Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8cSYM_Q5ueBnfY078fUt-_ssYk8.cer
File: 8cSYM_Q5ueBnfY078fUt-_ssYk8.cer (raw, json)
Hash identifier: FBbhDSnENv4H27mukJO6cxCkXzxipUvbI4ms8XkCHeM=
Subject key identifier: F1:C4:98:33:F4:39:B9:E0:67:7D:8D:3B:F1:F5:2D:FB:FB:2C:62:4F
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC6B7901C954048BC9C261CF25A98D369
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/81/3ae379-79e1-46ab-b04d-0f0fa6b6e4bd/1/8cSYM_Q5ueBnfY078fUt-_ssYk8.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/81/3ae379-79e1-46ab-b04d-0f0fa6b6e4bd/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 20:29:27 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 31097
IP: 194.11.206.0 -- 194.11.213.255
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 21 Apr 2024 00:45:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b7:90:1c:95:40:48:bc:9c:26:1c:f2:5a:98:d3:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 20:29:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f1c49833f439b9e0677d8d3bf1f52dfbfb2c624f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:18:24:41:ea:41:c0:fd:15:ee:5c:ad:e0:52:
7b:eb:bf:ce:a8:53:1c:5e:7f:40:fb:84:5c:df:7d:
48:68:35:8f:3e:19:fb:4e:92:30:14:7a:6f:92:69:
71:ed:d9:19:0e:15:52:86:09:51:6a:5b:7e:12:6b:
d5:e6:2f:d7:81:79:ba:bf:dc:0d:20:a7:9e:b1:73:
8d:1e:f2:be:76:75:c9:42:20:d6:aa:fd:a7:db:f1:
e9:47:e2:75:9d:bc:03:75:b3:41:dd:3b:46:a9:e7:
3d:4c:f0:97:6f:ff:30:27:fe:81:8c:e6:4d:e7:5a:
50:00:f8:69:20:11:4b:7c:a5:61:b6:75:3f:c9:e8:
17:64:c1:53:18:88:09:60:8d:cd:e0:b0:2e:a5:00:
12:3e:a6:d5:ef:73:72:eb:fa:dd:a2:0d:17:22:19:
89:95:a8:68:5a:ed:3a:6e:8f:c7:94:29:c3:71:49:
53:a9:cf:f1:96:d4:ad:43:f0:12:7b:4f:81:fe:a0:
c6:b4:97:75:01:26:3a:9d:a7:c7:a6:aa:1e:31:36:
68:7b:6e:df:5b:c9:62:78:e4:c1:5e:59:1d:31:ed:
b6:4b:ad:5f:f7:09:77:28:73:1d:82:b2:db:40:04:
78:64:1d:30:0f:1a:0c:56:75:dd:7d:93:c7:e8:fd:
f0:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:C4:98:33:F4:39:B9:E0:67:7D:8D:3B:F1:F5:2D:FB:FB:2C:62:4F
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/3ae379-79e1-46ab-b04d-0f0fa6b6e4bd/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/3ae379-79e1-46ab-b04d-0f0fa6b6e4bd/1/8cSYM_Q5ueBnfY078fUt-_ssYk8.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.11.206.0-194.11.213.255
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
31097
Signature Algorithm: sha256WithRSAEncryption
15:38:ea:99:8c:e6:2b:9a:e6:3d:49:50:99:bb:92:bb:ca:4c:
8b:3e:8f:ff:6e:58:d6:0b:54:37:1a:34:7a:b6:0c:c8:5b:2f:
4a:cd:f5:42:ac:2f:71:db:79:2e:fc:6b:e1:c3:35:5c:b5:ee:
87:f8:9b:3e:eb:de:ba:39:76:08:c5:47:f2:a8:75:25:fa:45:
84:9e:f3:9b:ed:20:b8:f9:b6:ff:cd:ad:42:d8:48:a2:3f:68:
1b:b2:75:16:32:92:31:e5:dd:0f:23:e1:e3:83:70:a7:25:34:
80:ae:4a:83:ca:6b:ec:12:fa:95:52:68:7b:b9:b2:43:dd:45:
38:ef:09:ee:81:4c:8d:b0:59:31:69:2a:a7:55:06:90:ff:d8:
48:e6:57:aa:31:d6:c1:ed:30:26:1f:c5:f3:0f:d0:91:3c:ac:
bb:ab:8e:ae:51:6d:e4:25:05:07:a7:48:d5:de:76:5d:d5:40:
05:f3:5c:98:c1:67:0c:fe:0e:6e:eb:de:4e:39:d8:bb:ae:4b:
bb:c2:94:b7:c5:cb:e7:94:91:5c:70:df:0a:7c:65:3c:ed:5d:
09:11:88:9d:f0:0b:54:84:db:6a:d9:d2:2b:e6:f6:56:2e:47:
79:75:89:37:b0:82:92:2f:32:ec:b0:9a:7f:0e:24:21:fa:c6:
1c:37:5a:aa
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat Apr 20 03:36:14 2024 by rpki-client on console-ams.rpki-client.org