Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/tXwPr6ZQ3ZSjtVgXOfY9iO-kFPM.cer
File: tXwPr6ZQ3ZSjtVgXOfY9iO-kFPM.cer (raw, json)
Hash identifier: /rSxgtJSEi8cm6SX4vxfRKB6L+ZRT7J9pNT0WixoudE=
Subject key identifier: B5:7C:0F:AF:A6:50:DD:94:A3:B5:58:17:39:F6:3D:88:EF:A4:14:F3
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC725B6E7C07020E8C36DBEE930323ABF
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/b1/8c02ff-a9c5-4788-ae8b-18b9a8510539/1/tXwPr6ZQ3ZSjtVgXOfY9iO-kFPM.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/b1/8c02ff-a9c5-4788-ae8b-18b9a8510539/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 22:29:46 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 206146
IP: 185.59.219.0/24
IP: 217.18.84.0/24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 11:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:25:b6:e7:c0:70:20:e8:c3:6d:be:e9:30:32:3a:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 22:29:46 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b57c0fafa650dd94a3b5581739f63d88efa414f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:25:79:22:fb:ff:b9:83:76:5b:79:0c:b4:bb:
46:16:23:d5:61:93:13:87:68:ea:e9:3f:22:5e:19:
32:09:9a:92:6c:9d:71:1b:e9:f8:11:b9:c8:99:03:
1b:16:8a:75:91:2e:48:f3:a5:9a:fb:6c:a7:ed:c1:
3f:42:17:7f:18:43:96:3d:d4:36:07:95:88:0b:92:
47:03:e3:36:0b:ef:55:ad:40:9b:c3:a5:64:cd:42:
dc:83:8e:2d:ea:cc:b3:4c:36:b4:29:e6:b6:e9:2f:
85:94:86:43:81:78:f4:bd:c7:02:54:96:85:e7:22:
5e:6c:16:12:24:3f:c3:e3:d6:00:f1:fc:a7:03:ce:
70:43:2c:96:63:e4:46:a9:8a:58:96:25:f7:cd:f9:
70:99:94:f9:cb:98:b2:11:ec:62:19:1e:27:c1:aa:
d8:6e:78:e3:fd:6a:22:70:f2:b1:c9:14:12:d6:d0:
dc:cc:05:26:f6:0e:19:db:f1:b6:17:d7:28:29:2f:
16:01:d7:58:01:67:a9:e7:5a:16:56:4c:2f:e4:13:
f0:e4:e1:3d:10:21:2a:2f:03:fa:4f:94:cc:79:00:
5f:20:07:31:49:03:d8:da:02:ff:ed:2d:e8:95:cf:
97:7e:fa:22:71:20:6b:34:68:c6:03:88:f7:83:cb:
6f:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:7C:0F:AF:A6:50:DD:94:A3:B5:58:17:39:F6:3D:88:EF:A4:14:F3
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/8c02ff-a9c5-4788-ae8b-18b9a8510539/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/8c02ff-a9c5-4788-ae8b-18b9a8510539/1/tXwPr6ZQ3ZSjtVgXOfY9iO-kFPM.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.59.219.0/24
217.18.84.0/24
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
206146
Signature Algorithm: sha256WithRSAEncryption
78:35:52:89:d5:a9:e6:51:4e:18:bf:36:e1:da:14:c1:3f:60:
a2:8c:76:ae:58:0c:be:89:5c:74:2e:b6:b8:d5:62:bf:18:7f:
b0:d3:b1:0d:0d:3e:0c:5f:5c:06:3d:32:c0:0a:03:50:8f:92:
a1:f1:f1:b5:f3:de:6a:fe:06:0a:13:1e:40:4c:ae:fa:86:b9:
57:14:b4:46:fd:41:1c:8c:b2:e3:07:fa:a0:08:34:17:a7:29:
94:ee:27:9b:42:47:06:c6:5e:94:f7:c5:cf:a5:97:fc:ac:a5:
03:41:0d:df:84:6d:da:24:cf:d5:1a:e2:76:65:77:5a:cc:ee:
66:05:41:c1:6c:2c:b8:bb:f2:95:f7:f9:cd:5c:10:71:ce:e2:
b7:cb:dc:d7:93:ee:2b:9b:c9:b4:00:be:90:92:87:b4:4d:a8:
fc:07:74:24:bc:ea:b6:f0:62:68:a5:b9:3e:55:8c:89:54:2f:
c6:26:6d:a7:83:6a:74:66:f1:c3:4b:bb:81:71:79:b9:0b:49:
06:07:d0:94:c3:b1:c1:9e:66:31:e5:08:7b:85:37:6e:1b:90:
e4:ac:55:63:bb:38:58:1f:6b:5f:fb:a8:99:78:d6:ef:29:f5:
30:4d:d2:1e:58:3d:b8:6f:1d:dd:52:8b:90:53:a9:35:21:5d:
c3:1b:a0:0c
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Fri May 3 14:05:32 2024 by rpki-client on console-fra.rpki-client.org