Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1-9g-_dmZb4x15_QRTkZuv4NpaOo.cer
File: 1-9g-_dmZb4x15_QRTkZuv4NpaOo.cer (raw, json)
Hash identifier: S9YFlWW2Xj/w6b28saPH8l+ixsQvaqtElu5QQK+Rm58=
Subject key identifier: FB:D8:3E:FD:D9:99:6F:8C:75:E7:F4:11:4E:46:6E:BF:83:69:68:EA
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC9BC310018ED821C7E7C71A3087906EF
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/2c/aa06a5-7ef6-4bc9-b0a0-2fa839017d75/1/1-9g-_dmZb4x15_QRTkZuv4NpaOo.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/2c/aa06a5-7ef6-4bc9-b0a0-2fa839017d75/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 10:33:22 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 28854
IP: 80.84.32.0/20
IP: 88.206.128.0/17
IP: 185.60.128.0/22
IP: 2a04:f40::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 24 Apr 2024 17:00:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:31:00:18:ed:82:1c:7e:7c:71:a3:08:79:06:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 10:33:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fbd83efdd9996f8c75e7f4114e466ebf836968ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:83:d1:da:af:52:5f:8b:62:d2:b4:73:1f:6d:
2d:a5:ff:51:fd:89:7f:8d:6d:8d:5c:02:76:68:19:
44:15:5e:57:7d:49:08:a5:a8:dc:a5:34:cc:30:3d:
28:34:34:5f:f1:25:c6:18:1e:ab:0d:1b:78:68:e7:
f2:cf:33:bf:b5:c7:e6:3d:11:d5:a4:71:b8:53:5e:
d1:17:7a:2d:69:b0:b5:0f:70:56:f3:08:ec:66:68:
04:ec:6a:e7:24:6a:7c:d1:87:19:fc:a7:3d:30:f7:
35:61:e1:34:2c:de:17:0f:62:bb:9c:00:cd:a2:0c:
59:d0:e8:c5:53:56:0a:12:11:7b:cb:46:e3:b7:02:
a6:e1:ee:e3:40:c3:26:72:2a:02:5b:06:b4:4e:bb:
54:e6:7a:08:5d:e0:a9:a0:32:8a:ea:6f:31:07:25:
a6:2f:80:dc:4c:4c:3d:f3:a7:c8:a3:42:ab:c6:a0:
90:b3:16:be:bf:0b:d3:01:58:2b:83:38:cd:4a:77:
62:4f:08:de:92:d3:9f:12:f5:ae:1f:2c:5c:ca:35:
92:e7:49:2b:da:57:37:0c:23:19:8c:f0:03:b8:d7:
87:35:e9:26:9f:b7:7f:91:bf:91:ad:18:95:89:ce:
8a:84:60:1c:66:93:6f:54:ce:56:23:cd:9a:87:bf:
5a:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:D8:3E:FD:D9:99:6F:8C:75:E7:F4:11:4E:46:6E:BF:83:69:68:EA
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/aa06a5-7ef6-4bc9-b0a0-2fa839017d75/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/aa06a5-7ef6-4bc9-b0a0-2fa839017d75/1/1-9g-_dmZb4x15_QRTkZuv4NpaOo.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.84.32.0/20
88.206.128.0/17
185.60.128.0/22
IPv6:
2a04:f40::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
28854
Signature Algorithm: sha256WithRSAEncryption
90:6a:ec:a4:aa:8f:f0:8f:36:ff:41:98:75:d6:3a:74:e6:f0:
15:8d:d2:fb:dc:75:d8:18:6f:e5:ae:38:6f:b4:6d:c1:c1:0b:
3b:a4:88:cf:63:ce:c5:45:0a:ce:e7:fe:b6:15:f7:81:71:57:
43:c3:16:a9:e7:13:09:3d:5f:a8:eb:fa:31:23:c7:20:b8:59:
84:d3:55:2f:4d:7e:97:d6:35:cd:81:85:8d:46:dd:52:43:1e:
16:40:29:c9:97:2d:39:9f:bb:d2:24:71:01:97:9b:85:d2:fc:
09:a0:8a:6d:e2:9b:53:ea:22:ea:42:97:2b:ac:d4:f3:0c:0b:
35:21:ab:08:f6:53:3b:d4:2a:2e:47:40:42:55:08:d0:1d:db:
98:7c:7e:e9:4f:0c:85:7d:7a:28:b4:70:96:d7:f3:fc:6e:73:
90:da:93:69:10:73:a7:f4:d4:d2:53:5c:61:cf:18:d4:38:36:
df:8c:9c:0c:15:b7:1c:df:26:15:96:b5:11:71:aa:bd:c2:c7:
9c:31:e9:bd:ad:26:10:0f:51:b0:09:16:01:03:1d:a4:fe:8a:
a7:ac:17:bc:57:75:ca:40:ce:bf:03:71:bb:b4:cd:d2:53:76:
fa:97:f0:8f:08:c8:65:51:fb:e8:28:4b:40:00:cf:b9:9e:90:
f9:0c:62:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 23 23:48:58 2024 by rpki-client on console-ams.rpki-client.org