Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/yoFg7-OfGjB3_dL68ipkgEtUE4I.cer
File: yoFg7-OfGjB3_dL68ipkgEtUE4I.cer (raw, json)
Hash identifier: NK4pM1w6vPZPFOi2sekdRlkN/PpJjGFYh1XOPJ2dnB8=
Subject key identifier: CA:81:60:EF:E3:9F:1A:30:77:FD:D2:FA:F2:2A:64:80:4B:54:13:82
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC86F0028E57A7BF79D862C0EF7DF50D5
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/9a/d25015-7d24-4ad5-a2c1-ac4e28c2c5b6/1/yoFg7-OfGjB3_dL68ipkgEtUE4I.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/9a/d25015-7d24-4ad5-a2c1-ac4e28c2c5b6/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 04:29:26 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 56503
IP: 91.106.64.0/19
IP: 185.26.232.0/22
IP: 185.103.244.0 -- 185.103.251.255
IP: 185.104.232.0/22
IP: 185.104.240.0/22
IP: 185.106.136.0/22
IP: 185.106.144.0/22
IP: 185.107.28.0/22
IP: 185.108.164.0/22
IP: 2a04:1380::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:00:28:e5:7a:7b:f7:9d:86:2c:0e:f7:df:50:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 04:29:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ca8160efe39f1a3077fdd2faf22a64804b541382
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:76:3a:3d:02:f2:f1:80:8f:27:81:9c:b6:f4:
dd:5f:aa:06:1e:33:fe:4c:88:9d:c0:a9:db:33:b4:
5a:c4:51:9f:43:7c:a2:8c:b0:ef:94:69:50:d9:03:
85:7b:e9:51:fa:97:bf:5b:b7:ea:c5:d4:61:fa:f0:
7c:e9:16:f8:02:d4:49:d6:1e:9b:be:4a:4a:2d:9c:
b1:93:df:e1:57:dc:2f:b6:05:2d:c9:99:d5:da:f7:
aa:ac:5f:41:76:c4:5b:1a:f3:a3:35:85:ef:26:79:
ac:db:d2:1d:4e:0b:b6:fb:2b:e4:39:67:ba:a1:d8:
22:43:bc:21:92:4c:5c:88:bc:f5:f9:9b:64:57:c8:
11:65:40:03:b4:ad:4f:62:7b:4e:a4:26:ef:43:5b:
09:06:90:d8:c1:ef:97:ce:e8:37:38:d4:3d:d0:4e:
93:73:b6:f5:96:10:13:b4:bb:37:a3:99:ed:e7:25:
b1:d2:8d:88:69:92:f9:32:5a:56:97:81:91:0e:1c:
c7:87:f6:a2:d1:f6:ef:bf:bf:00:50:e6:85:7e:59:
70:b0:be:2c:04:21:f0:44:c3:73:2b:18:c1:2d:2a:
5e:06:e4:d5:86:5c:56:82:40:3e:90:26:e6:0a:3a:
ff:8f:49:67:1a:1c:16:29:6e:63:9d:86:9e:b6:bb:
3e:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:81:60:EF:E3:9F:1A:30:77:FD:D2:FA:F2:2A:64:80:4B:54:13:82
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/d25015-7d24-4ad5-a2c1-ac4e28c2c5b6/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/d25015-7d24-4ad5-a2c1-ac4e28c2c5b6/1/yoFg7-OfGjB3_dL68ipkgEtUE4I.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.106.64.0/19
185.26.232.0/22
185.103.244.0-185.103.251.255
185.104.232.0/22
185.104.240.0/22
185.106.136.0/22
185.106.144.0/22
185.107.28.0/22
185.108.164.0/22
IPv6:
2a04:1380::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
56503
Signature Algorithm: sha256WithRSAEncryption
19:d9:19:a3:1b:df:cc:9c:eb:af:3e:fc:af:c0:ac:cd:39:f3:
9a:eb:91:89:f8:03:6f:ec:99:a5:ae:68:3c:10:fe:11:07:97:
3f:8d:da:2f:43:23:33:f6:4b:be:b4:f0:06:cd:c9:28:b6:50:
d4:9d:43:d3:b5:0b:4d:da:17:b6:b7:06:0a:97:c9:b1:8a:75:
ab:b1:6a:d7:f8:2c:55:7e:61:7d:b9:2d:37:4e:55:3e:63:81:
55:87:93:2d:f7:d3:7b:0f:9c:e9:44:ff:fc:ee:8e:34:7a:de:
3d:86:95:d7:bb:bb:71:fd:c5:f3:b9:89:ed:b9:be:0b:d7:c5:
58:bc:82:1d:ea:69:1a:d0:da:74:ce:bb:cd:bc:e6:83:fa:b0:
a6:05:de:45:7e:53:ad:32:33:99:6b:62:8c:c8:7e:d3:42:6c:
2e:0d:f3:63:a7:fb:29:7e:86:e6:c3:6a:97:47:ac:5d:69:ac:
27:4f:59:92:ef:37:ee:59:01:a4:5d:dd:8f:b0:90:bc:34:21:
8e:aa:fc:82:a8:b2:a2:0a:26:8a:d8:04:67:5f:7d:fe:5a:eb:
2e:1a:d8:8d:f2:b9:26:5b:98:e4:c4:06:a6:84:c4:69:9c:c1:
a5:97:65:5f:db:5c:2b:eb:07:40:70:79:74:1d:49:9d:d5:ef:
ed:52:6b:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 03:51:48 2024 by rpki-client on console-fra.rpki-client.org