Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/st8A84zO2SGXmTB2yzaFvzK8Xmk.cer
File: st8A84zO2SGXmTB2yzaFvzK8Xmk.cer (raw, json)
Hash identifier: KVTUUpzCZgOkX3xRVnxAbZQ/ueqMjEiG4lQcwkG/Lkc=
Subject key identifier: B2:DF:00:F3:8C:CE:D9:21:97:99:30:76:CB:36:85:BF:32:BC:5E:69
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC94AC9A67FF50C22C96D679BCAB36227
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/bf/706fa8-52a2-4ed2-a2e1-04e4e4dc5fba/1/st8A84zO2SGXmTB2yzaFvzK8Xmk.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/bf/706fa8-52a2-4ed2-a2e1-04e4e4dc5fba/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 08:29:30 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 28941
IP: 185.103.112.0/22
IP: 2a04:c8c0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4a:c9:a6:7f:f5:0c:22:c9:6d:67:9b:ca:b3:62:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 08:29:30 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b2df00f38cced92197993076cb3685bf32bc5e69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:a3:07:fa:48:c7:ba:97:e7:0b:05:b4:0f:aa:
8d:c9:95:c6:08:cf:ba:5a:4b:be:97:e0:31:4c:82:
7f:12:4f:ad:c8:aa:eb:58:d3:2d:5b:e1:4c:00:96:
90:35:43:70:5c:5a:8f:77:e4:57:36:cf:13:9d:ba:
61:48:0a:69:9f:fe:da:7e:94:02:45:51:c5:b5:b1:
7b:f1:db:f7:b0:fe:32:f8:c5:45:79:5f:65:42:59:
eb:3a:d3:40:8b:e8:d7:f3:4c:97:07:4e:c5:de:02:
ef:55:d1:2b:12:ba:d0:30:ea:fe:80:ee:b2:2e:16:
38:84:30:17:d1:a1:2c:3a:55:59:d5:86:1b:6c:b5:
84:99:26:7d:b7:39:0f:80:aa:04:83:03:8a:a7:6c:
fa:a8:0c:3a:18:d9:82:39:6a:59:82:79:8d:6b:65:
18:53:44:b0:e7:26:df:4b:2b:88:5d:27:20:45:dc:
52:7c:85:b5:af:88:30:72:00:e2:1e:37:15:10:7a:
70:f5:ab:90:10:cb:72:ae:5d:80:1f:e5:a1:f0:2a:
9d:af:16:31:2a:be:8a:6e:72:ea:18:d3:d5:67:47:
76:84:06:b2:44:b4:e4:30:81:22:ba:7e:08:0f:e9:
63:c5:9c:2f:d9:bb:44:69:19:67:7e:0a:3e:34:53:
58:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:DF:00:F3:8C:CE:D9:21:97:99:30:76:CB:36:85:BF:32:BC:5E:69
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/706fa8-52a2-4ed2-a2e1-04e4e4dc5fba/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/706fa8-52a2-4ed2-a2e1-04e4e4dc5fba/1/st8A84zO2SGXmTB2yzaFvzK8Xmk.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.103.112.0/22
IPv6:
2a04:c8c0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
28941
Signature Algorithm: sha256WithRSAEncryption
88:1b:2e:df:ec:ae:ff:b4:36:4d:ab:7c:14:4b:ff:9e:37:8c:
ad:b6:3a:ef:67:e2:62:00:e3:6d:7c:e8:4c:0c:81:03:b1:e4:
48:b6:9c:65:2b:4b:41:ac:7a:ae:19:67:3f:8b:50:36:6a:f1:
3c:11:da:53:1d:5e:54:6c:a9:b9:6e:ad:99:e3:e5:e7:ad:97:
2f:b6:c0:19:0c:25:56:65:67:cf:6c:34:aa:b9:e8:d9:c2:03:
f3:64:ea:60:35:ca:bf:a8:d0:2f:48:4d:a8:a0:be:53:f6:48:
76:87:b5:f8:7d:08:78:58:dd:ee:dc:88:25:82:6e:73:ea:6e:
3c:d1:c5:e0:2c:a6:47:2c:53:3d:44:5a:e5:dc:ba:9f:18:b0:
f0:bf:1a:a4:ba:59:02:6f:ee:71:78:3c:3f:a4:35:08:f5:c8:
3c:79:5f:8b:58:e7:ea:e0:43:f0:e0:c3:f9:6a:f1:2c:23:e4:
13:fa:0f:67:d1:00:b7:20:c9:23:05:91:4a:f7:77:a6:07:eb:
41:87:c1:ec:f2:6b:a3:26:50:b0:a6:13:a9:10:ed:40:b9:0c:
5c:2b:28:76:ab:a7:da:1a:d2:cb:87:0c:2f:58:7e:f1:ee:29:
04:ed:be:fa:4c:a0:a7:09:2b:e8:69:95:89:c4:d7:14:8b:ff:
24:40:d3:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 02:16:53 2024 by rpki-client on console-ams.rpki-client.org