Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3t6RoPsfTdF5ANBttuiDNveLXAU.cer
File: 3t6RoPsfTdF5ANBttuiDNveLXAU.cer (raw, json)
Hash identifier: yYV1kACxWoFdByW+N5JBY9FF8gQlcbtzkl++m/tFxxU=
Subject key identifier: DE:DE:91:A0:FB:1F:4D:D1:79:00:D0:6D:B6:E8:83:36:F7:8B:5C:05
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC3B7431EBACD7F34C510C3ED74FDACB5
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/55/2321d6-bd6c-4b2a-af83-21a700c7119f/1/3t6RoPsfTdF5ANBttuiDNveLXAU.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/55/2321d6-bd6c-4b2a-af83-21a700c7119f/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 06:30:16 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 210544
IP: 192.124.252.0/24
IP: 193.28.64.0/21
IP: 2a12:6900::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 25 Apr 2024 14:05:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:b7:43:1e:ba:cd:7f:34:c5:10:c3:ed:74:fd:ac:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 06:30:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=dede91a0fb1f4dd17900d06db6e88336f78b5c05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:2d:2c:00:56:5c:3f:3e:f3:fa:f9:45:ac:9a:
a0:89:a1:69:c6:d5:8b:0b:ed:2f:8a:bd:cd:9b:bc:
67:c1:ae:50:b3:19:5e:24:f4:ef:43:34:7e:34:84:
bb:f1:59:9e:5b:c1:86:d6:1e:51:5f:9b:79:a9:4a:
71:9f:7a:33:e1:84:b0:76:73:76:c1:56:0e:8f:b1:
db:d1:4e:93:42:1f:cb:95:38:a7:2f:3d:a4:fa:2a:
06:73:08:d3:f7:19:d4:6c:2d:2b:32:a5:a5:dc:c0:
86:34:0a:76:a0:2b:25:36:79:c0:44:79:09:ac:dd:
f5:a6:05:ec:fd:08:38:ff:24:e5:1d:b8:60:7f:ff:
37:88:18:1c:c5:91:a2:bc:76:22:12:5f:28:81:45:
c0:ef:1d:b4:33:ca:75:38:f9:90:5d:16:77:b6:d7:
d4:bb:49:26:a9:34:0f:8a:c7:03:3a:86:d7:a1:38:
01:2f:be:0a:28:33:b9:fa:29:bc:b1:33:23:31:ec:
a2:e4:ae:99:38:df:45:0a:a8:d0:11:d2:ff:51:64:
8d:f7:2c:f0:94:72:81:1d:58:9e:ea:f9:5b:8c:bb:
a8:b9:d1:5d:3b:e7:49:46:77:c8:c4:cd:94:b7:34:
ae:a2:57:b1:01:b3:c4:30:3f:d4:8a:43:a8:d1:2e:
88:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:DE:91:A0:FB:1F:4D:D1:79:00:D0:6D:B6:E8:83:36:F7:8B:5C:05
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/2321d6-bd6c-4b2a-af83-21a700c7119f/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/2321d6-bd6c-4b2a-af83-21a700c7119f/1/3t6RoPsfTdF5ANBttuiDNveLXAU.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.124.252.0/24
193.28.64.0/21
IPv6:
2a12:6900::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
210544
Signature Algorithm: sha256WithRSAEncryption
6f:c2:ee:d2:d0:9c:c4:5a:41:78:2f:6a:73:bb:41:74:6a:78:
8a:86:3c:5b:62:7d:ba:c2:f7:4c:aa:7c:01:2c:60:ee:36:28:
92:09:0e:bd:0a:8b:1e:db:cf:72:30:2a:95:4e:bc:6a:a2:0e:
40:74:4e:69:47:fc:1b:d4:d8:67:29:11:91:cf:37:cf:42:01:
18:4d:59:69:33:16:32:df:18:45:8e:5c:76:a7:be:9b:64:5a:
fd:f1:a3:27:c3:44:ec:d3:ef:a7:a9:4f:14:b0:2f:20:ef:af:
7b:62:71:81:15:3b:0e:04:58:ff:b6:dc:e9:eb:3c:2f:6b:22:
2b:72:24:98:f5:fc:ea:27:ea:bf:6c:92:99:6e:ae:59:70:6f:
b3:99:ce:54:ed:71:74:1d:ba:c3:88:59:b6:86:ca:07:fc:c3:
a5:eb:b1:1a:33:d3:28:da:d6:5c:0d:1f:87:77:b0:64:89:04:
2c:6a:4d:e9:fc:01:6d:76:77:ff:c7:dd:ae:1e:bb:ee:37:35:
d1:54:84:c1:63:2b:af:3b:ab:7d:96:f8:60:75:1b:2b:52:8e:
da:09:53:b9:5f:cb:89:bd:3f:77:dc:bc:b6:30:90:df:12:49:
70:81:01:a7:89:d9:e9:4e:64:d9:ec:ae:6c:07:65:6d:d1:f7:
5f:fd:9d:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 24 18:52:00 2024 by rpki-client on console-fra.rpki-client.org