4f:62:
0e:ea:96:d6:ff:9d:ef:5f:f9:19:5c:27:2d:76:50:
bd:d5:02:f3:35:4d:92:4e:8d:74:2c:b2:1d:71:e8:
1f:99:a9:5e:b3:42:88:b4:2c:78:b3:fa:f9:8b:37:
51:b1:f8:f0:bb:86:07:00:c3:74:be:7a:63:e5:2f:
ca:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:7B:E9:2D:BF:E3:85:61:56:40:6F:A7:25:E1:5D:F5:98:8E:5C:10
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/0fae2f-2691-4c7e-a018-99d7252f5be0/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/0fae2f-2691-4c7e-a018-99d7252f5be0/1/rHvpLb_jhWFWQG-nJeFd9ZiOXBA.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.90.168.0/22
IPv6:
2a03:8760::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
60999
Signature Algorithm: sha256WithRSAEncryption
6e:84:65:86:56:4a:df:1d:25:e9:07:53:a5:07:1b:8f:8e:38:
75:de:bd:71:a8:ab:82:78:38:c9:ce:ef:1a:0d:5f:ac:a8:e6:
cd:50:c2:35:a4:71:7e:8e:22:ac:05:1a:27:c0:f7:50:9f:30:
1c:63:23:9d:80:dc:fa:de:80:54:55:bb:5d:9d:02:01:b3:b8:
be:ef:e0:82:77:93:d4:fd:0c:67:8d:46:b1:24:bd:4e:dc:1c:
bb:3a:f0:c4:74:2e:69:b2:b7:ea:44:b5:73:25:0a:0b:78:72:
be:f8:11:1d:9b:4d:d7:55:b0:6c:1f:68:9a:68:ab:83:9a:c3:
a3:ad:94:fc:7c:81:85:1d:9f:2c:e3:9a:59:73:98:47:99:bd:
0a:9f:50:00:78:61:49:8c:0e:64:97:f6:fd:b5:7c:8a:ba:e8:
fe:00:d1:8c:c6:a5:67:72:32:3c:ff:51:26:90:31:a8:e8:6b:
df:72:69:df:c9:a8:76:35:26:ef:10:34:80:7b:fe:19:39:86:
97:1c:65:75:97:12:41:91:74:25:83:c8:7b:51:41:cd:c0:db:
9a:1d:93:24:3b:bd:b6:25:3e:0e:e0:64:6e:1f:4a:94:b7:3e:
c2:3c:ef:37:86:92:36:ae:fd:04:33:89:2f:50:56:bb:23:64:
46:6e:f4:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 12:04:14 2024 by rpki-client on console-ams.rpki-client.org