Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ywyjSKyJHDNtjHlFpb1bMyXrXws.cer
File: ywyjSKyJHDNtjHlFpb1bMyXrXws.cer (raw, json)
Hash identifier: oeJ8Ms89XUx4HROtzrOhBh7WAOAH36IomAZ4n3m6HrQ=
Subject key identifier: CB:0C:A3:48:AC:89:1C:33:6D:8C:79:45:A5:BD:5B:33:25:EB:5F:0B
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018F149CEAC0820D594BF01188CFE799ED06
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/d9/ef61d6-05d1-4fb2-a6ea-425232fd5643/1/ywyjSKyJHDNtjHlFpb1bMyXrXws.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/d9/ef61d6-05d1-4fb2-a6ea-425232fd5643/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 25 Apr 2024 09:36:19 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 15674
AS: 43646
IP: 91.197.164.0/22
IP: 91.209.15.0/24
IP: 94.247.232.0/21
IP: 95.81.128.0/18
IP: 185.215.136.0/22
IP: 185.228.156.0/22
IP: 185.241.96.0/22
IP: 193.201.103.0/24
IP: 195.35.106.0/24
IP: 213.205.96.0/19
IP: 217.71.208.0/21
IP: 2a00:1080::/32
IP: 2a02:3e8::/32
IP: 2a02:e10::/32
IP: 2a0c:a080::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 29 May 2024 23:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:14:9c:ea:c0:82:0d:59:4b:f0:11:88:cf:e7:99:ed:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Apr 25 09:36:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cb0ca348ac891c336d8c7945a5bd5b3325eb5f0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:81:db:fb:ae:2f:66:1e:13:b1:94:86:8b:e2:
c4:d6:41:d6:40:ef:dd:ee:24:69:76:af:df:87:4c:
06:28:bd:db:67:99:a2:d6:4e:ed:ee:43:3c:d6:60:
43:bf:ee:f6:4a:f1:f4:54:0b:d1:ba:a3:12:0b:65:
4f:85:e5:77:86:bb:67:1d:dc:85:d2:80:09:71:77:
be:d9:be:6c:80:5e:ec:9c:f7:e7:1e:c1:0c:e0:21:
c6:54:8e:62:ff:f7:3d:c6:5d:1b:4a:d3:d9:e0:65:
02:57:71:78:d4:95:35:27:6c:e0:97:c6:41:5e:8f:
cb:c7:80:11:3b:cc:ed:4e:d0:e9:7b:b1:bf:9e:21:
7d:a2:3f:6e:b3:17:b7:c0:16:4b:6a:0f:07:c9:27:
f7:f2:6b:fd:17:60:5b:75:4a:aa:b6:c0:80:8a:8b:
cc:71:ee:d4:5f:6b:60:4c:ea:0d:27:d6:5c:e6:24:
d3:6a:06:8d:41:dc:29:f3:2b:ac:f1:b1:18:95:f5:
5f:44:72:a3:c3:a8:eb:8e:02:68:c0:58:9b:68:f5:
3b:c9:d6:fb:db:ca:cd:41:e6:10:48:48:68:dc:5e:
83:fa:b7:b3:52:93:dd:39:24:df:a1:77:2e:f2:75:
8b:f8:56:d6:77:e3:00:0a:d3:ec:bb:08:6a:a3:14:
38:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:0C:A3:48:AC:89:1C:33:6D:8C:79:45:A5:BD:5B:33:25:EB:5F:0B
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/ef61d6-05d1-4fb2-a6ea-425232fd5643/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/ef61d6-05d1-4fb2-a6ea-425232fd5643/1/ywyjSKyJHDNtjHlFpb1bMyXrXws.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.197.164.0/22
91.209.15.0/24
94.247.232.0/21
95.81.128.0/18
185.215.136.0/22
185.228.156.0/22
185.241.96.0/22
193.201.103.0/24
195.35.106.0/24
213.205.96.0/19
217.71.208.0/21
IPv6:
2a00:1080::/32
2a02:3e8::/32
2a02:e10::/32
2a0c:a080::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
15674
43646
Signature Algorithm: sha256WithRSAEncryption
6c:fd:3d:65:19:7b:96:dd:67:6a:ad:49:10:31:3b:2a:59:3b:
32:d2:14:ec:bd:55:28:45:0c:10:5a:c5:d8:c0:42:39:f1:53:
22:7e:2b:e0:d1:7e:81:41:34:d4:22:47:f0:f7:e7:ce:23:c0:
3e:46:30:98:cc:4a:28:b4:7d:d0:68:21:07:5a:76:c1:c5:ee:
72:4e:61:43:4e:61:d9:49:4b:41:e7:b9:ab:61:33:13:9b:0c:
d5:cb:3a:90:40:95:1e:ef:61:12:ae:4b:75:b0:3e:25:e8:2f:
b5:f6:9d:24:56:19:6b:ad:9c:30:b8:3c:b8:9f:bf:26:0a:79:
c3:65:37:c2:e1:35:56:1c:db:5d:33:e8:97:96:e3:05:80:bf:
0f:77:ad:fd:e9:f6:cc:a4:78:7b:35:2d:9b:a3:6f:74:4a:b3:
b7:86:ce:eb:18:9b:13:8a:b3:85:dd:e0:15:ca:ac:91:87:7d:
95:41:45:fd:79:dc:74:bd:2c:68:05:4f:de:ae:4b:64:ad:ae:
67:d1:75:d3:63:11:6e:a0:b5:30:5e:c8:53:c5:0d:4a:52:a3:
44:c1:8f:19:52:34:85:94:0b:54:c4:1f:4b:f2:a1:4a:c3:42:
bb:03:93:6c:59:63:39:ac:92:40:71:45:d0:ca:dc:67:ba:00:
c8:5d:09:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 29 08:37:11 2024 by rpki-client on console-fra.rpki-client.org