Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/xTsinnPOa7GW1lwL7xGVYGV6NyA.cer
File: xTsinnPOa7GW1lwL7xGVYGV6NyA.cer (raw, json)
Hash identifier: MwFJ9Z4HhgGxKk8EezJQOO/YQ9e+VBGszCZEy2cffRY=
Subject key identifier: C5:3B:22:9E:73:CE:6B:B1:96:D6:5C:0B:EF:11:95:60:65:7A:37:20
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC348C72FE71C8BAC2F157ED9C55419D7
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/d9/e92666-4526-47c1-b2ba-63728b0fa108/1/xTsinnPOa7GW1lwL7xGVYGV6NyA.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/d9/e92666-4526-47c1-b2ba-63728b0fa108/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 04:29:35 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 201545
IP: 185.69.176.0/22
IP: 2a05:2340::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:48:c7:2f:e7:1c:8b:ac:2f:15:7e:d9:c5:54:19:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 04:29:35 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c53b229e73ce6bb196d65c0bef119560657a3720
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:6d:30:42:17:a4:ae:4d:fb:8c:d1:f0:74:9f:
11:e7:e6:bc:5c:41:e6:28:0b:04:28:96:f0:c3:44:
83:8d:39:5b:5d:db:ff:f2:1b:33:c2:3b:2f:78:3e:
6d:0c:60:0e:5b:cf:0c:08:ba:45:16:97:30:73:70:
6c:f8:3b:6c:97:be:f2:aa:20:69:11:87:8c:37:64:
ea:9a:f6:91:87:89:19:87:55:02:32:c2:e7:29:f2:
8d:8c:3b:88:a1:97:95:6b:3a:d0:4e:6d:ef:3d:44:
4a:94:b6:e6:11:8b:94:77:d7:93:41:a3:ac:36:3f:
2f:fa:6f:68:92:a7:e3:d3:67:c3:b9:c8:d3:04:1f:
82:1c:6c:09:09:c7:4e:11:d7:e3:6b:c0:24:d0:a5:
28:2c:73:e7:2c:9e:3d:f8:df:51:fb:39:52:4f:f3:
52:de:df:46:14:1a:80:ba:07:7e:e1:bf:74:0d:1e:
aa:0b:63:58:12:e8:90:0b:9d:bd:ff:00:9d:3f:0b:
3e:60:ce:6f:2f:ec:a5:5e:49:37:36:a4:95:58:6d:
d4:6f:d7:0a:1d:c7:7e:3a:14:3a:30:a2:8c:7e:eb:
ec:6a:cb:9a:02:b4:09:74:d9:41:e0:7e:0d:f6:a0:
5b:4c:bb:33:ca:56:41:33:ef:00:f1:35:be:d8:10:
a6:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:3B:22:9E:73:CE:6B:B1:96:D6:5C:0B:EF:11:95:60:65:7A:37:20
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/e92666-4526-47c1-b2ba-63728b0fa108/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/e92666-4526-47c1-b2ba-63728b0fa108/1/xTsinnPOa7GW1lwL7xGVYGV6NyA.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.69.176.0/22
IPv6:
2a05:2340::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
201545
Signature Algorithm: sha256WithRSAEncryption
4e:be:8d:b6:17:e4:1e:b8:fe:5f:85:fa:d4:5a:bf:a3:ba:af:
06:99:8e:12:12:a6:57:e3:6d:3e:fc:05:e1:62:c8:8a:12:58:
9a:87:29:b2:d3:7c:31:ef:6d:15:20:e9:3f:79:d2:40:d1:99:
3c:b8:ae:00:ba:c9:f6:e1:47:08:2f:81:0a:3b:04:23:59:71:
4c:54:cc:76:1c:8f:4a:fb:77:20:0d:3d:9a:9b:cb:1f:fc:8d:
21:3b:16:ce:0b:18:b6:c8:0f:04:39:c8:2b:c1:fa:85:53:89:
cd:b0:f8:7d:38:83:29:97:7e:6f:80:b7:f6:ab:cc:50:94:10:
68:ae:21:eb:c5:82:8d:e3:ec:86:fd:c9:22:7c:5c:8f:15:d8:
75:8f:a5:90:25:e8:c2:2c:8c:ae:1d:41:ce:20:f8:91:de:b5:
8c:0f:c8:b7:0a:71:c4:cb:a0:18:71:51:e8:80:ec:d9:11:5d:
70:93:8e:76:6f:9d:69:ef:89:bc:20:be:69:18:d4:eb:b5:93:
bd:1b:e6:8f:20:da:9c:37:3f:82:88:d8:3e:6e:0c:96:b0:01:
4e:d0:d4:d6:7d:10:da:b7:e0:2c:05:8e:99:b7:a0:94:53:19:
70:b0:9e:2c:33:17:04:44:35:40:23:aa:70:20:c4:3d:a4:94:
81:19:a8:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 08:26:08 2024 by rpki-client on console-fra.rpki-client.org