Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7P5KCWd7ALvDM_cWeOqoCnG2Kkg.cer
File: 7P5KCWd7ALvDM_cWeOqoCnG2Kkg.cer (raw, json)
Hash identifier: dpodrF8UJ5miiZ+7p4r39C/VLRfVn5DkGj/Il5i2KVo=
Subject key identifier: EC:FE:4A:09:67:7B:00:BB:C3:33:F7:16:78:EA:A8:0A:71:B6:2A:48
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC424A7B7E200A8A920A3682E059BAF83
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/ca/a4a4a8-2a93-48ad-b891-ed9302feddcb/1/7P5KCWd7ALvDM_cWeOqoCnG2Kkg.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/ca/a4a4a8-2a93-48ad-b891-ed9302feddcb/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 08:29:45 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 41745
IP: 2001:67c:263c::/48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 25 Apr 2024 21:23:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:24:a7:b7:e2:00:a8:a9:20:a3:68:2e:05:9b:af:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 08:29:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ecfe4a09677b00bbc333f71678eaa80a71b62a48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:e8:e9:5f:e0:2d:b2:d2:8a:c7:9d:4e:81:0c:
69:1f:89:1b:8d:c7:88:74:23:be:cd:9b:31:3c:ea:
21:28:c2:75:44:7c:8c:84:02:12:53:cc:85:30:2e:
cf:16:fd:64:01:70:ee:13:33:5b:11:80:b0:db:00:
1b:cd:fd:26:cd:17:5f:5e:bb:20:e4:4a:be:a1:b3:
73:11:b9:e2:d0:f4:3e:33:05:5d:29:40:a6:20:26:
49:6b:74:b8:90:04:e4:e4:60:b4:50:81:84:72:3e:
b8:b7:6c:6f:04:9c:e4:e6:bf:68:7b:c2:ed:2d:a1:
36:19:62:96:76:db:27:7d:aa:c1:6d:78:b6:9d:3b:
12:7a:70:6f:a6:7f:06:aa:93:25:98:dd:b4:d3:8a:
90:e2:6b:3a:79:41:63:ba:41:ba:5b:b0:e4:72:98:
82:a4:60:ff:2c:09:89:83:f5:09:88:78:4f:02:e0:
85:6d:c0:df:67:bd:89:9e:15:4a:74:44:a3:3c:00:
d5:bf:ca:1e:91:67:96:51:ad:da:c1:fa:91:2e:1c:
d9:99:fa:c0:c5:84:e6:0f:ce:0a:18:e1:83:06:9f:
cb:f4:df:56:6b:06:bb:fc:a5:a0:4d:03:37:9c:26:
f4:6b:0f:e9:98:3b:5f:6b:3a:fc:fd:54:9a:ef:4a:
e4:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:FE:4A:09:67:7B:00:BB:C3:33:F7:16:78:EA:A8:0A:71:B6:2A:48
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/a4a4a8-2a93-48ad-b891-ed9302feddcb/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/a4a4a8-2a93-48ad-b891-ed9302feddcb/1/7P5KCWd7ALvDM_cWeOqoCnG2Kkg.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:263c::/48
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
41745
Signature Algorithm: sha256WithRSAEncryption
34:7f:db:7a:67:74:ec:0f:f1:56:d7:db:dd:58:62:61:e1:06:
5e:74:63:1a:c6:10:7f:59:8b:a0:35:23:51:60:5d:03:7f:89:
32:f2:16:43:1a:db:05:f1:ef:4c:41:da:3d:3f:a4:c6:63:6c:
55:12:a0:26:8f:f8:1f:96:d8:2d:04:ef:c4:ed:e3:04:04:e2:
11:1d:5e:b0:1a:0b:d7:6b:3d:88:1c:bd:38:93:bd:9a:87:d8:
07:c9:2a:43:7a:5d:3c:3a:fa:ba:a6:c9:06:f2:a6:ed:a2:b6:
70:3a:1d:13:aa:f2:c4:54:ea:a4:b4:d3:9d:ff:7c:6f:f2:c1:
76:62:0d:90:5e:25:82:13:87:87:73:f7:5e:f7:90:7c:dc:a9:
30:34:f9:ae:36:3b:09:6a:c2:b2:12:6e:35:ad:6f:ca:48:3e:
5a:fe:48:66:90:36:7c:f9:0f:87:e4:ac:5c:85:e7:89:78:24:
87:51:fb:18:b0:06:f3:54:c5:2c:59:c5:55:b2:1a:15:13:50:
6a:99:91:d7:f7:4d:c9:87:cf:aa:22:64:6c:df:68:2a:f6:30:
33:65:d6:40:be:87:37:45:a5:8a:e4:44:8b:06:49:4b:f2:78:
e2:f3:1c:0a:04:3c:d8:94:12:e8:b0:55:8b:2a:e4:2b:2a:aa:
f3:79:8b:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 00:12:19 2024 by rpki-client on console-ams.rpki-client.org