Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/u8VfskrVVuBCAmUfbVqLJ9W-35c.cer
File: u8VfskrVVuBCAmUfbVqLJ9W-35c.cer (raw, json)
Hash identifier: UhGUadAkKndMYFMidn6Gs9F7EHBk7Bg/PIQfy0fO/b0=
Subject key identifier: BB:C5:5F:B2:4A:D5:56:E0:42:02:65:1F:6D:5A:8B:27:D5:BE:DF:97
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC86F619D785FBBA57D5E404F808D4051
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/db/46922f-5cb6-4d98-b4fc-93bd5e408f91/1/u8VfskrVVuBCAmUfbVqLJ9W-35c.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/db/46922f-5cb6-4d98-b4fc-93bd5e408f91/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 04:29:51 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 213319
IP: 185.168.228.0/22
IP: 2a0b:f080::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:61:9d:78:5f:bb:a5:7d:5e:40:4f:80:8d:40:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 04:29:51 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bbc55fb24ad556e04202651f6d5a8b27d5bedf97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:8e:6b:4f:02:98:65:0d:48:31:69:4b:5c:ba:
dd:2e:dd:ef:03:ad:c6:c4:25:4e:3f:37:29:99:a4:
03:9f:ee:04:ba:52:b0:51:a0:a1:b6:08:be:e7:fb:
8c:be:31:e8:56:24:72:2f:66:21:b2:e9:61:d4:29:
a3:22:27:9f:a8:92:89:0f:a7:b8:11:31:8a:cb:29:
5a:99:a9:7d:34:af:b8:13:de:bf:4e:49:73:03:6f:
5a:41:8f:4d:a4:39:49:30:5b:af:ef:47:39:93:c6:
ac:41:5e:5c:17:8b:2e:f6:cc:8c:90:ac:95:05:43:
25:f8:a1:e4:65:1a:d5:93:4d:68:77:f7:c0:7c:e5:
a9:8b:1e:d0:ce:28:28:2d:89:10:a3:46:38:a5:dc:
38:54:94:28:26:05:5a:b3:89:04:63:c7:ff:35:1f:
ec:05:75:e2:8e:2f:91:e7:9d:19:de:88:a2:2c:2b:
1b:2e:b2:f1:f5:3e:05:e2:04:38:a9:31:f5:62:5a:
e6:ab:ee:fe:d5:4a:0e:69:c7:89:01:9d:d1:6d:a8:
ee:42:99:86:39:32:bd:0d:12:ee:12:fe:bf:6f:ee:
a3:61:da:4b:45:d1:2f:9e:22:31:50:a0:2f:8a:ed:
43:01:e7:4c:8f:48:36:7d:2f:e4:33:fb:17:54:5c:
88:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:C5:5F:B2:4A:D5:56:E0:42:02:65:1F:6D:5A:8B:27:D5:BE:DF:97
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/46922f-5cb6-4d98-b4fc-93bd5e408f91/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/46922f-5cb6-4d98-b4fc-93bd5e408f91/1/u8VfskrVVuBCAmUfbVqLJ9W-35c.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.168.228.0/22
IPv6:
2a0b:f080::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
213319
Signature Algorithm: sha256WithRSAEncryption
8e:b8:5a:92:f3:b2:bd:fc:91:e7:da:a2:d9:cc:18:a9:75:cb:
a7:ac:e4:5c:92:8d:22:8f:94:6f:7b:8d:fb:df:95:5d:91:be:
ca:66:a5:72:1a:4a:f5:ac:56:b4:4f:7f:41:88:cc:7b:47:ed:
71:b8:6b:67:59:dd:36:39:d3:29:8c:3c:8c:67:4d:f7:8f:78:
43:23:8a:64:51:87:cd:f4:9e:f0:27:66:df:28:5d:e0:71:b1:
a4:fe:c4:14:b5:ec:97:f0:e9:a4:f9:9d:9f:7c:3a:d0:09:2c:
95:3e:90:a0:20:97:6b:76:85:02:d3:cd:9e:3e:09:97:b7:a8:
01:fb:31:c3:29:8a:e1:06:1a:00:3f:8b:06:8a:98:0f:37:46:
d8:70:3a:ca:62:65:9c:0e:cf:88:2d:12:63:31:8e:50:6a:5e:
e0:6c:82:9b:3d:46:89:01:ea:9f:4c:6d:bb:f8:d3:94:b2:0f:
c2:1a:4a:ac:d4:3d:36:5f:f1:25:ca:88:92:e0:07:0a:7f:e2:
d7:10:fa:a7:91:46:49:54:82:72:41:82:08:c1:5c:7c:af:ed:
cc:05:fb:58:bb:53:15:3e:95:a3:02:24:66:8e:16:3c:74:20:
bb:31:f3:c6:da:b9:8d:d5:70:ab:57:86:9f:36:78:55:7e:b1:
15:8f:97:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 26 10:23:15 2024 by rpki-client on console-ams.rpki-client.org