Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2rdA9mZfmYP1QGHcoWUCYa1vITg.cer
File: 2rdA9mZfmYP1QGHcoWUCYa1vITg.cer (raw, json)
Hash identifier: Iu687M3GbeWdhmCCGtNa2IfkLpG40mjy/LOMaoZe5eM=
Subject key identifier: DA:B7:40:F6:66:5F:99:83:F5:40:61:DC:A1:65:02:61:AD:6F:21:38
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC42551484A1FD456D88599747AA74A70
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/65/135cf4-086f-4516-a3eb-1b7c92a61df6/1/2rdA9mZfmYP1QGHcoWUCYa1vITg.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/65/135cf4-086f-4516-a3eb-1b7c92a61df6/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 08:30:29 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 9093
IP: 185.100.16.0/22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 25 Apr 2024 01:58:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:25:51:48:4a:1f:d4:56:d8:85:99:74:7a:a7:4a:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 08:30:29 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=dab740f6665f9983f54061dca1650261ad6f2138
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:6f:fe:5a:b0:ed:77:7d:31:6c:78:b0:72:b5:
51:89:4f:e1:eb:f4:00:62:43:d6:1e:24:96:39:3a:
7c:68:9e:e1:13:df:4c:48:ad:2e:eb:24:33:32:16:
56:f1:94:a9:c3:37:56:90:86:3e:8e:43:41:45:c0:
8d:31:9a:53:35:ad:f9:1a:13:60:9c:8d:ff:90:d3:
ce:58:ff:bf:ac:90:f3:73:b0:3a:df:84:5e:9a:e4:
9a:84:cf:fa:65:76:7f:12:1c:8b:fe:e5:ed:04:2a:
34:cd:26:ec:b1:b0:b4:a5:90:0d:cd:e4:cc:9b:c3:
df:7b:55:55:28:5a:e7:dc:16:e3:82:4b:20:4d:18:
3f:68:5e:1b:d1:20:92:e1:80:8a:4b:5b:16:12:ec:
35:60:35:df:fc:34:7a:f8:5e:1e:2b:42:17:58:b5:
de:4b:b1:33:60:a6:17:38:ee:15:d5:2f:6f:25:b7:
41:d2:f7:2f:28:cd:9c:bf:7f:e1:6e:03:c2:63:dd:
3b:4c:3a:e2:55:d0:b7:95:30:a0:a2:1c:7e:a9:f5:
0c:d8:54:6e:a3:bc:06:eb:e6:da:e8:9a:43:00:97:
ee:87:4d:73:12:1e:67:81:a8:eb:d5:58:f7:1f:48:
82:b4:af:c6:15:22:fa:8d:53:b4:2c:b5:6b:8b:2b:
91:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:B7:40:F6:66:5F:99:83:F5:40:61:DC:A1:65:02:61:AD:6F:21:38
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/135cf4-086f-4516-a3eb-1b7c92a61df6/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/135cf4-086f-4516-a3eb-1b7c92a61df6/1/2rdA9mZfmYP1QGHcoWUCYa1vITg.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.100.16.0/22
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
9093
Signature Algorithm: sha256WithRSAEncryption
98:59:a4:be:c3:c9:a3:56:cb:98:e3:57:c5:02:c1:5f:32:8d:
16:0f:bc:48:22:2d:ea:06:52:e9:15:d3:85:c7:71:62:77:3b:
02:27:69:f0:e8:ae:3a:44:4a:5c:8e:5a:c6:10:c8:36:dc:b2:
cb:41:9d:85:d8:b1:61:5d:f6:d5:cb:75:82:3a:85:e6:1d:b8:
0f:6a:bd:51:54:21:63:2f:60:5e:de:ed:26:40:5d:22:31:bf:
67:8f:f5:db:6a:f9:67:f3:ce:9c:70:e0:19:1e:a6:2d:2d:d2:
c7:3d:48:2e:7f:26:9f:23:73:28:8e:ef:01:4f:5a:d9:ba:40:
ae:39:92:3b:5a:3e:cd:3e:50:bf:08:bf:9e:c7:b3:61:85:f3:
aa:54:29:34:7f:ff:7e:8e:ad:d0:fe:c1:9b:62:17:83:c0:3c:
80:b3:02:08:8b:3a:d3:2c:65:da:8e:ac:57:62:38:4b:55:81:
d2:67:9e:2a:c8:dd:8f:94:74:81:e7:96:b7:ac:f3:fe:27:c0:
fb:d1:e8:2b:4d:07:85:d2:39:4e:3f:c4:b6:3a:e5:7f:c4:3e:
79:a1:3c:34:3d:0c:5a:53:0a:98:a3:d6:99:c7:39:95:00:64:
f4:b7:c9:d8:ea:aa:da:28:ae:c6:0e:21:3e:4d:1e:5c:bb:8f:
ee:7c:af:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 24 03:05:39 2024 by rpki-client on console-fra.rpki-client.org