Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/CoqmyCQEUjcdM7Wcc97etS5-GTE.cer
File: CoqmyCQEUjcdM7Wcc97etS5-GTE.cer (raw, json)
Hash identifier: y2K4RDgj22am7vQiPaxXVZvQ5XhVYJBpk/vDWC1RuP8=
Subject key identifier: 0A:8A:A6:C8:24:04:52:37:1D:33:B5:9C:73:DE:DE:B5:2E:7E:19:31
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC4932D3D042D2539154C20F44B3E39E5
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/ae/c75eb2-a273-4ced-b289-cdbdeaf3dc7a/1/CoqmyCQEUjcdM7Wcc97etS5-GTE.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/ae/c75eb2-a273-4ced-b289-cdbdeaf3dc7a/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 10:30:28 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 216367
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:93:2d:3d:04:2d:25:39:15:4c:20:f4:4b:3e:39:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 10:30:28 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0a8aa6c8240452371d33b59c73dedeb52e7e1931
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:17:b1:08:f4:a5:2a:93:5a:72:a4:95:67:c1:
e4:df:03:e8:3b:c9:17:3a:1a:82:5c:6a:f6:26:46:
69:95:4c:9b:aa:e6:49:eb:aa:91:4d:55:ee:73:02:
08:b6:d9:7f:d2:e8:5d:74:17:b5:44:ea:04:20:20:
7d:a1:ee:27:87:12:89:10:5b:aa:f9:ff:46:01:0c:
90:52:92:5f:e9:14:ba:62:07:7f:c8:8a:ef:35:b1:
1e:5d:c0:d7:e2:50:b1:bb:b5:c4:c2:10:20:a6:dd:
7e:93:98:a8:e2:cb:bc:5e:37:6c:68:a7:c4:79:d2:
14:87:62:68:e1:75:54:fb:b6:92:59:bf:66:70:98:
29:de:cf:6e:4e:a4:a7:3f:1b:fd:52:26:4b:ce:de:
77:90:c5:9d:3d:3d:c9:78:7a:a2:a2:01:3d:6c:f7:
48:06:bd:a4:a4:85:30:7d:50:34:92:74:75:b5:e4:
f1:4a:3b:39:f6:13:26:2e:aa:85:d8:7d:eb:0d:e7:
2c:10:63:28:92:b0:e0:10:1b:71:20:51:33:46:69:
20:0a:85:9a:37:ba:fe:5c:6a:80:3e:45:12:f8:74:
e6:39:32:fb:c1:68:5c:0c:48:3c:84:00:58:0e:36:
6d:8d:37:56:21:b5:d7:e0:e3:60:16:9e:db:b0:85:
25:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:8A:A6:C8:24:04:52:37:1D:33:B5:9C:73:DE:DE:B5:2E:7E:19:31
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/c75eb2-a273-4ced-b289-cdbdeaf3dc7a/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/c75eb2-a273-4ced-b289-cdbdeaf3dc7a/1/CoqmyCQEUjcdM7Wcc97etS5-GTE.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
216367
Signature Algorithm: sha256WithRSAEncryption
b1:7a:30:34:a1:95:fe:bc:06:10:89:f7:53:a1:e3:fa:ea:c5:
1a:22:91:92:bc:61:be:94:ce:21:ee:36:7d:4e:43:50:38:21:
4c:a8:a2:16:d2:d9:b3:c1:a6:2e:f5:c2:86:7a:d4:06:0d:c0:
1a:95:66:66:c0:e0:7c:c8:b7:58:a2:d0:bb:f1:e6:86:2a:d4:
0c:3b:a1:f3:b6:6e:f5:ef:4b:54:ef:ea:b7:1b:d4:57:e1:1c:
41:d6:d2:e4:6a:56:27:84:46:83:4a:cf:93:8c:53:f0:c3:72:
f9:8a:0e:73:2a:f8:83:e7:d6:84:d1:7e:cd:18:c8:e3:d5:48:
dd:32:82:18:13:bd:e8:71:45:23:81:d0:fa:e1:06:10:58:14:
41:34:a6:8d:bc:13:b6:d5:e5:b5:02:b5:15:54:94:22:46:2b:
b8:16:45:2e:b3:15:75:9c:41:83:49:fe:6a:41:7c:45:e2:fa:
de:70:79:a1:52:4e:87:75:c2:e1:94:bb:af:76:a9:16:a0:8b:
a9:01:07:b0:76:be:c5:79:00:9a:51:a8:b8:56:df:27:92:cc:
5a:0e:f4:fd:29:41:fb:a8:d2:9d:2e:17:e1:95:f2:40:f7:59:
14:b1:88:93:a8:33:86:fc:62:e7:b5:c7:80:b0:45:52:43:63:
0e:4b:21:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 02:45:48 2024 by rpki-client on console-fra.rpki-client.org