Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0VK0wfXUhO78KxWX9FUAOrZUsFU.cer
File: 0VK0wfXUhO78KxWX9FUAOrZUsFU.cer (raw, json)
Hash identifier: 44etzxk6Rw35CmLXkxgbaeEDsX2ahT6MCzvZDVkjTDY=
Subject key identifier: D1:52:B4:C1:F5:D4:84:EE:FC:2B:15:97:F4:55:00:3A:B6:54:B0:55
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC86F2EF5628880F1E6EDD44A0CCFA028
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/1d/379e32-02e0-4339-882b-2f75195216b9/1/0VK0wfXUhO78KxWX9FUAOrZUsFU.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/1d/379e32-02e0-4339-882b-2f75195216b9/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 04:29:38 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 209721
IP: 194.26.120.0/21
IP: 2001:67c:2e0c::/48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 21 Apr 2024 00:45:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:2e:f5:62:88:80:f1:e6:ed:d4:4a:0c:cf:a0:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 04:29:38 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d152b4c1f5d484eefc2b1597f455003ab654b055
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:5d:db:4e:6f:b1:1d:4b:92:49:0f:b2:ea:09:
3d:0e:23:6c:57:07:fc:fc:f6:86:0a:ad:a8:30:a7:
34:2d:6e:89:85:28:17:1b:15:9c:7f:ee:76:18:04:
dc:c4:0b:f0:ac:85:06:01:ff:22:c0:37:43:75:8f:
10:e2:12:06:b9:40:35:6c:ae:3e:db:e7:75:03:fa:
75:f9:53:6e:75:04:20:fb:a0:fe:bb:a6:d7:b0:01:
e2:70:3c:41:93:ab:fd:bd:b7:01:ab:9c:25:31:b7:
b0:77:fd:4a:b9:57:54:1d:0b:71:e7:99:80:d7:8c:
f9:c8:39:dc:ff:cd:c0:bc:6e:9a:3c:e0:c2:a3:d5:
b4:ac:47:c7:01:35:11:a4:54:13:3e:ff:c5:9a:60:
af:15:e0:b4:0b:fd:1f:a9:b8:49:8b:de:c6:df:d3:
01:cd:74:0a:ff:d6:b4:6e:e9:61:d6:59:48:55:f1:
b7:e0:32:0a:f7:4e:7c:c4:1b:89:99:5d:75:1e:a8:
23:67:f5:c5:d5:9d:3b:17:08:34:ba:79:1b:a3:91:
60:0a:20:68:92:68:91:b0:2c:93:2a:ec:74:11:e1:
fb:de:56:0b:92:6d:e3:ae:dc:99:56:26:be:f7:2b:
a9:6e:f4:47:fe:86:07:21:4c:51:18:60:9b:2b:35:
61:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:52:B4:C1:F5:D4:84:EE:FC:2B:15:97:F4:55:00:3A:B6:54:B0:55
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/379e32-02e0-4339-882b-2f75195216b9/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/379e32-02e0-4339-882b-2f75195216b9/1/0VK0wfXUhO78KxWX9FUAOrZUsFU.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.26.120.0/21
IPv6:
2001:67c:2e0c::/48
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
209721
Signature Algorithm: sha256WithRSAEncryption
a3:52:db:49:d5:3e:2d:83:87:ef:59:7b:9f:c7:6d:03:dd:ac:
67:c9:c2:c0:6f:06:c8:f9:b5:20:44:28:7c:f8:75:85:2d:7f:
9a:90:ce:c5:d2:b5:ab:dd:9c:f2:b8:27:f7:66:40:52:a1:c6:
06:a6:b8:26:03:ea:df:49:ba:58:2a:07:48:88:89:04:e8:2a:
44:a5:c9:e0:ea:9a:ab:e6:17:0e:ff:d1:ca:80:d8:c6:76:f6:
37:cc:6b:08:55:59:11:36:8c:b3:e7:ea:b3:3b:6e:f7:d9:5d:
4b:87:6b:b1:a7:a5:9d:b6:2d:b1:6b:ea:00:89:30:32:bd:ee:
33:5d:d3:dc:e4:33:59:32:7d:a6:c0:93:06:6a:1a:bc:27:80:
ba:3c:a4:1f:b3:aa:54:83:de:9b:62:37:c2:b0:28:cd:8b:1f:
45:7c:cc:27:ba:44:99:99:74:a5:4f:ce:03:e7:99:9b:d9:92:
8c:94:b4:31:8b:2e:10:7d:ca:a5:4f:0c:71:7e:85:2b:06:3f:
26:31:71:94:26:ab:d6:29:eb:0e:8f:b3:7a:4d:2d:24:00:55:
c7:58:91:bd:d1:22:b3:6b:48:22:50:99:82:63:da:9b:30:69:
cb:ba:67:95:46:a5:ba:dd:29:ab:4f:da:e9:56:cf:51:e1:b8:
77:a9:77:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 20 02:57:30 2024 by rpki-client on console-ams.rpki-client.org