Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1x--OCD28Y6hszNtqfByuP0qDfI.cer
File: 1x--OCD28Y6hszNtqfByuP0qDfI.cer (raw, json)
Hash identifier: G8EI5gIeL3BQPTC6iSJ4IPkefSV5yOcNHZN3Ie3AOGY=
Subject key identifier: D7:1F:BE:38:20:F6:F1:8E:A1:B3:33:6D:A9:F0:72:B8:FD:2A:0D:F2
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC64AEB7E222A0F017574B526A013B592
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/cc/2f3904-3898-42ed-8f40-97345ca17d7f/1/1x--OCD28Y6hszNtqfByuP0qDfI.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/cc/2f3904-3898-42ed-8f40-97345ca17d7f/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 18:30:47 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 213199
IP: 2001:67c:285c::/48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 21 Apr 2024 02:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4a:eb:7e:22:2a:0f:01:75:74:b5:26:a0:13:b5:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 18:30:47 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d71fbe3820f6f18ea1b3336da9f072b8fd2a0df2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:b6:fa:93:57:c9:ad:b8:65:90:36:5d:a7:94:
d9:82:ef:cd:7a:d7:05:91:f7:a6:c9:34:0c:67:62:
66:fd:c9:c5:9e:0b:e4:6b:3e:d2:15:d1:8a:55:01:
49:8a:c8:bc:e5:4f:fd:df:ea:c9:49:23:49:cf:03:
45:94:98:f2:a6:1f:f3:ea:33:87:f0:05:7c:99:d6:
f2:ae:e2:ad:6b:09:f7:08:55:12:a3:0e:1d:d1:a8:
f1:e6:4e:59:63:03:3a:b7:ba:ec:17:d5:a3:03:1f:
95:93:b0:c4:77:46:e1:f7:0e:02:b2:9c:ac:73:2d:
68:8a:08:68:d7:61:5a:b4:d7:de:b9:3c:e9:43:a3:
39:91:e7:62:c5:0d:e7:b4:b4:6a:36:8e:d9:92:3b:
88:79:58:34:dd:da:77:a5:6e:7f:f5:2e:68:0b:b5:
42:b2:a1:f6:a9:e7:18:28:3e:79:56:72:40:b8:52:
ee:d2:9a:ec:e8:5a:86:91:e0:34:56:4f:52:d5:cf:
39:58:fc:4d:4f:a0:05:e8:e5:17:e3:ef:8a:35:15:
fa:39:26:c1:20:61:cc:02:74:a7:33:4c:0e:dc:9c:
bf:91:c7:48:1e:70:18:ff:4c:ce:4e:27:54:74:f1:
8c:7b:14:f1:ac:c4:60:e7:08:72:c8:5f:2c:64:b8:
7a:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:1F:BE:38:20:F6:F1:8E:A1:B3:33:6D:A9:F0:72:B8:FD:2A:0D:F2
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/2f3904-3898-42ed-8f40-97345ca17d7f/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/2f3904-3898-42ed-8f40-97345ca17d7f/1/1x--OCD28Y6hszNtqfByuP0qDfI.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:285c::/48
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
213199
Signature Algorithm: sha256WithRSAEncryption
46:a6:fd:5e:93:fb:03:ce:c1:94:62:51:cc:d2:2c:3b:86:e6:
0e:e2:4e:13:b3:a8:2d:5b:db:9f:cd:dd:a8:ce:2b:20:3e:05:
61:8a:b8:81:7f:52:00:73:5c:fe:a4:ae:2b:7b:17:57:0d:95:
de:50:79:ae:5e:4e:ea:23:d3:49:c0:4c:c5:47:e2:c8:3c:0f:
30:c4:79:a7:44:2f:8f:2d:03:a6:05:9f:c8:fc:56:7f:ee:4f:
ce:25:fe:ca:a6:d9:c3:ee:68:e3:22:7e:f5:2a:fc:c4:f0:ee:
16:d4:66:64:28:32:e6:ca:13:30:1d:61:65:bc:57:a7:39:59:
fe:ef:ee:7f:f8:df:4c:23:1d:b6:38:7e:bb:37:34:1f:51:bc:
7d:c5:d7:a4:80:f9:2e:49:2c:01:1a:42:a0:ad:35:c6:0c:0c:
df:70:c0:8e:a3:23:77:b0:dd:54:83:8c:16:79:b8:69:5a:3e:
29:c8:48:bf:37:8d:cc:b5:04:86:94:7b:70:ad:ce:da:5d:34:
18:9d:2a:31:db:5a:2e:dd:57:a4:c9:2d:84:69:02:39:72:b3:
a1:bc:42:9c:cd:e1:07:d3:a0:b1:02:b8:2f:8a:a7:2d:a1:61:
33:79:7c:98:35:97:7a:e9:e5:00:42:1d:ad:4d:f2:12:97:6a:
e3:b8:a8:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 20 09:31:23 2024 by rpki-client on console-fra.rpki-client.org