Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/tYaoZDYz6YdBEai881GKCQXyhgk.cer
File: tYaoZDYz6YdBEai881GKCQXyhgk.cer (raw, json)
Hash identifier: Dzq5fFS4uu6Dus4oGTUURvDBHDH7vpKvbMCvyYq9518=
Subject key identifier: B5:86:A8:64:36:33:E9:87:41:11:A8:BC:F3:51:8A:09:05:F2:86:09
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CCA2B727361DCDBCB7A2F2DE97DBD9947
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 12:34:54 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 210175
IP: 185.160.140.0/22
IP: 2a0d:1580::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:2b:72:73:61:dc:db:cb:7a:2f:2d:e9:7d:bd:99:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 12:34:54 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b586a8643633e9874111a8bcf3518a0905f28609
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:9e:e8:ba:99:14:5e:23:f5:5e:be:6e:ec:ba:
f3:26:b1:ef:b5:d6:43:56:2c:a4:f2:bc:c4:fc:c5:
b1:d8:02:51:82:01:5f:c8:7b:93:45:f9:29:26:d6:
ce:5c:9e:78:c1:02:ae:13:f9:16:9d:4d:1b:18:b9:
c2:76:a8:0c:a8:ce:85:83:f3:39:18:cc:8c:90:75:
a4:6d:0c:75:83:d0:7d:05:54:d6:e4:2a:87:86:bf:
f5:d7:ce:0e:ff:7e:62:06:40:d7:c9:92:ad:8d:b7:
9d:20:c6:2c:b5:bf:b6:01:5c:02:8e:25:11:06:c6:
05:82:4d:85:43:76:69:2e:32:49:74:d6:03:74:a3:
3f:f2:59:f4:26:ad:7a:eb:57:12:e4:f2:13:ea:71:
8e:d7:8e:91:cd:e2:35:48:95:ae:5e:e2:8b:41:84:
83:fa:ea:8e:3d:c6:ff:2f:90:41:22:e3:65:8b:d6:
7b:1c:2f:a8:44:03:9a:87:42:77:91:d2:42:b5:05:
86:d0:bc:95:c2:4a:7d:f1:46:3b:b2:b0:a9:fc:5d:
ce:75:cf:06:5b:1b:1c:e4:9b:f9:b3:13:19:ce:f6:
71:93:9d:c0:39:57:99:db:0d:b0:49:69:2e:a5:0a:
ce:0f:0a:d6:e8:51:1d:6a:5b:3d:df:07:ba:8b:c0:
66:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:86:A8:64:36:33:E9:87:41:11:A8:BC:F3:51:8A:09:05:F2:86:09
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.160.140.0/22
IPv6:
2a0d:1580::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
210175
Signature Algorithm: sha256WithRSAEncryption
5f:e7:ff:6b:dd:a6:07:97:f5:8c:ec:da:79:8b:87:c8:00:20:
0f:0e:0b:63:cf:f8:68:3d:21:c4:3f:f6:bf:d7:ee:32:96:61:
43:96:d6:15:e0:96:bf:10:b6:2a:bd:ea:59:56:36:88:31:71:
80:02:f0:87:71:f2:b9:40:8b:68:73:d2:49:0f:b8:e3:55:82:
cb:e8:43:20:df:d1:24:56:c3:76:43:05:44:e3:92:1b:55:41:
6a:d3:ba:89:4f:60:d9:36:d1:ee:96:a5:6f:ac:11:be:2e:ff:
35:5a:68:5d:96:19:ff:42:fa:68:3f:53:6c:7d:5e:84:54:69:
f2:58:15:8a:5b:30:62:ed:14:72:c7:58:0a:4e:99:ef:65:41:
0b:60:56:67:2b:aa:db:36:45:a6:33:f5:91:85:35:71:23:dc:
74:73:5e:28:f9:34:04:46:7f:b1:ea:3e:a5:ba:2b:3c:da:1d:
01:78:2a:a0:36:b7:54:62:78:99:d5:2a:22:43:fe:3f:83:dc:
28:bb:80:28:21:e0:a5:74:e4:66:0c:53:73:ad:a3:b1:dd:e7:
1e:79:97:f3:a1:89:14:f1:c9:8f:1a:a6:e6:8a:ff:d4:49:d6:
e8:d1:22:43:b1:6e:9b:b0:ee:53:23:84:c9:8d:dc:54:b8:ed:
c4:62:b1:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 18:31:58 2024 by rpki-client on console-fra.rpki-client.org