Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/uBsD4ih1uwcLG3xY6touS7Gqvn8.cer
File: uBsD4ih1uwcLG3xY6touS7Gqvn8.cer (raw, json)
Hash identifier: M4z9QlVlgTBaPr+1vpfmOXTg1IQgHC9W4mAX4f62iN8=
Subject key identifier: B8:1B:03:E2:28:75:BB:07:0B:1B:7C:58:EA:DA:2E:4B:B1:AA:BE:7F
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC425538C37AFBCBD5CE286F484B3AA83
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/f6/e9146a-8ec9-4c31-ad9e-ad256643052b/1/uBsD4ih1uwcLG3xY6touS7Gqvn8.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/f6/e9146a-8ec9-4c31-ad9e-ad256643052b/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 08:30:29 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 202377
IP: 185.255.140.0/22
IP: 2a0c:6540::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:25:53:8c:37:af:bc:bd:5c:e2:86:f4:84:b3:aa:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 08:30:29 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b81b03e22875bb070b1b7c58eada2e4bb1aabe7f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:c1:46:71:21:cd:36:14:87:a7:1e:36:55:e1:
4b:57:68:51:86:c7:0b:8e:0d:ac:e8:d4:bb:86:1a:
15:74:4e:41:b9:3e:b0:ed:e4:99:5b:48:7c:f9:a3:
9f:95:0c:cf:66:76:89:5e:7f:0f:48:07:f0:05:33:
31:a1:50:d4:f8:ab:02:cd:7a:5e:3b:8f:51:62:88:
d5:ec:a2:84:f0:fd:ae:b5:ab:da:04:03:41:f4:bb:
dd:77:74:22:fa:02:2a:d4:26:96:0a:e7:27:fd:7e:
7b:a3:7d:57:4d:ac:7e:e3:1b:ec:54:39:cf:c7:1a:
ea:33:c9:16:0b:29:dc:59:02:3f:a5:16:55:16:a3:
4c:6f:90:fb:2b:b0:ef:45:58:42:6a:dd:d9:5e:c0:
7d:40:cc:3c:41:e7:e1:08:e6:53:58:46:d7:0b:15:
49:ba:30:f5:d3:17:3f:16:d7:b3:58:b8:eb:70:bf:
79:c5:09:c0:58:30:bf:b7:7e:b4:be:e5:18:6e:dd:
cb:11:cb:09:b3:cf:d4:a6:59:2b:d5:4e:82:a2:24:
35:20:59:09:be:7c:23:04:cd:5f:e9:a3:07:d3:dd:
21:0e:67:ad:08:4e:9e:f0:36:7c:20:65:ac:42:5e:
b6:ac:5e:71:cf:95:3a:13:23:24:45:8a:98:fb:18:
b6:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:1B:03:E2:28:75:BB:07:0B:1B:7C:58:EA:DA:2E:4B:B1:AA:BE:7F
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/e9146a-8ec9-4c31-ad9e-ad256643052b/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/e9146a-8ec9-4c31-ad9e-ad256643052b/1/uBsD4ih1uwcLG3xY6touS7Gqvn8.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.255.140.0/22
IPv6:
2a0c:6540::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
202377
Signature Algorithm: sha256WithRSAEncryption
66:8c:b3:f5:35:bc:a5:dc:32:4a:a1:3f:9c:fd:28:15:58:fe:
13:60:1d:f9:5a:9e:e4:d9:36:f7:78:48:1a:e6:d7:26:f4:49:
06:43:d8:8e:d0:56:55:01:c6:71:1d:82:d5:1d:6f:55:c0:2f:
ee:c6:99:d6:75:61:32:2a:bc:a9:02:33:36:0d:dd:2a:07:2d:
88:f7:3d:b2:12:f2:34:d2:08:dc:45:c1:26:ab:da:de:de:07:
15:1e:40:2c:be:8b:1f:7d:08:eb:5a:80:cc:54:8f:62:a5:e1:
ea:e0:6a:5d:08:33:9e:e0:67:6a:05:ce:20:54:9c:d6:45:21:
60:80:3c:84:44:4f:58:f6:0f:a4:36:bd:74:d5:76:19:f8:59:
0a:1d:ca:63:b0:08:45:6f:da:61:2d:48:e0:44:ab:71:53:7f:
7d:15:c2:31:4a:b5:33:d0:92:c4:f4:a1:04:b6:f1:6c:8a:b0:
e4:1a:c7:58:90:14:81:28:83:63:d5:59:28:6b:7b:cc:11:97:
ab:21:b1:ca:89:11:24:18:96:fc:d3:45:86:d6:d3:e7:e2:db:
8f:12:0c:cd:13:ef:5c:f9:40:db:81:6f:a1:e1:b7:bf:d4:66:
4f:74:44:38:3a:c4:1b:cd:67:43:41:28:04:9f:ea:0b:9f:c2:
3f:f1:9f:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 11:03:46 2024 by rpki-client on console-fra.rpki-client.org