Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34laPuIhG27i33IC8JpCZoDWYmk.cer
File: 34laPuIhG27i33IC8JpCZoDWYmk.cer (raw, json)
Hash identifier: 7onaEsS3eDOpBH/UViqQSxaCAVm5GB7I0wAxhdkEe8U=
Subject key identifier: DF:89:5A:3E:E2:21:1B:6E:E2:DF:72:02:F0:9A:42:66:80:D6:62:69
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018EE0ECD7D4FCF19AFF4F442D7933334ED9
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/10/1a72a7-277d-44f5-87de-70b2ebd51438/1/34laPuIhG27i33IC8JpCZoDWYmk.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/10/1a72a7-277d-44f5-87de-70b2ebd51438/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 15 Apr 2024 08:43:21 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 215102
IP: 2a14:3bc0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:e0:ec:d7:d4:fc:f1:9a:ff:4f:44:2d:79:33:33:4e:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Apr 15 08:43:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=df895a3ee2211b6ee2df7202f09a426680d66269
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:83:8e:7d:de:51:1b:9d:fb:7b:36:1d:60:af:
eb:4e:49:74:02:0c:6f:67:06:80:4b:43:5a:c4:7a:
73:94:a8:ce:ea:9e:1f:98:5c:b7:ee:a4:d8:ce:0a:
50:9d:d8:b7:bb:1f:8d:a5:69:1f:38:38:c2:3e:fc:
e7:24:85:1d:53:dd:67:ce:56:b7:6b:52:81:6d:da:
9f:b5:35:93:39:9d:b9:00:d7:fd:7e:bc:15:1b:08:
2a:4e:72:84:31:74:42:b2:97:1b:ff:c1:ad:96:90:
14:ac:9f:b6:67:6f:bc:6d:ef:7d:3c:67:29:04:ca:
28:75:15:5e:a7:8f:af:28:5a:50:78:46:33:59:04:
10:e5:c3:34:02:ba:bd:31:fc:34:3f:2f:ad:6b:84:
cf:2b:a0:ed:11:3d:f3:c6:14:60:78:67:0d:c5:20:
5a:d1:33:cc:72:f8:a8:c9:ef:ef:9a:e3:8b:e8:aa:
b9:35:58:94:84:ed:a0:e7:58:70:fa:bf:66:57:1e:
1d:94:57:bf:99:fe:43:6a:24:5f:8d:f9:d0:79:d8:
23:b5:8a:d9:dc:e3:c7:3f:cc:9e:1d:35:04:0b:d4:
e3:ea:1c:0c:40:53:f4:e2:d2:92:ba:b7:10:bd:2b:
b1:b4:ea:da:08:cd:6e:e1:e6:b2:9e:f0:77:2e:89:
03:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:89:5A:3E:E2:21:1B:6E:E2:DF:72:02:F0:9A:42:66:80:D6:62:69
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/1a72a7-277d-44f5-87de-70b2ebd51438/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/1a72a7-277d-44f5-87de-70b2ebd51438/1/34laPuIhG27i33IC8JpCZoDWYmk.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:3bc0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
215102
Signature Algorithm: sha256WithRSAEncryption
5d:d7:fe:69:49:ec:7a:d5:57:b4:3e:24:85:f2:b8:e0:8e:72:
4e:53:dd:74:05:83:1b:3b:9a:4e:a5:df:b4:ed:84:19:d3:53:
25:03:86:32:23:c7:73:38:56:7e:55:24:b2:7c:ab:83:f3:68:
f1:3e:1c:53:a1:b1:00:a8:d5:4a:a9:9a:ce:1d:12:94:3d:e0:
65:97:84:b6:49:10:d4:96:a5:4b:58:15:98:b9:11:ce:f1:59:
5f:de:40:2c:9e:08:9c:4b:a5:76:62:52:7d:6b:e8:3e:7c:e1:
92:b6:e1:67:9e:a9:a9:ad:85:0b:fe:65:d4:45:e1:e5:f0:3d:
c0:73:3e:d3:75:de:cd:68:62:d2:29:1f:a0:7b:84:3d:c1:31:
5b:c6:51:6a:71:e9:76:58:62:95:01:8b:31:7c:76:f0:06:75:
ec:72:a5:8f:3c:19:88:80:ef:6b:29:b9:28:87:fd:6f:81:2d:
a9:36:9d:b7:80:b2:09:f9:bb:a0:5d:4d:74:fe:d6:9c:e0:d9:
13:7c:dd:54:bc:82:3e:e6:6d:1d:a7:62:cc:22:10:9e:7b:07:
ed:07:60:3c:80:f2:01:bd:94:be:7d:a1:e3:65:e0:bc:e6:9c:
75:99:ab:77:ce:ad:0a:ce:d5:04:45:63:00:8e:1e:da:c6:52:
69:b2:2b:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 01:14:17 2024 by rpki-client on console-ams.rpki-client.org