Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/w4UgGjO1J8ZEqtWuzTeCxqjC9R8.cer
File: w4UgGjO1J8ZEqtWuzTeCxqjC9R8.cer (raw, json)
Hash identifier: nijj9Sf4THIe/blm5+kNiUkaxIwASkTdLS+qgvvOmrI=
Subject key identifier: C3:85:20:1A:33:B5:27:C6:44:AA:D5:AE:CD:37:82:C6:A8:C2:F5:1F
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC6B8B491B4346329D332A5DE85E75CBB
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/79/6d663a-4538-4cbf-ad1f-857580fc6167/1/w4UgGjO1J8ZEqtWuzTeCxqjC9R8.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/79/6d663a-4538-4cbf-ad1f-857580fc6167/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 20:30:42 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 206602
IP: 185.181.236.0/22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b8:b4:91:b4:34:63:29:d3:32:a5:de:85:e7:5c:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 20:30:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c385201a33b527c644aad5aecd3782c6a8c2f51f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:31:6f:1e:f9:e2:31:6b:40:0f:f4:b0:f0:40:
46:14:49:b7:9e:cd:a7:7b:75:11:d3:cc:4a:5d:67:
77:e6:4a:a1:1b:d5:a6:9f:e0:99:5c:67:4b:bc:a0:
8f:5e:13:a3:58:38:17:6e:f5:de:72:2a:c2:df:97:
3a:4f:93:c3:82:90:0b:32:5a:8c:e9:64:fe:a7:cb:
28:7f:84:d0:2d:23:01:54:b1:1b:19:8c:76:51:1b:
df:87:d9:e1:68:12:2e:a2:d3:30:20:3d:8a:c5:3d:
ad:08:a7:e7:a1:ad:41:d5:7b:e3:59:82:98:3b:ae:
c6:44:dd:5a:aa:0d:14:22:c3:00:90:37:b2:af:ce:
58:b1:4d:88:8b:9b:0a:da:16:50:d2:01:0a:c0:c1:
c0:23:a5:0e:11:6c:60:2f:ff:f6:02:b4:c6:82:03:
81:2f:46:47:e6:09:4c:6a:da:3d:05:0f:d0:ca:22:
4c:46:40:b9:3a:7d:34:5e:fe:ac:a5:17:c4:43:89:
58:98:96:c5:9f:12:c3:24:7e:c9:9c:bf:e4:4f:7f:
ad:c8:7b:03:43:aa:60:3b:29:d7:86:86:84:28:ed:
b3:87:22:3a:c0:82:38:73:dc:bb:84:5a:9d:1c:52:
f4:47:db:fc:5c:b8:08:1b:62:84:a3:ee:f7:fc:c1:
4a:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:85:20:1A:33:B5:27:C6:44:AA:D5:AE:CD:37:82:C6:A8:C2:F5:1F
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/6d663a-4538-4cbf-ad1f-857580fc6167/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/6d663a-4538-4cbf-ad1f-857580fc6167/1/w4UgGjO1J8ZEqtWuzTeCxqjC9R8.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.181.236.0/22
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
206602
Signature Algorithm: sha256WithRSAEncryption
55:59:9f:cf:9b:5d:f4:f6:e5:42:b2:b7:65:ca:af:a2:19:99:
d8:b8:28:65:da:53:59:16:0d:24:5c:9e:b6:03:46:64:36:8c:
83:80:34:2b:37:e4:de:95:43:96:89:c3:e9:dd:c6:74:d3:ba:
11:45:79:3f:58:e1:68:37:12:38:98:4e:5a:07:6f:1f:47:16:
e6:80:cb:e2:78:39:6a:73:e7:0f:0b:6e:4a:ee:21:da:f7:0e:
66:3e:c5:f0:b7:cf:f1:f7:e3:2c:1d:f6:c8:1c:25:b0:dd:45:
81:8e:88:d4:00:fb:b6:44:07:25:77:76:1d:30:50:d7:5f:02:
8b:e7:25:6d:1e:d0:da:42:0d:1a:b9:d1:89:ff:d6:56:61:8a:
de:1c:1d:84:9e:34:15:73:fd:b4:ab:5e:68:5e:13:4d:09:2b:
bf:f5:7d:6f:f9:ce:17:ea:20:c9:ea:00:36:48:01:ff:8a:41:
ea:33:b7:36:36:e1:cc:8b:85:ba:79:05:82:89:2c:f1:8f:17:
40:c8:b6:98:59:08:0e:44:0a:14:d6:45:0c:43:7e:48:15:66:
4b:8d:6f:d2:09:80:4b:f2:c3:ab:71:0a:f5:77:18:11:95:0b:
af:e0:34:3d:9d:e9:82:fd:49:6f:7d:11:bb:e1:1b:34:11:f1:
c5:59:2a:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 02:32:01 2024 by rpki-client on console-ams.rpki-client.org