Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/NIg6t5nxQCjltTdQbir4eESQQcU.cer
File: NIg6t5nxQCjltTdQbir4eESQQcU.cer (raw, json)
Hash identifier: AvJnXyXuEKuTyV4R5NY+FLwGGsgLp2995whDkUgoDZ4=
Subject key identifier: 34:88:3A:B7:99:F1:40:28:E5:B5:37:50:6E:2A:F8:78:44:90:41:C5
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018F059431ECF8BDB0D1AB6E373C09E797D5
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/87/f4de11-5239-4ec5-81e6-2648fe9cc020/1/NIg6t5nxQCjltTdQbir4eESQQcU.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/87/f4de11-5239-4ec5-81e6-2648fe9cc020/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 22 Apr 2024 11:32:29 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 203084
IP: 185.145.144.0/22
IP: 2a03:aa60::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 23 May 2024 14:15:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:05:94:31:ec:f8:bd:b0:d1:ab:6e:37:3c:09:e7:97:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Apr 22 11:32:29 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=34883ab799f14028e5b537506e2af878449041c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:77:a8:85:ab:d7:12:13:76:cb:2d:c2:c6:4a:
b2:f5:e4:a3:de:28:2c:3a:05:b9:89:00:b1:7c:03:
9f:07:12:e2:e8:5c:7a:dd:cd:9a:6f:d1:f0:24:a2:
32:61:75:a4:32:f4:f8:38:94:f6:a1:fe:79:45:fb:
b5:dc:39:ce:db:73:35:6d:f6:04:a4:d7:1b:0b:53:
f0:61:3c:dd:58:c4:28:52:bb:9a:b3:f2:65:b6:ed:
4b:57:74:35:11:f9:5f:a6:32:09:20:61:f7:7c:c7:
9c:f3:74:5a:99:a4:91:fc:ee:dd:3f:a4:f4:c8:ef:
e8:28:74:9c:83:c8:b9:51:b5:04:7f:e3:b6:f7:97:
a1:1c:8c:c4:4e:82:53:f6:73:42:15:75:23:45:04:
88:4e:f6:73:82:63:d9:d5:19:7c:a7:77:98:a6:a8:
42:fc:8f:88:ae:93:61:5f:60:ee:0f:c7:67:f5:6f:
4a:05:00:d5:e2:8a:70:f8:f7:72:62:6d:ef:36:08:
14:6c:ab:56:5a:a3:05:e0:d0:e3:25:9b:f0:d0:ce:
5e:17:e4:a6:c6:51:75:bb:17:32:d1:c3:ec:6a:11:
b2:24:a1:6b:49:7c:5d:5d:a5:69:11:26:56:63:5b:
bf:e1:c6:59:39:fa:86:2e:3e:32:e8:ce:e6:59:e6:
b8:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:88:3A:B7:99:F1:40:28:E5:B5:37:50:6E:2A:F8:78:44:90:41:C5
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/f4de11-5239-4ec5-81e6-2648fe9cc020/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/f4de11-5239-4ec5-81e6-2648fe9cc020/1/NIg6t5nxQCjltTdQbir4eESQQcU.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.145.144.0/22
IPv6:
2a03:aa60::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
203084
Signature Algorithm: sha256WithRSAEncryption
1a:7f:15:68:4a:4e:8c:c2:8b:ff:f3:b4:57:82:05:34:03:a0:
45:f1:8c:7b:82:73:22:0c:df:8a:7d:9c:5b:52:56:15:5e:a1:
40:64:12:e6:42:30:16:50:58:63:22:36:da:e3:a8:e0:3d:4b:
fc:4f:e7:6d:14:d4:cb:1b:54:b7:11:ad:62:6e:b2:2e:82:04:
a9:99:aa:9e:f9:13:a4:e3:39:10:53:36:ec:fc:ed:50:13:5a:
22:77:b3:64:4d:43:52:f3:20:2c:82:5b:63:41:83:73:ab:31:
b0:23:d2:52:e1:f2:58:5a:0c:50:94:b8:53:f7:b0:8c:60:42:
b0:19:c3:02:88:ec:e0:49:37:b4:83:31:62:68:af:be:16:b1:
27:98:cf:b9:44:d3:c6:a9:c2:f0:63:15:71:33:22:dc:72:e1:
1a:90:a7:11:b6:1d:12:05:df:24:36:52:1e:d1:f9:8c:b3:fa:
67:e3:4c:b0:c3:67:c3:32:a3:18:ab:cf:8a:de:1c:f3:58:7d:
0b:77:eb:2b:51:96:9e:86:a9:f6:ae:13:db:86:6c:f6:99:35:
84:90:f8:98:4c:58:01:1d:89:c2:fd:e5:a2:0d:2a:bd:7b:33:
c6:96:ab:50:d6:13:55:01:84:22:22:a7:36:cc:92:40:44:dd:
d3:92:95:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 23 00:27:23 2024 by rpki-client on console-ams.rpki-client.org