Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/AoNhMH79nzq-_mm9FN4OG9YLbmo.cer
File: AoNhMH79nzq-_mm9FN4OG9YLbmo.cer (raw, json)
Hash identifier: vjWN/UWCClGXY8RdpR6XCOXTqHQya+keIp6JMOC9LYw=
Subject key identifier: 02:83:61:30:7E:FD:9F:3A:BE:FE:69:BD:14:DE:0E:1B:D6:0B:6E:6A
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018E51171B1F7AF4530E118EB601743C3022
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/cc/e8101a-240f-4e32-a097-27c273a60788/1/AoNhMH79nzq-_mm9FN4OG9YLbmo.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/cc/e8101a-240f-4e32-a097-27c273a60788/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 18 Mar 2024 10:24:12 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: IP: 193.25.124.0/23
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 21 Apr 2024 00:45:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:51:17:1b:1f:7a:f4:53:0e:11:8e:b6:01:74:3c:30:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Mar 18 10:24:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=028361307efd9f3abefe69bd14de0e1bd60b6e6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:a4:ec:bb:d4:de:e2:86:ef:b6:d4:1f:80:d1:
da:a8:8b:07:1d:bb:0a:77:be:45:97:95:8e:74:2d:
04:55:a0:85:0e:aa:dd:01:ab:46:c7:7f:5b:2e:33:
54:0f:39:08:ff:f7:b0:54:b2:b2:a8:f2:cb:4d:6c:
0e:73:18:03:99:53:50:7c:ef:24:50:4a:9b:ab:8e:
56:ab:6f:5d:ea:2d:fb:6d:b1:b3:ce:6e:42:82:2f:
cd:08:b6:68:7a:de:46:1e:d5:84:65:2b:91:a7:11:
d2:97:d8:07:66:8a:3f:62:63:31:aa:a6:ff:36:89:
69:dd:b0:35:1b:85:7c:10:1d:4c:22:c4:c0:a2:cc:
bc:cd:e1:35:8c:95:b2:9b:8e:96:f8:2b:60:3c:50:
35:db:36:eb:91:0b:a2:01:c0:34:f6:9f:8c:fd:a7:
d9:90:27:e3:d6:ef:91:dd:6c:95:66:3c:b2:12:4a:
37:40:c8:05:cf:eb:1b:c7:27:87:fd:b5:2a:05:be:
23:35:6e:08:f7:80:29:44:5c:50:0a:1c:ce:f6:8d:
aa:5a:fd:1e:43:bb:d0:5b:a9:5b:48:2a:18:48:70:
ae:f8:8a:a2:7f:f6:a7:ca:0b:6a:6e:b2:da:c7:54:
8e:bb:26:02:56:d7:5c:cc:4d:00:a8:f2:c3:8a:fc:
8c:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:83:61:30:7E:FD:9F:3A:BE:FE:69:BD:14:DE:0E:1B:D6:0B:6E:6A
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/e8101a-240f-4e32-a097-27c273a60788/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/e8101a-240f-4e32-a097-27c273a60788/1/AoNhMH79nzq-_mm9FN4OG9YLbmo.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.25.124.0/23
Signature Algorithm: sha256WithRSAEncryption
6d:a7:76:a2:23:32:58:55:e7:08:d9:a2:1f:fb:10:88:16:55:
b1:6e:5f:6b:f0:47:f3:3d:8f:46:65:b0:28:4c:0c:13:87:e0:
05:75:fd:5f:f4:19:b6:58:6b:40:cf:ab:2f:d9:21:0b:21:a5:
ef:45:4b:a3:80:c0:fe:2e:c2:71:d7:6d:54:92:e3:2c:a6:78:
b2:c7:d0:3b:1b:b6:21:a2:e0:d1:0f:bb:55:db:c2:fe:fd:f2:
7e:88:84:39:9d:1a:70:b3:0e:31:53:34:cc:c6:3a:01:c9:6d:
22:f5:75:7c:1b:5c:b8:b4:65:bb:2a:80:3a:25:8f:ee:34:32:
21:48:b7:73:2d:3a:1c:2d:db:90:06:3b:cf:a7:c6:9c:e8:65:
dc:3b:3a:aa:43:53:f1:5a:2b:34:d0:31:36:df:fc:e9:f3:09:
40:8c:77:a3:4e:21:4a:54:52:0c:1f:fb:3c:e7:3d:78:4b:0a:
a6:78:55:3b:38:27:80:b0:f5:7b:df:ad:78:bb:55:e8:76:5e:
8c:03:78:f3:e0:59:0c:90:33:97:1f:64:7c:d3:70:86:06:c6:
91:08:e8:55:36:58:fe:fe:60:ed:8b:0d:04:17:2e:1c:64:70:
0c:df:2d:bd:12:b4:88:dc:f1:c6:01:22:57:3f:f0:74:2b:44:
58:68:ba:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 20 03:42:53 2024 by rpki-client on console-ams.rpki-client.org