Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6WTScFqbJv1IKpwQ6Sbq572kHps.cer
File: 6WTScFqbJv1IKpwQ6Sbq572kHps.cer (raw, json)
Hash identifier: dp2z3D3GG84pF32kzS7ca3sdKlrnTWun8zyl8DOnViE=
Subject key identifier: E9:64:D2:70:5A:9B:26:FD:48:2A:9C:10:E9:26:EA:E7:BD:A4:1E:9B
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CCA996B821EDABBDC1235E86E84D8BA0A
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/08/a6636d-cc53-4cee-84cc-f4e361e4da2d/1/6WTScFqbJv1IKpwQ6Sbq572kHps.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/08/a6636d-cc53-4cee-84cc-f4e361e4da2d/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 14:35:01 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: IP: 185.198.112.0/22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 11 May 2024 22:26:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:99:6b:82:1e:da:bb:dc:12:35:e8:6e:84:d8:ba:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 14:35:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e964d2705a9b26fd482a9c10e926eae7bda41e9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:bb:0e:8e:f8:88:35:90:28:a0:56:8c:27:bd:
fb:ec:02:7d:8a:20:9a:21:8f:45:49:1f:82:27:8c:
92:79:88:72:59:31:6f:b2:34:28:d7:01:9f:ce:b2:
19:fc:33:73:80:01:06:f3:cf:2b:cb:75:ff:a8:2a:
51:7f:ae:34:ca:dd:a1:71:da:af:5e:40:f9:77:c0:
b6:ec:cf:0c:6b:fe:35:ac:73:e6:82:00:fd:33:12:
b5:a6:f0:12:be:85:f5:2b:b7:de:e0:40:61:a3:c1:
82:76:ee:52:2c:f8:0c:9a:d0:6c:2c:96:66:69:d6:
36:5e:eb:7f:fc:ef:62:f1:db:be:40:21:44:b7:92:
ac:e0:25:cb:63:71:6b:ba:dc:a6:64:a6:f5:e6:d3:
81:1e:0a:b7:02:73:90:b1:ee:51:38:d3:56:09:83:
33:56:be:1e:df:35:76:e8:77:6b:4f:48:4e:34:f0:
85:d0:4a:ae:da:b0:28:ec:66:fa:ba:f1:17:4a:38:
87:fb:f0:51:9f:0d:a6:f9:05:9d:63:ef:d0:ce:a6:
aa:9c:91:2c:ea:d6:09:40:d1:fc:80:fa:83:66:1b:
47:f2:f9:e6:33:08:70:9d:9d:f0:97:31:51:d2:ab:
b1:fb:c2:86:c1:8b:0c:80:30:e8:b9:f9:9c:52:56:
a7:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:64:D2:70:5A:9B:26:FD:48:2A:9C:10:E9:26:EA:E7:BD:A4:1E:9B
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/a6636d-cc53-4cee-84cc-f4e361e4da2d/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/a6636d-cc53-4cee-84cc-f4e361e4da2d/1/6WTScFqbJv1IKpwQ6Sbq572kHps.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.198.112.0/22
Signature Algorithm: sha256WithRSAEncryption
85:01:21:ab:fa:ee:68:a0:4d:e1:8f:fa:7d:ae:29:42:47:cf:
85:13:b4:f8:61:f4:8a:c9:71:a6:29:96:74:bb:e4:7f:e8:c4:
63:58:bb:ee:32:f7:5a:a7:aa:7e:4f:19:83:f1:d3:72:53:18:
4e:2d:40:cc:7c:5d:28:33:ac:37:4d:06:ff:43:5f:3a:46:af:
9a:ea:f3:b0:c9:d3:bb:23:5c:7c:ce:82:91:16:81:3d:19:22:
58:74:8e:21:a1:c3:ec:24:81:fe:7a:ce:2b:84:58:3b:ed:c9:
a2:43:7c:f3:f8:c2:02:d9:ee:d8:dc:88:81:14:8a:90:46:d9:
44:67:5c:1b:89:27:05:53:2a:96:d1:12:34:8f:03:4b:78:ff:
54:c0:36:ed:b5:9c:12:93:f8:c5:d8:00:5a:cb:4e:f5:3d:b1:
1e:82:78:30:79:25:0e:03:cf:63:a0:84:c6:f2:03:3f:57:a5:
77:4c:02:86:1d:2f:85:fa:dc:c6:6f:4f:74:90:5a:6e:2a:ac:
eb:73:0d:d6:fe:1f:88:03:17:b8:98:40:4e:bc:73:c7:ba:41:
1a:24:7a:29:35:d0:4b:47:e2:d9:7d:53:f0:f6:b3:07:51:be:
3c:58:8e:4d:a9:7d:02:3b:d7:c9:4c:99:43:0f:ad:be:d2:b7:
56:e7:f3:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 11 00:30:06 2024 by rpki-client on console-fra.rpki-client.org