Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/x6TS9okT6s5sn1CSvcfdIPV09Dg.cer
File: x6TS9okT6s5sn1CSvcfdIPV09Dg.cer (raw, json)
Hash identifier: c+K90uk/rpjHaHjQw6GRK/FbX9d+q7HLJty8/mdkkfM=
Subject key identifier: C7:A4:D2:F6:89:13:EA:CE:6C:9F:50:92:BD:C7:DD:20:F5:74:F4:38
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC56EE8DB16E0EE0D8A55043C2A080E1D
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/58/f03ca1-726b-4de9-b419-f9a1bbc36845/1/x6TS9okT6s5sn1CSvcfdIPV09Dg.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/58/f03ca1-726b-4de9-b419-f9a1bbc36845/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 14:30:29 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 202632
IP: 31.47.0.0/19
IP: 185.12.168.0/22
IP: 185.173.28.0/22
IP: 185.210.180.0/22
IP: 213.91.64.0/21
IP: 213.91.112.0/20
IP: 217.71.48.0/24
IP: 217.71.56.0/21
IP: 2a03:9240::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:e8:db:16:e0:ee:0d:8a:55:04:3c:2a:08:0e:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 14:30:29 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c7a4d2f68913eace6c9f5092bdc7dd20f574f438
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:d8:ef:ef:f6:19:b0:9f:cd:93:59:b8:35:99:
c0:ec:a9:78:f6:bb:b3:0c:46:0d:fa:da:ac:41:c0:
26:5d:a4:63:00:9f:29:14:ba:1c:40:af:a0:35:da:
0b:23:d3:39:0f:38:1d:4e:48:7d:64:04:6b:98:15:
92:aa:f8:bf:42:fd:5c:7d:da:ff:ef:3d:00:5d:7f:
27:44:cb:70:c2:5d:62:e7:b6:61:91:cd:76:1a:91:
56:c3:8d:1c:8e:ec:e5:49:07:26:31:5d:c2:e9:12:
cc:99:ef:e4:dd:1a:dc:c4:6b:89:ba:dc:4d:ef:86:
10:86:d8:be:92:c8:38:30:09:39:71:3b:b0:38:65:
0b:0b:0d:f9:15:9b:a4:ac:53:00:7a:a1:8f:f8:a8:
d8:f2:da:6b:ba:24:c8:43:3b:1a:c8:89:14:e9:29:
85:fb:ba:04:0f:de:98:2f:bc:52:5e:a3:c0:2d:d6:
ee:ad:52:f8:69:1f:e8:2b:45:6f:02:72:8d:5a:14:
91:87:d2:e4:fb:3a:62:b9:68:e8:a1:9b:bb:9e:ad:
c9:95:5c:f8:ab:8a:92:3d:99:9a:18:f2:8f:7b:4a:
b7:6d:41:c2:a6:16:ec:19:22:f1:c3:cd:ba:2f:f3:
f9:4f:15:d5:1f:d6:be:23:a0:b0:30:18:84:66:90:
c6:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:A4:D2:F6:89:13:EA:CE:6C:9F:50:92:BD:C7:DD:20:F5:74:F4:38
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/f03ca1-726b-4de9-b419-f9a1bbc36845/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/f03ca1-726b-4de9-b419-f9a1bbc36845/1/x6TS9okT6s5sn1CSvcfdIPV09Dg.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.47.0.0/19
185.12.168.0/22
185.173.28.0/22
185.210.180.0/22
213.91.64.0/21
213.91.112.0/20
217.71.48.0/24
217.71.56.0/21
IPv6:
2a03:9240::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
202632
Signature Algorithm: sha256WithRSAEncryption
8b:11:8d:8e:84:96:d7:9e:42:5f:3e:a6:f1:d2:13:a2:22:24:
7e:eb:c0:ae:c8:0d:b8:6c:c3:8f:cd:fd:e3:a9:bc:cd:9c:48:
67:fc:c2:58:c5:13:f8:41:18:3e:47:78:5e:99:08:de:26:31:
df:08:67:e7:1a:61:0a:f5:36:05:fd:cf:22:c1:53:87:12:73:
5f:f3:36:6a:7a:c4:f2:00:30:0a:93:5c:ce:12:95:aa:b9:87:
f0:77:f5:bd:e6:e4:c1:03:c8:e0:4b:0c:9a:14:15:13:02:4c:
af:60:70:7c:c9:5f:59:38:a1:cd:c3:c0:db:7e:04:a0:25:27:
07:93:a6:8f:74:f6:7c:e9:da:1f:2e:dc:18:cb:bc:03:dd:ac:
a6:62:00:6a:98:73:1f:ef:1d:9e:f7:fe:26:b1:0d:be:fa:e5:
eb:02:96:77:6b:5c:6c:1d:e0:3b:36:4f:77:f3:75:60:a9:42:
12:93:63:aa:59:b9:20:c3:61:aa:9a:b3:fb:4f:8b:13:d0:af:
ba:a6:bd:b5:13:7e:aa:70:a6:82:26:dc:46:db:a5:18:28:01:
9e:ba:31:80:5a:a3:4a:55:f8:51:c7:be:b6:37:a2:e0:02:1b:
67:c1:ee:31:a0:f2:25:c7:a2:9d:53:3a:b5:bc:10:7d:ae:19:
c9:77:a4:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 03:50:51 2024 by rpki-client on console-fra.rpki-client.org