Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4xbAPPr_4TTHvtpIhquLCc9F-8Q.cer
File: 4xbAPPr_4TTHvtpIhquLCc9F-8Q.cer (raw, json)
Hash identifier: SnY1X1dEkKJfUZSIvQ3PcTFZHAHcPx/d8kA2hGIo00A=
Subject key identifier: E3:16:C0:3C:FA:FF:E1:34:C7:BE:DA:48:86:AB:8B:09:CF:45:FB:C4
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC56E0827D2C8B6615E01077BB81C862F
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/63/91402e-ed28-4a21-84e2-e4d64dca67ac/1/4xbAPPr_4TTHvtpIhquLCc9F-8Q.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/63/91402e-ed28-4a21-84e2-e4d64dca67ac/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 14:29:31 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 199789
IP: 2001:67c:b98::/48
IP: 2001:67c:29a4::/48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:08:27:d2:c8:b6:61:5e:01:07:7b:b8:1c:86:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 14:29:31 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e316c03cfaffe134c7beda4886ab8b09cf45fbc4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:1e:1f:02:ee:c8:ce:31:c8:e3:cc:7b:b2:cc:
96:11:75:f2:65:54:73:17:85:c4:22:8c:91:e0:1b:
dd:d8:10:ca:1e:01:6d:a2:0c:62:2f:af:28:df:e3:
d4:c3:5a:96:6d:22:ef:69:cf:ed:6d:1d:3e:89:3d:
52:79:36:d4:b7:3b:76:40:19:9f:54:a4:2b:2e:96:
64:a8:c3:4b:77:f8:1e:c9:77:f9:81:f6:cc:6a:5c:
bc:50:41:b2:46:b4:ea:75:8c:5a:f7:6b:56:b8:47:
f5:c8:6c:72:8f:30:54:c9:60:6c:98:57:be:86:f5:
09:cb:c3:c8:64:48:13:df:68:83:1d:f2:60:a5:5f:
25:40:e5:f8:fb:a3:1e:11:eb:1e:99:9b:26:bc:a8:
a4:26:b0:dd:cf:30:41:0f:62:9a:19:a4:0b:39:ef:
67:f0:d4:dd:17:87:0e:cd:f0:8c:52:b8:32:3d:9b:
c9:ae:bf:a8:65:56:e9:3c:6a:72:05:e5:c5:92:9e:
fd:9a:e3:5a:ff:57:43:e9:d6:4a:a5:23:74:04:10:
af:ef:7a:8f:bd:ba:f2:4c:8e:0c:9a:ce:a4:4d:ff:
fc:89:fa:8e:a8:6f:b0:e4:aa:b1:1c:e8:00:f0:33:
bd:46:e2:64:41:da:8a:6f:96:77:0a:10:16:51:51:
d4:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:16:C0:3C:FA:FF:E1:34:C7:BE:DA:48:86:AB:8B:09:CF:45:FB:C4
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/91402e-ed28-4a21-84e2-e4d64dca67ac/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/91402e-ed28-4a21-84e2-e4d64dca67ac/1/4xbAPPr_4TTHvtpIhquLCc9F-8Q.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:b98::/48
2001:67c:29a4::/48
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
199789
Signature Algorithm: sha256WithRSAEncryption
7a:d8:49:bd:40:56:03:2d:70:cf:a6:99:5b:4d:2c:ca:a6:a8:
d0:f6:b1:4e:77:5e:ea:29:3b:04:02:6c:ae:40:d0:c9:2f:30:
3a:c0:6f:25:e6:f9:b4:c8:2e:d7:53:ce:4c:ff:84:47:95:b7:
67:06:ed:05:77:82:9c:aa:27:06:16:e5:46:ea:e3:50:15:73:
6f:2f:0f:3f:31:b0:83:5b:19:b5:b1:e1:6f:3e:03:42:93:b1:
71:7c:92:16:32:06:ac:14:6d:55:80:ff:fd:1a:04:65:0b:74:
fd:4d:95:71:06:73:63:70:e0:86:a8:aa:6f:2e:f8:9e:31:fb:
11:25:97:8e:6e:15:df:35:0c:4c:64:1e:3b:af:ad:2c:47:63:
5b:6d:b3:82:59:2f:1c:01:d0:cd:ae:4c:51:95:a2:79:5f:08:
c7:a4:d4:19:14:54:cc:1d:5a:a8:b2:4f:2c:ae:89:c6:3f:ab:
7d:9b:41:c2:75:bf:ea:87:a6:e9:14:4e:75:ee:4d:11:67:eb:
9a:e0:89:f4:a7:fa:78:03:d4:36:84:df:ae:a1:5a:b9:b1:60:
c8:5f:46:64:b4:f4:ed:f1:28:0c:6c:4b:57:e0:00:bd:4f:c9:
0e:d3:83:f1:99:43:d9:8c:71:77:1d:1e:e7:89:af:b7:75:3a:
c2:e6:03:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 09:57:48 2024 by rpki-client on console-fra.rpki-client.org