Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4qSQ41rZxh_VM04qHoVtgX0XMMI.cer
File: 4qSQ41rZxh_VM04qHoVtgX0XMMI.cer (raw, json)
Hash identifier: LNSlcRnnxGYM4Ni9DthdHbTSiUBunvTBHM2f9HrSCvU=
Subject key identifier: E2:A4:90:E3:5A:D9:C6:1F:D5:33:4E:2A:1E:85:6D:81:7D:17:30:C2
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC8011BC10F2A9BBE99C1D96E78E55F49
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/9f/7142fe-8513-4de6-851e-6a4255674642/1/4qSQ41rZxh_VM04qHoVtgX0XMMI.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/9f/7142fe-8513-4de6-851e-6a4255674642/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 02:29:25 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 12345
IP: 212.47.32.0/19
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 27 Apr 2024 08:00:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:1b:c1:0f:2a:9b:be:99:c1:d9:6e:78:e5:5f:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 02:29:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e2a490e35ad9c61fd5334e2a1e856d817d1730c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:d4:b3:d6:ac:08:d4:f2:84:4f:f7:f5:b2:0e:
c0:c1:21:d3:bf:02:b9:0e:76:2e:12:8a:3c:fa:9e:
8c:ea:f2:3c:a1:37:c1:81:cd:91:3a:00:13:63:30:
03:a7:61:01:67:a1:8b:f6:55:42:c5:c1:19:f5:42:
02:0d:44:d7:92:e4:9a:98:40:7b:49:35:9e:cf:aa:
73:b1:6a:e4:02:b4:e8:63:a9:9e:57:ff:00:f2:ab:
8e:a2:dc:1f:16:8d:13:21:7b:b9:63:1b:d1:ed:7e:
55:b3:65:a8:0d:5f:a1:be:b0:17:42:23:fc:5d:75:
97:4e:a8:00:fb:39:ad:c9:b8:8d:9f:be:43:14:5a:
88:2c:2c:7e:c9:bc:ae:84:80:7e:69:51:95:fc:f1:
a3:8a:d5:5c:8a:24:9e:3d:ca:d3:30:64:fa:0d:5f:
ac:f7:42:99:9a:98:00:da:7b:2f:97:ae:07:5c:42:
cf:a2:99:80:23:65:b0:3c:03:35:28:8d:79:61:8a:
1d:9b:18:66:6d:b0:35:b7:49:e9:53:76:ba:19:32:
ef:5e:22:91:2f:6c:6f:b6:ab:4c:6b:ee:bc:19:57:
69:51:23:73:cb:92:86:5a:ce:0d:4e:60:3c:03:36:
18:35:4f:ea:a7:59:67:c6:e0:3a:9e:95:f5:72:b9:
eb:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:A4:90:E3:5A:D9:C6:1F:D5:33:4E:2A:1E:85:6D:81:7D:17:30:C2
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/7142fe-8513-4de6-851e-6a4255674642/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/7142fe-8513-4de6-851e-6a4255674642/1/4qSQ41rZxh_VM04qHoVtgX0XMMI.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.47.32.0/19
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
12345
Signature Algorithm: sha256WithRSAEncryption
7e:6b:09:1a:5f:6f:4f:60:c7:21:26:3c:ea:a6:e5:2a:a1:d7:
97:ef:09:24:56:86:80:d5:3d:b6:77:9f:2a:1d:64:4c:b9:5b:
f0:3a:c8:a1:9f:86:7e:47:b0:9f:fa:ad:35:9f:b4:c4:7e:56:
a4:43:2c:ae:b3:f6:b2:68:bd:6e:0f:52:e4:fb:5f:19:06:3d:
b6:3a:55:98:e1:1f:33:23:76:fd:16:ee:0a:02:30:70:79:18:
e5:e2:bb:33:3a:66:23:28:de:f6:90:b4:02:0a:93:e8:9f:87:
ea:ea:33:8f:03:5d:58:df:e4:d9:ef:2a:ee:9b:b9:97:e2:1a:
c8:9d:54:e8:f7:54:38:2e:eb:8c:4e:bf:da:f3:ce:ab:a5:24:
ce:48:df:95:04:69:16:65:da:b0:03:c0:62:1c:be:56:15:28:
8a:1e:a8:6b:e9:5e:80:bb:c7:ab:81:ad:4d:e8:e8:c8:c1:e6:
53:d8:2e:b0:a5:de:09:42:66:aa:6f:17:cd:7b:56:81:ee:39:
c8:6a:04:df:47:d1:ff:bd:40:9f:40:25:67:6a:fb:44:87:f6:
f4:ec:18:86:2e:7e:d7:76:70:60:df:36:65:94:3b:e6:df:88:
ea:1c:0f:ea:aa:7e:17:2d:45:4e:f4:b1:95:73:d2:20:ba:a6:
7e:60:60:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 11:35:13 2024 by rpki-client on console-ams.rpki-client.org