Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/tVgAMA-kAX-XDJXXZ9gS_RDQ3Lw.cer
File: tVgAMA-kAX-XDJXXZ9gS_RDQ3Lw.cer (raw, json)
Hash identifier: QQXuixmIgIMZKzlvHcwmUtMY1NRTYwJAnkh1ClcH1Zs=
Subject key identifier: B5:58:00:30:0F:A4:01:7F:97:0C:95:D7:67:D8:12:FD:10:D0:DC:BC
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC5DBF04609E876F52D5B1B6573DBF968
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/e4/8a8487-931a-42fb-b664-c52df4aa521d/1/tVgAMA-kAX-XDJXXZ9gS_RDQ3Lw.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/e4/8a8487-931a-42fb-b664-c52df4aa521d/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 16:29:34 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 41493
AS: 48967
IP: 5.253.108.0/22
IP: 95.130.104.0/21
IP: 195.3.208.0/22
IP: 195.24.250.0/23
IP: 195.93.196.0/23
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:db:f0:46:09:e8:76:f5:2d:5b:1b:65:73:db:f9:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 16:29:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b55800300fa4017f970c95d767d812fd10d0dcbc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:49:0c:d7:04:57:5c:49:f9:21:29:ac:de:b2:
99:b6:0e:c4:9d:59:81:a7:4c:64:47:c0:4d:c7:dd:
b6:2e:4f:3c:a3:e7:fd:6f:31:92:c1:eb:0d:34:4c:
bc:7e:ab:a5:bd:71:4e:68:7b:9b:8e:ad:27:03:64:
5c:db:3d:0e:df:b2:67:7e:b5:73:31:2c:c2:0e:aa:
9a:ae:ad:04:97:1d:df:ca:3e:6d:16:b7:12:96:d8:
38:a2:69:a1:1c:4b:a8:b0:f0:fc:6e:7c:6e:f0:a1:
02:3f:18:b1:91:57:6a:88:a6:84:07:12:0d:36:07:
e8:1d:b1:08:56:51:01:65:e2:eb:74:25:5e:93:57:
9d:16:34:29:ed:bd:cb:c7:85:ea:1b:92:46:4a:e6:
4b:f2:5c:9f:24:be:01:f5:f8:81:2a:b2:30:84:08:
aa:85:e2:91:0e:b2:14:2e:dd:cb:72:f2:8c:bd:b7:
83:e2:34:0b:21:fe:7b:57:6e:d4:f4:9b:10:e1:81:
23:50:47:2c:b4:ff:43:02:e4:d5:7d:d8:99:cd:44:
36:02:b2:41:ec:ba:58:fd:60:52:a7:db:c0:f4:a4:
40:43:c3:03:f4:5d:ad:7d:f3:d1:0e:c9:ae:41:66:
3d:bf:1a:af:b2:c3:d0:76:b8:89:98:4c:9f:89:16:
f2:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:58:00:30:0F:A4:01:7F:97:0C:95:D7:67:D8:12:FD:10:D0:DC:BC
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/8a8487-931a-42fb-b664-c52df4aa521d/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/8a8487-931a-42fb-b664-c52df4aa521d/1/tVgAMA-kAX-XDJXXZ9gS_RDQ3Lw.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.253.108.0/22
95.130.104.0/21
195.3.208.0/22
195.24.250.0/23
195.93.196.0/23
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
41493
48967
Signature Algorithm: sha256WithRSAEncryption
40:a7:2f:0d:4b:d3:f1:ac:f3:7a:75:2e:e6:8a:5c:21:72:57:
1b:6f:8a:ac:b6:88:e9:7d:0a:55:dd:25:4d:91:db:83:05:f9:
88:0b:8b:d3:67:af:f4:63:52:c6:17:86:14:da:16:5c:31:43:
1d:45:36:7d:0d:e9:2e:36:97:cf:15:42:7f:e2:ce:b1:e7:ef:
5a:ad:5b:38:4e:c5:63:f0:9a:41:52:e4:d7:da:5e:7e:49:49:
be:57:63:24:3a:53:fa:b3:ae:76:69:47:0d:87:4c:e2:c8:92:
cc:db:da:f7:46:6c:b2:8c:eb:db:bb:5d:da:a8:91:bf:54:5b:
88:a5:55:86:f6:bc:cb:01:46:67:60:a8:79:87:ed:ec:ce:56:
7c:d9:f3:3f:21:6e:62:17:2c:f4:f4:db:2d:33:ea:ec:72:d9:
07:56:71:87:22:80:08:9a:e0:24:c8:a0:92:66:04:b7:b1:da:
62:ff:a0:65:96:7e:1a:6e:d3:d3:37:b2:53:5f:75:e9:73:d7:
35:60:fd:97:2b:73:7b:fe:f2:7b:c5:b5:6d:1e:6e:c2:77:c6:
7d:a2:bd:1a:12:d2:62:37:df:55:06:bd:6f:9c:8b:00:12:44:
46:c0:41:8c:dc:6d:ba:06:aa:00:ca:f2:96:8c:4e:06:eb:a1:
f1:93:de:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 10:14:35 2024 by rpki-client on console-ams.rpki-client.org