Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/tA2EnMQ7cy2rZkH8b9Wk2zotuUc.cer
File: tA2EnMQ7cy2rZkH8b9Wk2zotuUc.cer (raw, json)
Hash identifier: ghHQ0WFRbM9oAjRa9SMtG8rMutajGiLehBiEFHrNiD0=
Subject key identifier: B4:0D:84:9C:C4:3B:73:2D:AB:66:41:FC:6F:D5:A4:DB:3A:2D:B9:47
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC500886E991123DC257A6FC5A83FD8D4
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/7d/134ccb-b0ab-446b-8172-62e27cd1e975/1/tA2EnMQ7cy2rZkH8b9Wk2zotuUc.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/7d/134ccb-b0ab-446b-8172-62e27cd1e975/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 12:29:55 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 49898
IP: 185.169.168.0/22
IP: 2a0a:5300::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:00:88:6e:99:11:23:dc:25:7a:6f:c5:a8:3f:d8:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 12:29:55 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b40d849cc43b732dab6641fc6fd5a4db3a2db947
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:36:ff:01:8e:12:b1:d5:05:9f:7a:3e:d8:d9:
69:ea:90:8f:01:3f:70:56:9e:f1:a5:c8:00:78:72:
d0:6f:20:99:f2:1b:a0:d0:00:13:2b:30:0c:f6:94:
3c:a5:ae:ad:b3:3f:8f:d2:1c:5a:a5:a3:c7:51:c8:
1c:90:a5:3e:81:3c:1d:8d:94:86:ac:71:56:e0:df:
4f:6f:9c:71:6c:79:5b:d8:ff:b6:ae:f5:62:51:d3:
a5:cb:a8:a2:65:7b:78:cf:8c:f8:cc:f2:bd:8d:8f:
f1:01:e1:f5:3a:e2:9b:7b:10:40:02:99:0f:38:68:
68:9e:c3:31:8a:44:cf:d2:a7:f4:72:3f:cf:c1:f1:
52:b0:51:c6:b9:70:be:81:35:6a:f0:fd:7c:b7:53:
43:81:54:a4:92:ac:9a:14:79:13:ef:4b:23:d5:91:
97:a1:25:3c:80:fb:f3:43:e4:d5:7e:0d:94:74:d0:
17:01:36:a7:da:4b:29:4a:a7:b9:d7:47:7c:98:a5:
1a:fc:c6:20:35:5a:6e:04:82:38:28:bd:59:94:ec:
ca:fa:e3:5a:70:c5:e0:75:b5:3d:c7:b8:53:10:3e:
3a:ff:13:0e:33:78:76:03:88:e6:77:cf:52:b2:57:
fb:41:22:b7:19:e2:7a:f9:57:46:30:b7:ca:ab:a1:
34:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:0D:84:9C:C4:3B:73:2D:AB:66:41:FC:6F:D5:A4:DB:3A:2D:B9:47
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/134ccb-b0ab-446b-8172-62e27cd1e975/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/134ccb-b0ab-446b-8172-62e27cd1e975/1/tA2EnMQ7cy2rZkH8b9Wk2zotuUc.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.169.168.0/22
IPv6:
2a0a:5300::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
49898
Signature Algorithm: sha256WithRSAEncryption
14:95:e3:b3:ee:90:b5:cd:03:b5:93:b5:b1:cc:0a:7f:49:7b:
c1:4f:c4:a4:43:4d:4d:8a:8c:83:53:55:3b:2c:36:0a:36:52:
26:e1:0f:54:ce:23:2c:b3:b9:a5:8f:77:79:85:01:ed:dd:cf:
f4:34:40:c5:98:1a:8b:13:c7:10:25:20:71:87:b9:a1:a6:16:
83:69:0c:14:5d:c5:d9:92:d0:e9:f2:35:5e:ee:8e:05:ec:d1:
96:74:5f:64:62:7a:d4:59:4c:9d:f8:f1:f2:dd:dd:36:76:f4:
1a:03:28:5e:9f:37:7c:d2:79:61:51:06:3c:7d:83:b1:20:3c:
10:2a:d3:54:80:71:ef:51:81:70:01:aa:c9:9d:da:ad:bc:a1:
ea:6c:47:d3:8b:12:4d:d3:ac:f4:4a:e1:50:1d:87:b2:ba:d7:
2c:f3:b0:5a:bc:5b:98:39:9f:81:c8:e9:69:23:41:92:25:a7:
99:b4:b3:18:75:ad:b5:67:c6:23:d1:04:04:60:53:98:c4:9e:
71:3c:a5:f8:4f:28:c6:47:bf:41:4a:d9:5b:2e:c9:77:2e:02:
a1:a1:b8:04:50:6e:e6:4a:e0:0f:00:3f:d0:e3:7a:29:b3:dc:
59:29:87:9a:81:f9:b7:cf:26:35:fd:46:39:52:35:c7:c5:a5:
c2:97:b6:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 03:47:16 2024 by rpki-client on console-fra.rpki-client.org