Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2xqlqI_mUM51-73mL66AzGIz3Ms.cer
File: 2xqlqI_mUM51-73mL66AzGIz3Ms.cer (raw, json)
Hash identifier: Z2U2IIOKSeRcDIVhK0vSvYfyYXZUTXfIWbxIuLXgYZA=
Subject key identifier: DB:1A:A5:A8:8F:E6:50:CE:75:FB:BD:E6:2F:AE:80:CC:62:33:DC:CB
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC8DEA729CB5B6CE8ECF94A155A528119
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/37/7db3b8-9863-49bb-90f0-d5bdcb630177/1/2xqlqI_mUM51-73mL66AzGIz3Ms.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/37/7db3b8-9863-49bb-90f0-d5bdcb630177/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 06:31:24 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 60240
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Dec 2024 06:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:de:a7:29:cb:5b:6c:e8:ec:f9:4a:15:5a:52:81:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 06:31:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=db1aa5a88fe650ce75fbbde62fae80cc6233dccb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:78:da:3b:4e:59:45:9b:82:c0:54:e0:b3:2e:
cc:f5:a2:78:91:7f:ad:52:10:82:10:0f:6b:81:d4:
cd:86:5f:61:b8:55:8b:eb:49:39:99:8e:0d:45:0d:
17:c9:9e:3d:5a:7c:be:c2:f1:78:40:41:f9:c9:54:
d7:a6:83:22:b1:40:88:bd:f4:9c:9a:78:1c:d8:67:
9c:0f:b7:37:c6:aa:0b:b9:ab:5a:a3:43:02:d5:8c:
c0:74:e8:cd:f7:6a:e6:71:99:5e:a9:ff:4c:69:dd:
75:14:8f:e6:00:92:02:38:00:02:93:28:b5:bb:6b:
c5:e9:43:4d:7a:ce:e1:19:f7:66:db:1d:38:8f:02:
31:1c:45:85:ec:ef:5c:a9:52:67:28:8b:c0:fb:9c:
b2:5f:77:da:fa:e4:5d:f9:5a:3d:c7:aa:be:67:3f:
da:dd:f5:57:eb:80:cc:6b:6a:18:0b:80:51:5e:ba:
c4:b8:6e:c6:00:eb:5c:a7:54:0f:24:5b:61:c2:d9:
e8:b9:f5:64:be:c6:96:4b:75:fc:38:53:98:10:79:
be:d4:96:b5:47:5b:07:a1:da:ca:98:63:c8:95:cb:
b9:5f:7e:27:b7:c4:91:3a:2a:db:db:f8:48:67:5b:
51:3f:43:ef:f3:90:88:08:f3:81:82:f9:e8:24:2e:
8c:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:1A:A5:A8:8F:E6:50:CE:75:FB:BD:E6:2F:AE:80:CC:62:33:DC:CB
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/7db3b8-9863-49bb-90f0-d5bdcb630177/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/7db3b8-9863-49bb-90f0-d5bdcb630177/1/2xqlqI_mUM51-73mL66AzGIz3Ms.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
60240
Signature Algorithm: sha256WithRSAEncryption
11:b5:5e:4a:b9:1f:84:dc:cb:5c:ea:5b:09:13:b0:21:df:b2:
9e:b2:4f:77:90:e3:04:92:81:f1:a0:b4:1d:a2:f0:f2:a3:a4:
b5:e7:07:af:37:9a:4e:7c:35:6d:e6:fb:ac:67:ed:9f:87:9e:
5d:0e:0a:c7:93:78:eb:d9:d2:39:c3:64:be:f6:90:69:b8:af:
db:fa:f7:6d:ed:b5:e4:f5:6f:dd:b4:ab:bf:91:90:53:86:1b:
9f:0a:6e:87:5e:4b:b0:cd:4b:8f:00:8b:c8:f2:2f:21:5a:ea:
69:a5:b0:f3:18:3c:ab:30:0c:83:68:68:35:d5:39:13:fa:c6:
b9:64:d1:31:72:b7:bd:8f:3e:47:8e:bb:6c:b0:21:c8:cc:16:
a4:e5:73:f4:51:02:8a:67:c8:b6:1f:0d:dd:78:52:28:8e:70:
4b:02:97:9a:47:3b:be:ba:82:2a:af:37:7b:66:f6:3f:95:c7:
bf:e7:ce:5e:4a:95:c2:bc:31:c6:ec:27:91:67:4c:fd:3b:2c:
5f:f3:3b:f6:37:a1:bf:47:28:ba:0d:5d:b9:8b:c6:5d:8a:76:
75:4e:2b:ff:15:f2:b8:06:b6:3f:79:e7:94:96:ae:95:90:05:
64:c1:1e:12:fd:9c:42:a7:ea:10:05:5e:01:bd:ac:07:91:00:
c2:dd:16:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Dec 26 17:16:45 2024 by rpki-client on console-ams.rpki-client.org