Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/u5tW2NluvLX8-H3i7CtSwZTM-fk.cer
File: u5tW2NluvLX8-H3i7CtSwZTM-fk.cer (raw, json)
Hash identifier: H2xhT4rcPCrw4JLXuQiK2qXCAhPxIhn/5bz80Aw89lc=
Subject key identifier: BB:9B:56:D8:D9:6E:BC:B5:FC:F8:7D:E2:EC:2B:52:C1:94:CC:F9:F9
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC801C28FDB335EFC0FDDC425E2A6DA7A
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/2a/8f3942-17f7-493c-bc6b-4f4fe803b015/1/u5tW2NluvLX8-H3i7CtSwZTM-fk.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/2a/8f3942-17f7-493c-bc6b-4f4fe803b015/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 02:30:07 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 57461
IP: 91.232.72.0/22
IP: 185.222.120.0/22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:c2:8f:db:33:5e:fc:0f:dd:c4:25:e2:a6:da:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 02:30:07 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bb9b56d8d96ebcb5fcf87de2ec2b52c194ccf9f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:9e:68:a3:01:24:0e:ea:b0:2b:00:09:56:47:
7b:6a:8e:24:32:e7:a1:9f:80:7d:db:70:b0:21:11:
01:b7:7b:50:ad:50:97:ec:fc:66:d3:24:0a:78:6d:
dd:94:c6:8e:c7:e9:a3:35:dc:09:a2:9d:8e:c8:e8:
bd:44:27:1a:81:52:3b:95:a2:80:de:c1:e8:ae:05:
7c:1f:b1:fa:e7:8c:f6:91:8c:1f:db:a7:25:09:d1:
a1:e0:48:34:b4:f6:c5:d3:03:8e:54:11:b3:e0:90:
b5:6f:24:73:11:24:ef:2c:8d:fc:0e:2c:ca:4a:e6:
55:6c:e5:55:39:43:2b:6c:26:3a:68:cb:ff:2d:0d:
b7:5e:35:0c:ce:e7:9a:8e:f7:b5:9d:19:e4:85:3f:
f0:16:87:d6:73:0f:a5:0d:76:24:12:f0:f0:86:06:
4b:1e:a1:e5:7a:62:96:83:19:ee:2f:f9:ac:3b:7f:
9a:0c:67:65:c8:65:61:9d:b7:ab:3c:37:f7:03:d5:
21:c9:2d:b5:0d:ec:01:0c:a7:b2:31:24:aa:f9:1f:
1f:b1:84:15:95:0a:52:aa:66:96:89:7b:6e:ea:84:
7c:9c:93:6e:0c:19:ed:2b:10:39:9f:5d:93:4c:0e:
12:58:72:25:b5:29:08:62:93:76:43:fc:bd:a8:7a:
2d:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:9B:56:D8:D9:6E:BC:B5:FC:F8:7D:E2:EC:2B:52:C1:94:CC:F9:F9
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/8f3942-17f7-493c-bc6b-4f4fe803b015/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/8f3942-17f7-493c-bc6b-4f4fe803b015/1/u5tW2NluvLX8-H3i7CtSwZTM-fk.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.232.72.0/22
185.222.120.0/22
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
57461
Signature Algorithm: sha256WithRSAEncryption
1b:0d:e6:8d:aa:00:f7:a6:0e:5f:46:d1:b3:f4:82:c0:72:19:
eb:1e:9f:23:82:68:8c:75:f6:92:9f:a1:ff:98:55:1b:d6:0e:
80:29:52:45:39:1a:a5:f2:ca:71:f6:58:53:55:ac:39:af:b5:
78:29:d6:9d:05:7f:82:72:3f:51:77:ca:fc:d4:5c:f4:a9:99:
67:bc:fd:4e:7a:de:93:b0:3b:c7:47:b5:a5:d6:7f:01:df:04:
e7:61:20:da:0c:4d:3c:8c:4c:51:5a:40:73:65:a3:d6:2e:e0:
4b:53:72:c3:91:40:1f:77:5d:55:bf:2c:5c:f0:d3:02:12:70:
0a:95:e3:47:23:a8:85:bc:66:fb:c8:f9:61:e3:66:1d:cb:f6:
1b:6b:a5:c4:1a:c3:50:7d:fc:08:76:39:ac:f7:47:9f:3d:69:
8f:d8:da:40:12:50:17:e6:1e:ce:d1:54:2b:f1:6d:dc:1a:ce:
e8:9b:5d:e6:8d:91:6a:59:25:6a:de:e9:88:f4:4b:79:05:bf:
6b:71:56:37:39:79:eb:c2:f1:ad:fc:56:e7:db:0b:8f:75:82:
12:ab:51:20:6f:77:a0:a4:d9:90:bd:07:be:77:8d:c6:f6:30:
f4:e9:d2:dd:57:d8:92:32:b7:7f:cd:67:5b:d4:48:56:6d:fd:
f3:00:cc:a7
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Fri May 3 08:23:03 2024 by rpki-client on console-fra.rpki-client.org