Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43ogp_KKgk9nMVpWblkkSqqMfUo.cer
File: 43ogp_KKgk9nMVpWblkkSqqMfUo.cer (raw, json)
Hash identifier: +S2O/AVkM5JaO5XzA7ciGwLWBwfjSUcLxTCuGOWc28U=
Subject key identifier: E3:7A:20:A7:F2:8A:82:4F:67:31:5A:56:6E:59:24:4A:AA:8C:7D:4A
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC86F2E70D63EA5AA0B03445671C97726
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/f4/ac598f-5f52-4330-b013-57069e0803b5/1/43ogp_KKgk9nMVpWblkkSqqMfUo.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/f4/ac598f-5f52-4330-b013-57069e0803b5/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 04:29:38 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 56399
IP: 91.225.164.0/22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 20 Apr 2024 17:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:2e:70:d6:3e:a5:aa:0b:03:44:56:71:c9:77:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 04:29:38 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e37a20a7f28a824f67315a566e59244aaa8c7d4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:c4:c2:cb:50:af:cc:27:1c:f5:10:57:d5:67:
b0:2a:3b:d1:e4:bf:c6:16:42:37:8d:59:a4:67:18:
26:43:57:25:54:de:ff:c7:74:3c:d7:4e:78:26:56:
7b:3e:56:71:42:63:35:6f:34:29:ad:7e:5c:c2:79:
75:41:92:8a:b3:4c:e9:0d:9b:69:ae:ac:ba:10:b9:
30:25:af:4a:8f:ba:83:68:c2:a7:04:c1:04:3a:45:
62:30:89:80:04:d3:17:d3:7b:0d:12:35:fc:22:53:
9f:ac:09:2d:4a:18:81:89:eb:0a:8d:88:b4:e3:da:
97:1d:fc:c8:54:b3:fa:ef:b7:03:9c:e6:a7:00:51:
17:44:54:57:16:aa:6c:e8:4c:16:96:dc:79:0a:d4:
6d:d3:d5:8e:00:9e:8a:bc:33:2d:2e:e0:77:a2:7f:
26:a0:33:fc:37:50:c2:99:ee:52:6b:80:a0:97:f0:
08:e2:47:e7:80:d9:60:1b:13:91:86:2f:a8:1c:21:
be:0d:0c:f4:d9:64:90:73:be:e5:1c:64:49:4f:5e:
c5:58:78:be:66:8b:34:36:34:cb:13:3b:f6:05:ac:
f2:08:8a:f2:d0:f1:03:1a:ae:60:a9:9e:b3:c1:6e:
ed:6e:10:1a:39:2e:75:ee:95:df:03:28:c2:f9:a4:
8c:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:7A:20:A7:F2:8A:82:4F:67:31:5A:56:6E:59:24:4A:AA:8C:7D:4A
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/ac598f-5f52-4330-b013-57069e0803b5/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/ac598f-5f52-4330-b013-57069e0803b5/1/43ogp_KKgk9nMVpWblkkSqqMfUo.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.225.164.0/22
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
56399
Signature Algorithm: sha256WithRSAEncryption
29:56:89:b9:b7:9c:32:3f:7e:49:ce:0d:42:1a:19:57:0e:55:
00:91:c3:3b:74:e1:79:5e:12:8b:2a:3f:bd:fa:18:e7:13:eb:
fa:6e:f1:d6:96:10:84:2e:3a:dc:69:17:1a:07:88:91:3a:9f:
f2:c2:ad:3b:45:e7:e2:64:e5:cf:1f:f0:d4:e9:46:66:39:67:
40:b6:3c:9a:1f:1b:d5:55:e9:02:8d:b1:e5:56:e2:55:0f:e3:
07:45:25:51:e6:b3:c6:ef:67:a1:a6:f8:7b:27:ea:1a:97:f1:
71:94:94:c1:5a:7b:57:ac:50:94:df:e8:53:7e:86:de:85:17:
b6:10:80:67:47:1d:57:60:cc:c5:41:15:b3:29:16:40:a5:02:
0a:fc:1b:74:5b:95:2a:bd:ae:c1:47:bb:05:e3:0e:86:70:5c:
49:48:c3:32:38:ba:dd:26:9c:6f:e1:27:40:2e:50:71:52:9e:
b6:73:bf:af:48:79:4e:bf:8b:9d:09:7e:38:d2:b8:fc:f8:12:
3e:ee:7f:eb:5a:e8:f1:a3:ac:7c:05:da:a5:b7:33:91:ff:af:
81:bc:de:f1:88:91:3a:f5:17:07:26:3a:88:8f:f2:f9:c1:f1:
0c:4c:f7:b6:8d:4e:4f:9c:05:98:71:b3:8f:19:11:08:f6:fb:
2b:a4:b3:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 19 22:46:26 2024 by rpki-client on console-ams.rpki-client.org