Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/DudNGMQEmi2bgSwqWFXP63Wvpmc.cer
File: DudNGMQEmi2bgSwqWFXP63Wvpmc.cer (raw, json)
Hash identifier: B2QmYicz6WiKkH6ICXm4o8m5zHOsDtnefpzFTqUQQMw=
Subject key identifier: 0E:E7:4D:18:C4:04:9A:2D:9B:81:2C:2A:58:55:CF:EB:75:AF:A6:67
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CCA2A66FE4B7A72DBCC7B993B7F07CF1C
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/c2/2c8dbc-40ae-49c6-8dd3-c25debcb1197/1/DudNGMQEmi2bgSwqWFXP63Wvpmc.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/c2/2c8dbc-40ae-49c6-8dd3-c25debcb1197/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 12:33:45 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 60448
IP: 176.98.120.0/21
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 25 Apr 2024 21:23:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:2a:66:fe:4b:7a:72:db:cc:7b:99:3b:7f:07:cf:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 12:33:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0ee74d18c4049a2d9b812c2a5855cfeb75afa667
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:6c:59:6c:f8:06:2d:9f:b7:da:ef:e0:c2:0b:
65:95:0a:30:60:9e:ad:7c:c1:f9:24:6f:bc:28:38:
e4:c5:0b:db:4b:c0:fe:93:69:18:41:75:16:73:85:
bf:46:bb:79:0e:ab:4c:ee:04:0c:f8:6f:5f:6d:d9:
12:95:e7:c3:21:6b:85:93:51:94:3f:4b:ff:69:e4:
42:40:5e:76:f0:ee:b4:96:cd:04:9b:ba:9b:56:30:
d0:a0:e0:8f:3c:58:d7:89:b8:07:3f:ce:05:00:c2:
aa:7a:ff:d3:69:4d:8d:a9:b6:4e:f1:ee:0f:18:f0:
2e:c0:3a:19:a6:4a:c6:de:7d:78:5e:51:b0:d5:44:
5a:0d:76:27:0a:b2:65:86:27:79:82:0e:47:75:ab:
f6:16:a5:7a:a0:95:58:25:78:f0:57:55:22:4e:ad:
df:75:dc:d7:0d:9f:50:3e:96:47:ae:ad:c0:0a:30:
29:01:1c:76:2b:8b:4a:6d:3f:9e:00:8a:af:44:62:
e5:07:08:8a:ad:4b:0b:56:b9:7b:c2:6c:f7:af:e5:
eb:d3:d8:96:80:6f:51:b8:01:aa:50:d0:0b:b5:5a:
e6:51:1f:69:49:92:ea:9e:86:e3:88:af:e0:78:46:
61:7e:ce:cb:57:72:e1:95:fd:7d:2d:a4:44:cd:4e:
be:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:E7:4D:18:C4:04:9A:2D:9B:81:2C:2A:58:55:CF:EB:75:AF:A6:67
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/2c8dbc-40ae-49c6-8dd3-c25debcb1197/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/2c8dbc-40ae-49c6-8dd3-c25debcb1197/1/DudNGMQEmi2bgSwqWFXP63Wvpmc.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.98.120.0/21
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
60448
Signature Algorithm: sha256WithRSAEncryption
9a:80:46:32:45:af:a3:a7:2b:c6:db:f4:42:e8:db:e7:82:f1:
e7:57:04:91:e3:61:88:39:62:a6:6a:4b:09:e4:91:1c:df:a1:
4d:fe:8f:cc:8e:a5:a7:a7:95:ed:8c:f6:ec:d3:9a:e9:03:38:
4f:e6:cc:89:37:ec:b8:a9:c1:e6:8c:a6:f7:20:5d:e1:5e:93:
35:0a:09:e1:e5:09:17:d3:53:f8:67:56:59:4d:4a:f9:aa:64:
c3:99:95:f9:58:9c:2b:c6:9d:84:e2:43:81:67:c3:2a:09:c8:
ca:e6:80:85:f5:21:90:3a:22:63:a7:02:21:ad:f9:09:f2:dc:
43:17:4a:1e:80:5a:d3:d4:71:8a:9f:77:da:5e:91:05:6f:a2:
61:55:32:de:3b:8b:45:50:e1:d3:7e:b0:72:55:97:f9:2a:33:
6d:32:e0:d3:c1:5a:10:54:7e:78:4b:85:74:63:97:79:9a:d0:
b2:8c:0f:a2:f4:ab:b4:e3:9b:bc:a8:0a:94:51:39:e2:af:84:
9a:b1:16:a4:75:18:a2:54:c8:cc:21:94:28:f1:17:be:3c:3f:
4d:5e:6c:87:75:47:57:c3:a1:c6:39:bb:d1:c4:f9:bc:7e:b7:
48:c2:f5:16:4d:07:f3:b4:8e:51:1a:21:7d:e8:ff:15:0c:f5:
fa:9f:be:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 00:22:09 2024 by rpki-client on console-ams.rpki-client.org