Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/tL3eeEFbacMSd8Cqx_ymYH1jXYg.cer
File: tL3eeEFbacMSd8Cqx_ymYH1jXYg.cer (raw, json)
Hash identifier: pitDbZYqq+9yDvmh7+XR6HXtv1wl2XTBvRks8aDivuI=
Subject key identifier: B4:BD:DE:78:41:5B:69:C3:12:77:C0:AA:C7:FC:A6:60:7D:63:5D:88
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC64B091DCEA9902F1CFB54271321CADF
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/4d/34d470-49f7-4ae0-b61a-0944bed0ed26/1/tL3eeEFbacMSd8Cqx_ymYH1jXYg.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/4d/34d470-49f7-4ae0-b61a-0944bed0ed26/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 18:30:55 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 42541
IP: 89.23.224.0/19
IP: 185.10.220.0/22
IP: 193.104.135.0/24
IP: 193.106.164.0/22
IP: 2a03:5440::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 11:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4b:09:1d:ce:a9:90:2f:1c:fb:54:27:13:21:ca:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 18:30:55 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b4bdde78415b69c31277c0aac7fca6607d635d88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:59:16:77:fa:66:02:98:16:68:f5:84:f9:2d:
07:82:76:74:4d:2b:49:58:28:1e:b2:eb:3d:dd:e7:
a5:27:dc:e0:09:76:3b:39:f5:55:56:95:e6:29:99:
61:7f:e2:30:49:28:38:e2:f6:6c:27:b7:fa:3c:4c:
86:ee:2f:05:16:61:44:2e:db:54:87:e2:93:72:0e:
0a:e3:24:50:79:fc:ae:78:02:a3:f3:ce:33:0f:63:
8c:e5:d1:58:10:d6:d0:8c:4d:42:aa:47:a3:33:ff:
c9:3a:6f:e8:68:eb:d9:70:ae:0c:ff:68:81:2c:a4:
c3:e9:17:3f:f1:4d:4f:3f:b9:35:b0:3f:c4:cb:7d:
d4:be:d0:42:57:b7:9c:81:9f:0c:05:c1:7e:ee:93:
05:51:58:2a:2b:bb:82:2c:ce:e1:9d:db:90:90:ed:
4b:04:b5:50:23:87:42:54:a5:7e:31:ba:e1:d5:f6:
78:a2:a6:49:a5:3e:41:28:c3:3f:67:f4:7b:ff:e7:
cc:28:38:51:5c:9f:b1:b8:72:0e:f4:74:53:c2:2a:
e0:18:5a:9b:64:ee:bd:90:91:2f:c4:fe:f5:35:b4:
64:aa:9d:4e:60:1c:13:31:97:90:45:67:20:19:37:
ff:26:90:c2:55:ef:e1:0e:58:c1:60:65:50:55:57:
30:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:BD:DE:78:41:5B:69:C3:12:77:C0:AA:C7:FC:A6:60:7D:63:5D:88
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/34d470-49f7-4ae0-b61a-0944bed0ed26/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/34d470-49f7-4ae0-b61a-0944bed0ed26/1/tL3eeEFbacMSd8Cqx_ymYH1jXYg.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.23.224.0/19
185.10.220.0/22
193.104.135.0/24
193.106.164.0/22
IPv6:
2a03:5440::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
42541
Signature Algorithm: sha256WithRSAEncryption
70:29:8d:51:ec:10:01:06:65:7f:ff:6f:da:6c:81:4d:6a:4b:
7c:f9:cc:58:8d:a2:6f:0b:0d:9b:d5:d5:54:ff:cd:d6:cd:9e:
bc:af:0b:33:5d:4d:16:30:24:69:1e:4d:ef:ac:16:29:8a:4b:
0d:36:3f:e0:da:cf:24:e5:d8:f9:29:2d:1e:1a:01:0d:0c:53:
d1:54:bd:4d:00:31:6d:23:2d:1a:7a:6d:71:c6:aa:9a:78:ab:
33:ec:b6:6d:b8:69:c0:e0:ec:db:27:6c:fc:07:de:55:c7:46:
17:a6:67:9c:d2:51:39:97:3a:af:fa:43:cc:93:1a:a3:aa:cf:
e8:61:85:c7:30:de:6d:ce:db:d4:20:31:6d:d1:77:dd:e7:d6:
6e:84:ba:81:6e:b5:db:93:a8:54:e6:9d:40:45:1d:f9:64:d2:
c4:71:0f:f6:5c:26:36:21:ee:43:2b:87:2e:b4:36:60:48:44:
11:e3:ab:d4:7b:ab:6a:b0:37:ec:dd:da:d0:1f:3b:8d:49:0e:
c8:d2:3d:72:ef:ed:61:f7:31:60:68:44:5f:e1:5b:60:3c:55:
30:42:c2:0a:df:f9:25:fb:09:b5:03:26:02:4c:bc:d5:bb:6c:
bb:e1:9b:4f:d5:f6:b8:5e:ae:44:0a:b7:0c:2c:e7:72:66:e3:
b2:4d:94:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 14:05:18 2024 by rpki-client on console-fra.rpki-client.org