Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/unZwbT4IgT24sndmKK-EZRjibdI.cer
File: unZwbT4IgT24sndmKK-EZRjibdI.cer (raw, json)
Hash identifier: eepHmxMXEEDSc2CuyPKTlzFudVD4DAb6YaUHCZpAkU0=
Subject key identifier: BA:76:70:6D:3E:08:81:3D:B8:B2:77:66:28:AF:84:65:18:E2:6D:D2
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC56E8CC5A24B8B8DD54F7B9497EB99F3
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/c7/6d4759-a05e-46bc-be58-669eed2ec7ea/1/unZwbT4IgT24sndmKK-EZRjibdI.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/c7/6d4759-a05e-46bc-be58-669eed2ec7ea/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 14:30:05 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 203205
AS: 206470
IP: 185.125.8.0/22
IP: 2a06:b6c0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:8c:c5:a2:4b:8b:8d:d5:4f:7b:94:97:eb:99:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 14:30:05 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ba76706d3e08813db8b2776628af846518e26dd2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:1a:52:34:f7:fd:71:66:57:e2:d1:04:63:83:
c8:e0:4a:61:b0:05:51:6c:04:c1:fd:f9:ba:3c:4a:
33:a8:81:06:fe:c3:10:4a:9d:ba:7d:70:3f:47:31:
0b:44:f1:4c:58:10:39:fb:5c:e6:fb:59:e3:f9:f5:
fc:00:74:b3:77:73:ef:bd:c8:a3:d4:54:d3:7c:cd:
52:d3:0d:18:ad:1b:b4:35:37:f3:5c:25:d1:a0:f1:
a6:84:7b:fd:50:02:92:41:8a:92:00:1f:a8:13:d0:
17:f4:de:09:53:71:11:c9:28:bb:83:36:b1:fd:55:
3f:c3:07:b8:00:0f:b9:d2:5e:06:aa:d9:b5:38:73:
fa:b2:61:9e:10:4b:b6:1c:a2:db:cd:95:f8:41:66:
c9:33:0e:d7:9a:85:16:d0:74:ad:58:ad:f8:2b:10:
e4:16:92:ce:fa:01:00:5f:eb:7c:59:1b:11:5a:06:
93:2e:68:5b:01:99:d7:0d:87:ac:9f:d3:3b:f1:27:
f4:84:93:75:71:bf:39:e4:b1:3d:17:d3:6d:37:5d:
f9:c5:9e:ef:86:fe:a5:55:8c:76:92:8a:37:ed:85:
de:22:38:6e:98:61:6e:df:3c:a8:28:18:3b:a9:1b:
70:5a:19:30:c6:2b:59:7a:a2:c8:51:ee:10:52:45:
f1:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:76:70:6D:3E:08:81:3D:B8:B2:77:66:28:AF:84:65:18:E2:6D:D2
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/6d4759-a05e-46bc-be58-669eed2ec7ea/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/6d4759-a05e-46bc-be58-669eed2ec7ea/1/unZwbT4IgT24sndmKK-EZRjibdI.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.125.8.0/22
IPv6:
2a06:b6c0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
203205
206470
Signature Algorithm: sha256WithRSAEncryption
6d:ed:14:58:51:1c:3a:60:73:ab:18:a7:3a:90:98:16:ad:22:
fa:de:5b:03:e2:d1:3b:83:a0:6e:23:12:40:39:35:0e:ce:9f:
4c:09:f4:9d:9e:83:c3:7c:21:34:1a:3a:db:7a:96:6b:e9:18:
9b:49:69:04:ed:9a:99:4f:33:c2:74:53:2d:de:01:50:02:3d:
69:9b:39:cf:b3:d5:cb:96:16:1a:59:e6:03:0d:50:7f:3c:de:
8f:58:94:e1:69:ba:b4:cd:9b:2f:23:18:ed:54:3f:25:42:2c:
90:97:e0:f9:c7:0d:95:41:87:b5:85:28:68:41:79:28:2e:14:
78:0f:8c:45:7c:52:e6:5d:12:0a:19:ea:f8:5d:3c:a4:4f:28:
56:74:d7:bd:14:b7:df:c2:62:10:97:85:51:65:36:12:37:18:
88:4b:3e:be:50:a5:b7:11:67:c6:73:52:6f:c3:0c:fb:d4:d7:
3b:0b:bc:d1:37:3b:9c:c4:8c:33:e8:21:6f:93:12:95:34:b4:
48:85:2c:89:b2:46:0a:ad:9a:4b:92:5a:04:54:82:fc:bb:f7:
12:9a:46:ec:04:bd:e0:1e:fc:91:af:4c:59:0f:40:c7:3e:db:
9a:48:c3:a7:84:b4:ec:9a:81:ca:94:30:a5:9e:3c:47:2c:74:
38:e7:a6:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 11:04:21 2024 by rpki-client on console-fra.rpki-client.org