Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/z39cWYBZ4a5ZdsgeorgmaX7hmQY.cer
File: z39cWYBZ4a5ZdsgeorgmaX7hmQY.cer (raw, json)
Hash identifier: BsJlscna3YpampcEl8FvxxnIUTDAs55JZaubdp2Tb40=
Subject key identifier: CF:7F:5C:59:80:59:E1:AE:59:76:C8:1E:A2:B8:26:69:7E:E1:99:06
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018F5DC1745786F8C5CA469EC605AC7B0CC1
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/7d/ef9479-2994-449c-9d9c-e1dc69e333df/1/z39cWYBZ4a5ZdsgeorgmaX7hmQY.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/7d/ef9479-2994-449c-9d9c-e1dc69e333df/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 09 May 2024 14:28:30 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 214989
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 04 Jun 2024 14:36:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:5d:c1:74:57:86:f8:c5:ca:46:9e:c6:05:ac:7b:0c:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: May 9 14:28:30 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cf7f5c598059e1ae5976c81ea2b826697ee19906
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:c1:6b:ec:1b:cc:14:cc:28:bf:17:44:72:08:
fa:55:f0:ff:ec:e2:b3:76:f2:19:63:c9:a0:70:9d:
d3:c7:2c:b2:ac:d2:80:3c:de:94:47:81:dc:97:31:
3a:4e:17:8a:2a:19:b2:d9:51:5d:3a:69:9d:08:d7:
f9:cd:e1:60:8c:27:d8:a3:08:91:19:95:13:d1:b9:
08:99:b9:2d:0b:58:e0:37:0e:84:7b:9b:5c:bf:d5:
44:34:83:9a:7e:ee:29:4f:4c:24:4d:3c:61:37:8b:
ba:9a:4a:bb:54:04:cb:5a:8b:56:c7:55:bd:72:0c:
78:a8:04:6b:91:10:33:f0:bc:18:6b:62:71:06:aa:
6b:08:10:c2:8d:2e:d8:86:bb:b7:c9:fb:80:e6:78:
2f:3d:b1:a7:e9:60:87:ec:80:cc:03:b5:18:4f:2e:
8f:75:6c:cd:5a:ee:47:e0:be:cf:db:1e:ac:f3:71:
ce:e2:aa:04:c7:da:17:40:30:09:a9:f8:10:6b:a5:
94:aa:7e:82:67:cb:06:1f:d5:ac:ac:73:93:1b:ed:
20:eb:c0:a5:47:21:07:2c:d5:9b:b5:37:74:5b:41:
36:9d:1c:a4:df:2c:00:8c:64:3b:05:13:78:a5:d1:
0f:dd:30:ea:cc:db:04:27:45:97:39:24:01:43:51:
df:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:7F:5C:59:80:59:E1:AE:59:76:C8:1E:A2:B8:26:69:7E:E1:99:06
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/ef9479-2994-449c-9d9c-e1dc69e333df/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/ef9479-2994-449c-9d9c-e1dc69e333df/1/z39cWYBZ4a5ZdsgeorgmaX7hmQY.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
214989
Signature Algorithm: sha256WithRSAEncryption
95:b4:c8:de:60:d8:e9:36:ca:86:53:4d:c3:64:58:45:f7:8b:
42:72:90:1b:e5:63:02:74:3c:05:c7:9f:50:35:a8:d1:f9:70:
2c:87:7e:21:e4:46:cd:0a:55:e3:cc:2b:93:ec:e5:cb:81:03:
e5:02:89:92:c1:97:e9:ad:fd:70:12:c2:15:eb:92:1e:82:52:
8c:ef:29:19:53:0a:97:78:bf:74:7c:36:01:70:a5:c3:42:e8:
59:68:38:29:81:80:94:d8:72:75:f1:bf:37:98:85:5c:bb:80:
a1:7d:f0:8b:d8:82:e1:42:da:09:3f:6c:c4:da:6c:37:f4:62:
0c:68:d6:d2:20:79:f8:53:03:b1:77:81:d6:32:30:19:69:85:
9d:fb:fa:9b:13:f4:ef:b1:03:9b:00:5c:6b:5e:63:8a:81:53:
85:39:d9:1b:4a:44:a2:5e:8c:c0:eb:58:a1:9c:a8:a9:a9:03:
f4:dc:9b:17:f6:e3:35:35:1d:8e:5c:34:75:36:92:90:e8:fe:
cd:75:a1:91:26:9e:95:aa:b6:b9:7f:0f:b7:59:e7:29:21:a9:
72:59:1d:ea:9e:a0:94:01:cb:d6:52:80:f5:7b:74:2b:7b:4f:
92:3d:64:ca:ba:22:b8:82:5c:d2:6d:e5:ac:cf:de:2a:89:f9:
b1:fb:d7:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 3 21:12:58 2024 by rpki-client on console-fra.rpki-client.org