Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/96wXOfUp2vTMczgkibgFl-ugf0E.cer
File: 96wXOfUp2vTMczgkibgFl-ugf0E.cer (raw, json)
Hash identifier: ZRuJRXXMEulunS3JFtCv8lsIbHcdz0Uvz9yEkvb/0VI=
Subject key identifier: F7:AC:17:39:F5:29:DA:F4:CC:73:38:24:89:B8:05:97:EB:A0:7F:41
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CCA2A56EBD830919134E38B62ED173A15
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/83/123b25-fee4-490b-be00-0b8a792c1b9d/1/96wXOfUp2vTMczgkibgFl-ugf0E.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/83/123b25-fee4-490b-be00-0b8a792c1b9d/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 12:33:41 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 198266
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Dec 2024 06:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:2a:56:eb:d8:30:91:91:34:e3:8b:62:ed:17:3a:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 12:33:41 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f7ac1739f529daf4cc73382489b80597eba07f41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:13:bc:8e:c8:06:cb:0f:17:91:ec:c3:be:95:
75:d0:8c:fd:2e:8a:8c:7e:06:b2:20:4c:99:59:e9:
ef:52:2c:28:a8:b4:83:fd:bf:f2:7d:50:fd:b7:0c:
b4:2e:eb:02:85:fb:1b:21:b6:fa:10:72:43:e6:a0:
fa:29:0e:47:e6:c5:34:5e:85:e1:d2:3d:d6:4d:29:
1a:06:31:5b:ae:5a:10:bd:53:b9:4d:5f:28:97:19:
dc:e7:9d:3b:65:be:6c:04:67:88:6c:06:5e:8e:cf:
54:3a:2e:a4:ac:e9:8e:17:6c:d1:2f:9b:9e:46:58:
48:ac:71:46:17:20:82:ef:0b:21:9f:14:af:0a:9b:
70:42:63:78:18:47:69:de:20:55:86:3a:f8:c3:14:
6a:22:ae:ca:63:ac:b5:e2:9e:69:1b:3c:2c:92:2e:
3e:5f:85:5b:5f:b2:96:ca:90:54:37:af:19:3c:8b:
67:7d:ca:7a:53:09:e2:69:5a:17:62:94:26:37:b4:
2e:d4:e2:3b:88:33:2b:37:27:b0:5b:47:33:21:5f:
8e:88:0c:cd:d6:61:72:a9:05:ce:3e:f9:6f:32:31:
37:8b:c1:42:aa:bd:57:2c:2d:0a:53:c5:38:ab:26:
87:87:15:48:05:04:6e:a5:a6:e5:99:a3:c6:11:10:
62:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:AC:17:39:F5:29:DA:F4:CC:73:38:24:89:B8:05:97:EB:A0:7F:41
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/123b25-fee4-490b-be00-0b8a792c1b9d/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/123b25-fee4-490b-be00-0b8a792c1b9d/1/96wXOfUp2vTMczgkibgFl-ugf0E.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
198266
Signature Algorithm: sha256WithRSAEncryption
5a:38:56:6b:08:a2:26:d7:72:e0:fc:78:10:c1:db:cd:9e:23:
a9:12:ac:a3:fd:26:18:ca:05:11:01:59:3a:74:dc:02:2d:7f:
e4:3b:75:0e:bd:bf:3b:10:1a:c0:02:dc:eb:1e:6b:44:fc:d7:
6e:50:2f:e9:a4:70:9b:50:6c:f7:ad:a1:1d:de:3e:3b:9b:ec:
96:72:8b:83:f5:da:3c:c7:48:a8:28:9b:1a:bc:a2:ea:d3:19:
7c:39:52:b5:0d:93:46:13:e3:40:a7:2d:46:10:8f:db:8e:95:
3a:40:ae:b7:e8:51:fc:95:6d:f3:1c:cd:ec:34:30:7d:fe:f1:
d7:40:a8:54:0b:46:0b:07:82:28:40:e7:aa:63:5d:36:e9:09:
2c:9d:7b:d7:c5:6f:ed:50:47:ba:07:64:51:4d:f4:79:4d:e2:
00:af:03:c6:2a:b5:db:fb:26:90:1a:6c:3e:7d:7d:a6:c2:6f:
1d:86:c5:d6:8a:84:ad:2e:9f:e2:59:7e:5f:5a:dd:04:ae:35:
ed:3a:a2:53:97:c7:9c:96:6e:d1:c9:6b:3b:85:bb:31:96:5d:
8c:23:70:b2:95:68:4a:c1:17:eb:78:d6:e6:17:d0:58:9f:85:
ad:da:a3:b3:ca:b7:00:22:3e:7f:fa:eb:ae:cd:a1:09:29:10:
d9:61:44:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Dec 26 17:28:08 2024 by rpki-client on console-ams.rpki-client.org