Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/w7OWKu5OiuTGzNiXnlOYAuoOTOc.cer
File: w7OWKu5OiuTGzNiXnlOYAuoOTOc.cer (raw, json)
Hash identifier: pqUtxY5/HTJ18IVW88fvC2+PHHMO/wlLECcvH6kTr7c=
Subject key identifier: C3:B3:96:2A:EE:4E:8A:E4:C6:CC:D8:97:9E:53:98:02:EA:0E:4C:E7
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC6B92621FE25FB186E918860CD68A0AC
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/e8/2645a7-532c-4fa1-bcdd-ea5dad8b4765/1/w7OWKu5OiuTGzNiXnlOYAuoOTOc.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/e8/2645a7-532c-4fa1-bcdd-ea5dad8b4765/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 20:31:11 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 212058
IP: 185.197.183.0/24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b9:26:21:fe:25:fb:18:6e:91:88:60:cd:68:a0:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 20:31:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c3b3962aee4e8ae4c6ccd8979e539802ea0e4ce7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:07:e9:05:bd:c1:aa:a1:49:22:c4:e7:89:df:
fb:e1:0a:09:48:3c:3e:38:f7:d5:ed:4a:c7:d7:ac:
79:7b:a8:22:61:64:fd:ec:c3:97:14:76:9a:64:ed:
d3:56:2f:74:fb:34:4d:35:a4:39:04:39:00:1d:97:
b7:d1:15:c9:70:20:31:95:57:02:cd:6f:f9:60:09:
3f:2d:5e:b2:70:ff:09:1d:43:9e:f3:cd:f3:72:ba:
28:5c:d4:28:f3:66:f0:72:e4:2f:d5:78:58:10:37:
fa:32:f4:8b:6a:3d:3a:cc:52:fa:ac:2e:ee:d5:31:
6a:e8:30:40:f9:21:e8:cf:c5:1b:72:19:dd:08:1d:
00:a7:48:99:d3:8f:f9:bb:a9:57:d9:6f:54:1f:36:
fd:f7:0c:e9:9e:20:89:16:8c:a3:1a:86:8e:82:7e:
e8:0c:81:83:8f:1e:52:33:7f:97:6f:38:b1:5b:b3:
49:91:54:e8:3a:9b:be:57:ed:4d:d1:06:26:7b:a1:
cb:28:bd:06:d3:76:36:aa:1b:e1:95:ce:8d:7b:a5:
aa:5c:06:a6:96:bf:08:e5:55:4d:8c:77:dd:5e:5b:
7e:33:f4:c2:0b:47:3c:a4:dc:8f:25:32:51:c9:b1:
cc:94:58:6d:5a:e1:51:1f:9b:f1:76:d9:e1:ed:a0:
e9:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:B3:96:2A:EE:4E:8A:E4:C6:CC:D8:97:9E:53:98:02:EA:0E:4C:E7
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/2645a7-532c-4fa1-bcdd-ea5dad8b4765/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/2645a7-532c-4fa1-bcdd-ea5dad8b4765/1/w7OWKu5OiuTGzNiXnlOYAuoOTOc.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.197.183.0/24
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
212058
Signature Algorithm: sha256WithRSAEncryption
08:9e:f6:3d:aa:bd:b2:56:09:d5:8a:12:1f:28:be:ac:9c:19:
f5:7b:c6:2b:58:11:54:7b:d2:ce:34:a1:10:07:19:f5:ff:8c:
64:69:a6:f5:45:96:20:c3:0e:4b:ba:14:28:4d:d1:34:fd:ae:
3d:fe:ba:f9:35:9a:24:31:67:90:bc:bd:aa:e8:07:00:8e:5b:
38:84:76:8c:93:78:51:39:5a:e9:8e:e1:10:29:14:43:e0:0d:
e6:c2:af:a9:ae:c3:34:47:1b:97:65:e8:48:ab:1b:fd:37:1f:
32:e8:f6:58:21:73:97:df:55:35:9b:f0:71:a9:49:2d:5a:05:
7e:b4:38:2a:60:40:dd:8d:b1:30:90:c0:b3:9c:04:70:68:b7:
8c:42:dd:b8:16:3d:59:75:f8:bb:02:aa:26:06:85:38:37:e6:
25:78:06:d4:87:41:52:4d:22:af:84:44:53:2f:f2:aa:29:09:
86:77:a5:7d:d6:42:b1:2e:76:a9:21:95:95:2c:ac:f9:46:6c:
ca:af:95:62:de:60:d6:e6:7b:ac:41:32:9c:9a:0d:a0:17:b6:
8f:5a:56:d5:25:1f:fa:8f:50:89:e6:6d:3f:89:d2:ed:66:59:
d1:57:15:c8:41:e2:25:a2:5d:a5:66:6a:90:a8:0d:85:f6:45:
f1:c2:97:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 07:34:18 2024 by rpki-client on console-ams.rpki-client.org