Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ruL45TYnrcJ2eAY7k9PZ_W7OkAI.cer
File: ruL45TYnrcJ2eAY7k9PZ_W7OkAI.cer (raw, json)
Hash identifier: P6FBeHMSIXziE2TWLjo6MGMpwY+uDHYbwNYB3Jl1TzQ=
Subject key identifier: AE:E2:F8:E5:36:27:AD:C2:76:78:06:3B:93:D3:D9:FD:6E:CE:90:02
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC26D63CB3D3939DA19D4D314EC6DE2F5
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/fc/193ed2-b774-42f0-aa3f-a465641a48fa/1/ruL45TYnrcJ2eAY7k9PZ_W7OkAI.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/fc/193ed2-b774-42f0-aa3f-a465641a48fa/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 00:29:58 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 209370
IP: 176.222.26.0/23
IP: 176.222.29.0 -- 176.222.31.255
IP: 185.31.236.0/22
IP: 2a00:be60::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:6d:63:cb:3d:39:39:da:19:d4:d3:14:ec:6d:e2:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 00:29:58 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=aee2f8e53627adc27678063b93d3d9fd6ece9002
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:e6:06:59:08:a2:5d:4f:36:8b:25:65:29:d0:
8a:21:25:59:d6:92:f5:06:fb:14:dc:ac:1c:86:00:
fa:dd:12:aa:4a:57:f2:df:1b:af:a0:50:f5:20:1f:
36:a8:6e:e1:75:f5:24:68:3b:64:be:1e:ca:be:22:
12:2a:b3:c6:ba:a9:4c:bc:24:45:3d:6b:60:03:75:
b6:71:5c:84:04:38:a4:95:6c:23:a1:30:af:7d:28:
cb:8c:1e:3c:f9:05:82:2a:f2:9a:da:8f:1e:74:d7:
e0:10:a9:4f:8f:91:33:eb:92:a6:d7:1e:68:7d:9d:
7f:5a:6d:6f:97:5d:c6:55:ec:94:46:db:04:ae:64:
c6:a8:31:4f:b0:3c:4a:ab:51:bc:55:f8:2f:a8:82:
74:d6:2b:6b:40:b2:97:5d:e6:01:07:81:31:e7:6d:
eb:e3:d0:cb:fd:b8:46:19:54:cb:c6:13:dd:4b:a3:
a8:56:af:61:38:0e:0c:e1:a6:df:03:91:3e:e2:43:
ee:fc:56:39:f1:56:0c:b8:2c:37:a0:0d:94:b7:e4:
7b:bd:40:b9:dc:7f:8c:31:d1:80:91:f0:54:6c:b9:
a3:11:f7:6b:96:9a:1b:7f:69:7c:35:88:64:08:9c:
14:a4:79:4a:63:11:4c:09:4f:17:61:38:2e:8b:ea:
a7:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:E2:F8:E5:36:27:AD:C2:76:78:06:3B:93:D3:D9:FD:6E:CE:90:02
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/193ed2-b774-42f0-aa3f-a465641a48fa/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/193ed2-b774-42f0-aa3f-a465641a48fa/1/ruL45TYnrcJ2eAY7k9PZ_W7OkAI.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.222.26.0/23
176.222.29.0-176.222.31.255
185.31.236.0/22
IPv6:
2a00:be60::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
209370
Signature Algorithm: sha256WithRSAEncryption
49:fe:c5:10:86:bd:ee:72:4d:3e:a8:24:4b:47:c1:ff:ad:9d:
b8:c2:46:02:d2:1b:65:92:ad:d3:b1:b9:91:44:0d:0c:3d:38:
05:09:08:ab:32:00:dd:60:c5:1a:73:6d:2b:c6:08:dc:45:c8:
50:1e:8b:1f:65:47:7e:75:1a:1d:88:41:76:60:eb:62:00:1d:
c7:25:e6:24:d0:ec:2b:25:9e:f7:83:c9:2e:4f:cf:9c:a5:b0:
79:40:fd:bf:48:8e:cc:b9:87:4c:13:fc:96:ff:86:23:fb:0e:
4b:ab:3d:16:8d:fe:bc:63:e0:b7:dd:b3:a4:fe:1c:be:a3:8d:
35:aa:c7:78:bc:74:d1:16:bb:19:d7:ed:2d:03:1a:69:5b:e4:
9b:8d:96:c1:28:19:e2:95:23:37:16:25:ab:13:3a:59:8f:58:
ee:11:8c:2a:ff:eb:32:ae:be:8f:28:cd:2d:45:8e:b5:60:a0:
ef:dc:a0:d5:d0:07:8e:7f:c7:dd:cf:9f:fe:95:80:1a:1c:19:
7c:d6:d4:92:5c:51:4a:54:55:aa:8a:25:72:ef:27:97:2a:2b:
0f:89:9e:5b:a1:ad:3b:38:54:1d:a8:ae:61:6f:b9:8f:08:43:
4f:aa:31:57:10:29:e6:be:04:f9:63:81:3e:37:79:ec:29:a0:
ba:6c:0e:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 12:04:39 2024 by rpki-client on console-ams.rpki-client.org