Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/tOxsCl6-xYF9kbkeeaa8YTLrnSw.cer
File: tOxsCl6-xYF9kbkeeaa8YTLrnSw.cer (raw, json)
Hash identifier: wbAcS+11571PUavrNPN+diXrIm2xOeG1ncZeCgKfp0I=
Subject key identifier: B4:EC:6C:0A:5E:BE:C5:81:7D:91:B9:1E:79:A6:BC:61:32:EB:9D:2C
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC6B90E7BCCD7BB7A2FBE4ED9A1864216
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/44/20974d-6403-4107-a75b-13fb7a5130ca/1/tOxsCl6-xYF9kbkeeaa8YTLrnSw.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/44/20974d-6403-4107-a75b-13fb7a5130ca/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 20:31:05 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 201364
IP: 185.77.1.0 -- 185.77.2.255
IP: 2a05:5ec0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b9:0e:7b:cc:d7:bb:7a:2f:be:4e:d9:a1:86:42:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 20:31:05 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b4ec6c0a5ebec5817d91b91e79a6bc6132eb9d2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:e1:46:b9:9b:30:59:e5:f6:43:60:a4:be:f2:
60:61:ec:b0:34:35:ba:5b:b1:0e:54:38:9a:9d:9c:
4d:7e:0e:80:d5:e0:99:35:20:aa:4f:e7:a7:1e:05:
54:3f:73:65:24:db:64:bf:62:57:64:d0:4b:b4:57:
2c:76:b8:ff:af:17:2d:a1:ab:9e:2a:24:db:ef:84:
0b:5f:24:b4:4e:cb:17:52:22:b0:16:54:df:ea:cf:
32:49:50:96:52:2c:4d:5c:46:a3:c6:65:a0:32:44:
44:60:b6:c2:3a:c2:2a:01:92:76:cb:ec:20:02:e5:
ca:fa:04:62:21:2d:47:bc:66:b1:5f:0c:77:c0:be:
27:02:68:6d:a5:f2:79:de:a4:12:3d:22:be:4a:24:
e3:74:4a:05:a9:c0:9a:55:1d:3a:24:a7:a6:a4:6c:
30:55:49:cb:cc:77:8c:d7:4a:c4:cf:00:2f:60:ba:
90:26:13:25:15:02:9d:c4:92:c4:02:f0:3f:aa:0b:
07:dd:c8:50:8c:30:b5:9a:14:d6:9e:2d:6b:6b:b0:
fc:bf:a7:51:4f:26:3a:96:cb:53:67:82:73:7c:a7:
67:11:87:32:e5:e8:6a:e2:31:d7:28:01:0b:31:b8:
7e:ca:0c:d8:97:74:21:60:7b:dc:d6:e1:ee:b6:bd:
b4:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:EC:6C:0A:5E:BE:C5:81:7D:91:B9:1E:79:A6:BC:61:32:EB:9D:2C
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/20974d-6403-4107-a75b-13fb7a5130ca/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/20974d-6403-4107-a75b-13fb7a5130ca/1/tOxsCl6-xYF9kbkeeaa8YTLrnSw.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.77.1.0-185.77.2.255
IPv6:
2a05:5ec0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
201364
Signature Algorithm: sha256WithRSAEncryption
71:bd:34:b5:52:6f:e7:38:9e:c6:1b:4e:c5:7d:10:bd:77:45:
e0:dd:89:78:b7:41:b5:ab:89:6b:ff:66:2e:c3:67:17:30:98:
c1:94:65:43:d0:9d:bf:52:09:24:85:87:83:95:7f:36:33:06:
86:32:7d:3d:f2:e8:81:22:24:e6:73:79:ff:50:b2:49:62:17:
44:59:c9:a0:a1:eb:76:3d:83:8a:a7:37:94:2b:4f:77:4a:24:
66:7a:14:25:46:94:a1:ab:e6:11:c8:6e:7e:59:ed:f4:2e:78:
49:4a:0e:62:5e:19:21:09:a1:a7:d7:ee:53:a3:46:ed:97:9c:
b7:7e:00:2a:92:64:f0:68:92:bc:c9:7f:54:24:20:96:00:ec:
60:c7:14:f9:b8:d2:6e:96:76:4f:12:94:fb:5e:e9:6d:fb:b1:
e6:1c:76:65:3e:02:c8:28:85:ed:8a:8e:85:d2:88:d3:38:51:
fb:9f:cd:c9:27:68:71:40:a7:e6:70:bd:f6:65:96:9f:eb:40:
52:0c:e2:7d:6c:99:ab:b4:fe:79:8c:ed:27:cc:fd:58:3a:e1:
fd:83:51:57:62:47:b0:94:9a:73:05:46:3b:a1:3d:ec:8b:31:
32:69:13:72:4f:4a:f6:05:60:c1:53:29:a0:49:5b:4c:d5:5f:
46:19:81:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 10:05:41 2024 by rpki-client on console-fra.rpki-client.org