Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/wVIzr0ulkRnW_xlNfNhmUISm7nc.cer
File: wVIzr0ulkRnW_xlNfNhmUISm7nc.cer (raw, json)
Hash identifier: FxQzsjUp0vKxfUkP6F3lj6NtLTvQ0f1WuSqV262kSJU=
Subject key identifier: C1:52:33:AF:4B:A5:91:19:D6:FF:19:4D:7C:D8:66:50:84:A6:EE:77
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC9BB06A6DB3B19FFA0A3DE657429470D
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/68/b66ff8-e2ab-483c-a373-4b7f375ecd06/1/wVIzr0ulkRnW_xlNfNhmUISm7nc.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/68/b66ff8-e2ab-483c-a373-4b7f375ecd06/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 10:32:06 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 208617
IP: 185.160.204.0/24
IP: 2a12:e740::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bb:06:a6:db:3b:19:ff:a0:a3:de:65:74:29:47:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 10:32:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c15233af4ba59119d6ff194d7cd8665084a6ee77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:d3:81:31:a8:9b:4e:e3:df:71:c3:9b:6f:c5:
2f:12:9a:b5:cd:46:47:99:9c:f3:ff:3f:f5:93:19:
32:ac:e4:0d:fc:eb:70:1e:24:28:a1:0b:c3:91:de:
12:8c:fe:71:68:cf:3d:e2:ed:a6:38:5f:e7:0d:15:
78:98:3e:3c:35:5c:84:5d:69:67:62:62:7d:e4:54:
82:50:6f:8a:fc:92:4b:95:67:b6:c7:d0:4f:d9:bc:
11:14:ae:dc:f4:92:70:1b:f4:f3:b3:f6:6d:7e:67:
a2:55:a5:62:69:ee:46:a1:00:92:23:50:85:61:26:
20:d1:99:8b:3b:ef:95:31:66:ea:33:aa:d9:4f:13:
4e:46:0e:d4:5c:6c:14:07:91:5d:e8:04:d8:9d:d0:
79:f7:ec:19:18:34:09:ef:16:96:c1:dc:6b:7d:87:
09:a6:4b:29:45:98:fe:02:c6:6c:15:27:52:1c:1e:
07:a0:9a:73:6e:8e:88:a3:6b:aa:38:a8:77:4d:d8:
42:26:45:af:4f:83:c0:1b:eb:52:1b:f9:a1:32:58:
cd:6e:70:a6:b1:1e:13:ae:73:d9:58:91:e1:cd:0c:
93:b3:e6:4a:0a:6b:40:d5:08:02:8b:46:26:15:6e:
20:f0:54:a6:89:a2:61:c8:2b:a0:56:9b:5f:9f:1b:
c8:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:52:33:AF:4B:A5:91:19:D6:FF:19:4D:7C:D8:66:50:84:A6:EE:77
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/b66ff8-e2ab-483c-a373-4b7f375ecd06/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/b66ff8-e2ab-483c-a373-4b7f375ecd06/1/wVIzr0ulkRnW_xlNfNhmUISm7nc.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.160.204.0/24
IPv6:
2a12:e740::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
208617
Signature Algorithm: sha256WithRSAEncryption
40:c1:11:49:92:b6:cb:4d:46:46:f7:df:8a:18:d0:01:2c:15:
a7:52:4d:90:a1:c0:f1:8b:e1:22:df:74:a0:2e:df:f5:4a:32:
70:c5:ca:90:49:a4:24:4e:da:7e:26:e6:b6:5a:d7:69:5a:4d:
a8:8d:88:e0:9f:5b:92:24:ab:0f:bb:20:42:74:2e:ee:25:0c:
a3:fc:8f:bd:ba:e9:f5:ae:db:29:2c:5e:f1:e1:36:de:77:7c:
e3:82:8c:b7:0d:3a:bb:ea:2c:db:48:59:70:6f:a8:b4:8c:13:
04:72:1f:d4:94:81:91:0c:e5:a5:05:22:bd:a1:68:d4:6d:65:
cb:cc:35:30:23:ae:44:14:ce:53:83:6a:c0:75:a7:85:c3:d1:
9e:d6:26:82:b8:82:fe:c4:d4:80:2d:f2:c1:bf:05:de:d7:61:
4d:06:8d:89:08:3f:c5:ad:ec:c9:70:80:b0:0d:3c:6a:db:68:
a6:00:27:00:88:08:ba:35:c6:02:4c:eb:0a:7c:db:e7:63:77:
ee:07:a9:ff:e5:7e:bf:b5:d5:80:d5:06:2b:12:c2:63:23:56:
fe:7d:ec:1a:4d:a9:79:ab:03:3e:9a:52:b3:ba:55:9f:fc:41:
fa:69:51:a5:71:dc:ee:26:8e:c4:f6:89:a3:73:45:21:fc:68:
4c:86:b3:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:23:29 2024 by rpki-client on console-fra.rpki-client.org