Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/xe6WP4Kg-whm1CVTszeFl9nz72g.cer
File: xe6WP4Kg-whm1CVTszeFl9nz72g.cer (raw, json)
Hash identifier: IU/PoZu1obvnepubVkD07e4cZeLYOSecOF0mywaTYSs=
Subject key identifier: C5:EE:96:3F:82:A0:FB:08:66:D4:25:53:B3:37:85:97:D9:F3:EF:68
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC49320482C27257766B4497B4196EB47
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/f1/83d246-740d-4b01-9020-db5aa577c3af/1/xe6WP4Kg-whm1CVTszeFl9nz72g.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/f1/83d246-740d-4b01-9020-db5aa577c3af/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 10:30:25 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 211814
IP: 185.225.199.0/24
IP: 2a0c:8380::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 15:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:93:20:48:2c:27:25:77:66:b4:49:7b:41:96:eb:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 10:30:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c5ee963f82a0fb0866d42553b3378597d9f3ef68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:2d:16:fb:69:61:a7:53:be:c1:b5:b1:4e:ac:
c4:b6:e5:36:4e:52:5f:33:0e:e6:de:31:8d:1b:e4:
bb:76:a0:69:b8:8e:23:3a:2b:ac:b7:fb:e6:5b:67:
70:84:42:37:35:55:65:86:1a:f7:d2:d7:b4:d8:02:
88:95:29:16:e2:dc:e9:20:03:97:31:16:f0:51:52:
e3:be:29:ec:e5:64:91:94:19:c5:9b:36:6f:5d:cb:
0a:48:9e:fc:74:6d:e0:bc:91:d1:f3:ca:cc:93:cc:
59:75:f5:cd:57:f1:08:d2:75:f1:e5:32:99:42:9c:
42:35:09:0f:da:54:2e:28:6b:b3:24:2b:59:90:c3:
59:8f:d6:35:2e:d9:24:14:99:66:37:0c:79:d8:09:
11:68:58:bc:ab:a3:90:21:5e:26:72:48:99:bb:94:
48:35:20:a0:28:81:fd:86:39:df:04:4b:61:86:98:
9b:06:5b:fa:19:f2:56:0f:10:42:65:1f:9d:63:71:
c7:39:4e:64:65:ed:5d:04:76:b1:35:35:b0:ee:f5:
0c:ab:26:a2:49:13:50:5d:83:93:03:d7:e2:13:d0:
f9:b4:65:b5:9c:27:2b:3a:07:2b:26:d9:26:e9:fc:
f2:a0:94:ce:b9:74:cf:22:8f:99:72:fc:0a:f3:4d:
13:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:EE:96:3F:82:A0:FB:08:66:D4:25:53:B3:37:85:97:D9:F3:EF:68
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/83d246-740d-4b01-9020-db5aa577c3af/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/83d246-740d-4b01-9020-db5aa577c3af/1/xe6WP4Kg-whm1CVTszeFl9nz72g.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.225.199.0/24
IPv6:
2a0c:8380::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
211814
Signature Algorithm: sha256WithRSAEncryption
61:a4:73:d6:1b:a4:24:de:3f:b6:1c:9f:47:e6:e0:50:55:f1:
4a:81:61:65:7f:d2:e4:f0:36:73:4c:9a:23:b7:6f:3f:95:dd:
1b:8c:2a:ab:84:31:d1:c7:01:b9:be:74:bc:04:6d:b7:ed:f8:
64:2d:90:eb:20:88:99:51:1f:f9:46:31:77:19:3b:93:8a:f7:
d8:38:67:d5:5b:d4:65:16:43:43:bc:cb:7d:7f:6f:6a:da:ff:
e9:43:d6:d2:92:24:a3:ec:35:7c:97:02:44:f0:83:07:6f:5c:
fe:2f:0f:ab:73:da:7c:b3:ad:ff:80:4f:00:07:29:3b:f4:b2:
47:37:e3:b6:15:89:cb:bf:88:02:7b:00:8b:4a:91:87:99:71:
a8:19:a8:2a:05:6a:43:8b:aa:09:61:ed:9b:14:d8:97:e2:e1:
54:91:e2:db:7c:f1:41:ff:c8:18:c1:26:60:3a:f1:2c:0a:af:
50:ee:84:ab:0c:af:5d:50:8f:35:62:37:3a:47:95:af:09:dc:
38:10:d9:c6:3b:a8:5c:c7:68:4a:e3:25:cf:bf:46:68:64:0e:
4f:fd:3f:d4:66:51:a4:03:0c:56:02:b4:29:77:eb:2b:74:45:
82:44:54:0d:c7:84:ed:49:27:f7:dc:be:65:56:d9:f9:82:da:
87:3f:8f:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 19:27:54 2024 by rpki-client on console-fra.rpki-client.org