Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/BoekrKWB2OvN_iS2Xx5woS8omng.cer
File: BoekrKWB2OvN_iS2Xx5woS8omng.cer (raw, json)
Hash identifier: BFBm5nVC7v5g1JOOEYW+5HpK6ll1VdUc5SP9QzUzX5E=
Subject key identifier: 06:87:A4:AC:A5:81:D8:EB:CD:FE:24:B6:5F:1E:70:A1:2F:28:9A:78
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC6B913CC63CEA8550A1B86C412DCB142
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/bc/9df11b-0187-4a91-b5d1-2d28a19135fd/1/BoekrKWB2OvN_iS2Xx5woS8omng.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/bc/9df11b-0187-4a91-b5d1-2d28a19135fd/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 20:31:07 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 49277
IP: 193.33.176.0/23
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 16:12:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b9:13:cc:63:ce:a8:55:0a:1b:86:c4:12:dc:b1:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 20:31:07 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0687a4aca581d8ebcdfe24b65f1e70a12f289a78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:5b:0d:ba:4a:44:29:b7:3b:54:7a:d2:be:1e:
b3:11:18:2b:5f:a4:37:8d:90:0c:08:57:c2:92:1a:
9b:45:9c:d6:0d:61:81:23:1e:9b:91:e9:8d:91:f9:
32:19:75:4b:7a:a1:f9:65:69:2d:3a:60:3c:92:ad:
c5:f5:9d:fe:3e:35:5e:7a:fd:d4:19:8a:f0:43:83:
72:d9:53:1b:c5:37:32:8b:3c:f2:5a:fa:a0:2c:7b:
3b:e2:d7:8c:0f:6a:7f:93:41:69:e3:96:f3:d0:53:
25:21:a0:13:65:c6:6e:0b:c4:2e:e5:75:6b:fb:94:
dc:20:a7:b0:23:b3:bf:18:f5:06:a9:77:4d:69:65:
02:1a:ff:e1:e4:f6:7e:d6:d8:f0:3b:cd:7b:86:a5:
21:55:52:97:ed:3a:1b:0c:3c:bf:29:5b:05:ae:f6:
f9:8a:75:a2:c8:c0:b9:65:1e:ce:6b:42:f3:d7:06:
49:ee:df:fc:74:36:6b:25:1e:8f:62:5c:13:98:46:
be:32:a0:d7:1e:15:bb:07:30:7b:38:58:a2:83:1e:
04:94:a4:01:45:1d:ae:b9:2b:f3:91:a9:af:1d:e0:
25:eb:d4:81:6a:98:42:62:66:27:00:f8:ce:bc:64:
65:27:73:20:85:be:df:3d:68:3d:9c:f7:ea:93:19:
8c:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:87:A4:AC:A5:81:D8:EB:CD:FE:24:B6:5F:1E:70:A1:2F:28:9A:78
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/9df11b-0187-4a91-b5d1-2d28a19135fd/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/9df11b-0187-4a91-b5d1-2d28a19135fd/1/BoekrKWB2OvN_iS2Xx5woS8omng.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.33.176.0/23
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
49277
Signature Algorithm: sha256WithRSAEncryption
1b:1d:7b:5f:28:9e:41:b1:b9:f9:2d:34:ee:61:9d:1d:d1:f2:
2a:21:3a:d0:ae:36:17:99:59:54:6e:cb:79:f1:2d:d6:17:0b:
16:ae:f0:99:5b:b2:9a:f0:e7:70:dc:36:4e:95:37:d1:56:27:
05:60:12:26:80:db:6e:4d:32:7c:a6:b8:9e:b2:bf:d0:a8:eb:
f4:89:3c:5d:83:27:0a:63:03:c2:b1:eb:74:75:17:19:06:f7:
7d:a9:c6:dd:92:70:17:39:d2:86:dd:64:1f:33:f3:40:48:8d:
45:05:8e:d6:ec:3a:11:ce:1e:0b:b2:23:f4:bd:ae:74:8c:18:
26:3f:32:cf:8c:46:a7:f7:81:46:a3:fd:27:bd:a3:32:c3:ea:
0d:19:6b:05:4f:c1:74:fb:0d:be:2d:b2:5d:75:40:50:f7:e6:
5e:3a:b8:0f:a6:40:ce:89:9f:f9:93:cb:6c:0f:71:9c:7b:e8:
ca:eb:52:77:9c:df:3a:37:00:e8:1a:d2:e2:dd:1c:a5:f3:a1:
90:14:41:b1:4d:31:12:24:b7:f6:94:98:17:9e:d6:77:9d:15:
03:93:52:46:a5:9d:b4:0b:bb:9c:8f:2d:29:a9:58:0d:8b:87:
c8:f4:8b:60:4a:9a:f3:57:ae:56:1e:6d:21:a8:28:ae:93:62:
80:89:1a:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 26 00:44:38 2024 by rpki-client on console-fra.rpki-client.org