Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/tfrsS42ZLda5zYmoSJ08OmUq7NI.cer
File: tfrsS42ZLda5zYmoSJ08OmUq7NI.cer (raw, json)
Hash identifier: 19gvBMkYTKF8P9Rprbj24pcYYFq7B7ceacHoemeqieI=
Subject key identifier: B5:FA:EC:4B:8D:99:2D:D6:B9:CD:89:A8:48:9D:3C:3A:65:2A:EC:D2
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC26D68E6C533F1A930B2587EDE02BFCF
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/25/68c296-69b2-4070-9ff9-4243decad360/1/tfrsS42ZLda5zYmoSJ08OmUq7NI.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/25/68c296-69b2-4070-9ff9-4243decad360/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 00:29:59 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 16047
IP: 37.60.176.0/21
IP: 185.220.40.0/22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:6d:68:e6:c5:33:f1:a9:30:b2:58:7e:de:02:bf:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 00:29:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b5faec4b8d992dd6b9cd89a8489d3c3a652aecd2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:72:2e:2d:88:c0:42:38:36:44:9c:50:50:12:
8e:da:8e:12:75:44:fb:a9:0c:7a:f5:3b:8d:27:48:
d0:bc:68:5c:ef:99:34:c5:5c:27:09:63:03:9f:6e:
86:30:a4:57:e8:ac:85:98:d7:50:a3:7a:ff:e3:c9:
e4:58:70:3d:c2:33:28:3c:83:cd:11:84:93:da:65:
de:0e:f2:3b:8f:bc:80:e2:9b:a7:2f:94:c4:ff:63:
18:f6:9b:2a:7f:aa:56:9a:bb:96:35:91:ae:b4:86:
e3:fb:0f:0d:1e:14:a6:77:be:93:50:5b:eb:fe:35:
a2:91:76:10:42:f4:15:0c:a7:6d:ae:b3:bc:aa:66:
c5:5b:68:d6:7e:20:26:e6:9a:e2:43:d2:69:27:ff:
d2:2a:87:5f:b4:cd:b1:bb:1a:71:27:17:bd:02:23:
ed:22:55:ee:60:c9:f6:c1:b2:b0:7d:d5:22:02:63:
8a:ce:6b:b7:1f:14:70:18:ad:bf:5b:b2:b5:0a:31:
f9:c7:ad:a8:51:d4:7f:15:7c:aa:c9:67:48:fb:92:
20:28:08:cd:a3:2f:39:ec:32:d3:c7:40:85:58:68:
6c:dc:13:dd:ed:0e:0c:f3:8d:5d:4f:7d:c7:d4:3a:
cc:e4:e9:43:cc:4e:c3:e4:26:f9:2e:08:a8:2c:77:
84:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:FA:EC:4B:8D:99:2D:D6:B9:CD:89:A8:48:9D:3C:3A:65:2A:EC:D2
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/68c296-69b2-4070-9ff9-4243decad360/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/68c296-69b2-4070-9ff9-4243decad360/1/tfrsS42ZLda5zYmoSJ08OmUq7NI.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.60.176.0/21
185.220.40.0/22
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
16047
Signature Algorithm: sha256WithRSAEncryption
a8:20:02:ce:e4:af:60:8d:84:c6:51:98:93:1f:d2:bd:d6:6e:
f1:b6:c1:a3:4a:8f:d3:41:c9:ac:d1:66:39:b3:2f:7e:2b:82:
8f:73:09:7f:0f:35:c3:6e:1f:44:5b:c4:ec:b4:ed:09:c9:74:
84:ee:20:ea:ef:11:e0:38:76:25:4c:6f:fe:7a:d1:b3:25:76:
e7:5e:63:94:0b:7d:35:bd:5f:7e:eb:78:50:43:e7:47:e9:97:
10:09:c3:ad:59:62:68:7d:02:79:a3:d6:d8:59:45:fd:e9:4e:
bd:d0:07:35:15:87:af:10:e7:b5:5d:14:40:5c:3b:17:69:86:
f6:62:9e:63:9d:4c:ff:4e:cd:38:01:10:d9:a7:af:3c:ed:92:
51:da:12:d3:75:f0:bd:31:7d:f5:ec:97:7d:c6:ed:a2:17:40:
18:89:fe:7c:c7:79:d0:31:61:e3:fc:1f:60:44:ab:b4:57:34:
40:62:8e:91:15:17:75:7c:e9:ce:da:61:1b:6b:3f:b3:43:0c:
04:c3:21:ee:f9:ab:07:8a:37:d7:fd:c2:3d:65:c1:7e:6f:4f:
32:e6:48:fe:2a:22:df:21:ed:84:20:34:34:c0:0a:f9:c0:99:
c7:75:9a:86:97:ee:26:78:19:8e:ce:59:ec:cb:90:4c:be:77:
68:5e:7b:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 03:47:47 2024 by rpki-client on console-fra.rpki-client.org