Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/A_g_WVVmnLCoGPusAnxoKurtXXI.cer
File: A_g_WVVmnLCoGPusAnxoKurtXXI.cer (raw, json)
Hash identifier: MktIns04XLt4XqjZGoqjRCGfjDHN86ve8kSK9MJj/eY=
Subject key identifier: 03:F8:3F:59:55:66:9C:B0:A8:18:FB:AC:02:7C:68:2A:EA:ED:5D:72
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC7272FE557308A19FAED30A7A8077ACF
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/47/afbb0f-4a9a-4c30-8a62-f16f1a70ab2d/1/A_g_WVVmnLCoGPusAnxoKurtXXI.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/47/afbb0f-4a9a-4c30-8a62-f16f1a70ab2d/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 22:31:23 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 35348
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:27:2f:e5:57:30:8a:19:fa:ed:30:a7:a8:07:7a:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 22:31:23 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=03f83f5955669cb0a818fbac027c682aeaed5d72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fa:62:88:03:06:b7:a7:f3:23:35:db:ee:5d:69:
bb:de:31:35:48:32:c2:64:3e:3e:36:06:27:43:e6:
dc:f4:c6:f8:6d:cd:6b:27:79:a3:3d:8d:dd:14:86:
3f:04:6f:50:99:12:97:59:d7:67:43:b1:55:ba:b9:
ce:1b:7f:ab:80:64:7a:ce:ef:3b:85:00:b8:98:e7:
3e:54:e4:a7:dd:83:58:80:1a:c0:f7:b8:6c:8c:22:
45:98:bc:3a:2a:77:79:34:38:b8:e5:2e:15:ea:07:
3b:c0:d5:19:e8:a2:e7:cb:d3:4a:25:d2:c8:33:da:
37:92:cf:43:18:dd:13:48:48:3d:4b:ac:63:19:24:
2e:90:e9:37:7e:14:7c:3f:ab:ab:a2:cc:95:ed:d7:
59:ab:05:91:75:03:67:78:ae:5f:6a:0b:f8:17:ee:
e6:a0:0d:0f:2b:e7:8a:ec:c1:d3:4e:c0:99:0b:cd:
47:dd:9e:84:60:92:d7:49:3d:7e:73:f6:61:b4:c1:
0f:b4:a2:f8:8e:ad:9f:84:e7:6a:0d:ce:c2:71:56:
e6:a2:6c:42:22:d1:63:0e:91:15:df:29:6f:b8:5f:
97:06:cf:1c:b1:b3:fa:a4:0b:26:96:70:63:9f:e5:
93:aa:5b:01:14:8e:0d:d4:d9:d0:a9:c9:bf:82:97:
2f:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:F8:3F:59:55:66:9C:B0:A8:18:FB:AC:02:7C:68:2A:EA:ED:5D:72
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/afbb0f-4a9a-4c30-8a62-f16f1a70ab2d/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/afbb0f-4a9a-4c30-8a62-f16f1a70ab2d/1/A_g_WVVmnLCoGPusAnxoKurtXXI.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
35348
Signature Algorithm: sha256WithRSAEncryption
60:6a:36:57:30:bc:c2:5f:a6:74:73:71:94:83:7f:76:ff:94:
d2:41:e8:6d:de:12:86:ce:27:ab:b3:ec:47:60:1d:db:ef:e4:
5f:c8:76:1e:ad:55:9d:c8:f5:ba:34:2c:45:62:8d:d0:08:2a:
b8:a5:a2:5d:2b:10:dc:de:46:6e:6e:bc:1b:1b:ea:47:16:1c:
b9:4f:b3:3e:bf:39:60:63:b2:05:d5:c5:a6:30:46:8f:ad:c8:
71:db:95:3e:88:5d:1a:95:4f:f1:86:cc:f6:08:c3:e1:46:17:
fc:d3:f9:26:bb:d0:2c:62:10:15:4b:93:c1:c3:3b:32:db:ae:
17:81:5a:db:c1:bf:22:05:ed:73:ec:87:06:05:73:a1:db:29:
7e:81:4a:43:8c:c4:ee:98:1d:c8:bf:ea:38:f6:1c:7e:77:5e:
c8:5c:ba:37:2a:94:b1:3a:e0:b6:32:78:33:bc:ca:c5:d7:7f:
00:c3:72:df:d8:b3:2b:b1:68:96:40:31:90:e1:a9:50:2a:be:
95:76:19:bd:e5:ff:6b:0c:db:79:e6:67:81:4d:2f:ac:e2:b6:
89:f8:33:7e:d6:f3:76:25:50:bb:d5:a0:3c:84:26:10:d9:eb:
9c:60:84:bf:53:77:27:e1:82:07:fa:53:d4:92:fd:07:a1:32:
71:2c:5e:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:04:46 2024 by rpki-client on console-fra.rpki-client.org