Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/GePRH3Ldvtg2EoW0mbkyGRIDt1Y.cer
File: GePRH3Ldvtg2EoW0mbkyGRIDt1Y.cer (raw, json)
Hash identifier: fUKq0rlVn8dYqK47rQoPE0l1h/syX4pqPxibSyCLDWA=
Subject key identifier: 19:E3:D1:1F:72:DD:BE:D8:36:12:85:B4:99:B9:32:19:12:03:B7:56
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018EBD421A77E1D3EC96F2AD6EBDCDBC8528
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/a7/c5f7b8-d2c1-46de-9db4-069bfaf2bce4/1/GePRH3Ldvtg2EoW0mbkyGRIDt1Y.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/a7/c5f7b8-d2c1-46de-9db4-069bfaf2bce4/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 08 Apr 2024 10:30:09 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: IP: 193.109.252.0/24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:bd:42:1a:77:e1:d3:ec:96:f2:ad:6e:bd:cd:bc:85:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Apr 8 10:30:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=19e3d11f72ddbed8361285b499b932191203b756
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:9a:57:27:8a:69:f6:a3:44:ee:8c:f0:63:fb:
0e:73:48:c4:a2:d4:fc:de:a0:d0:98:59:bc:7f:6f:
7d:10:9b:4b:35:25:1c:f9:75:49:b9:11:ea:0a:e2:
07:9a:67:2b:e4:fe:3c:5b:a2:ed:d0:81:09:56:0c:
b8:84:84:17:e8:6f:91:c3:33:e1:c6:45:db:ef:a1:
22:2f:1a:5e:24:75:39:8d:9d:0e:a6:c5:01:fb:a5:
4c:71:2a:25:95:15:b9:34:ba:e0:23:4c:28:87:79:
d4:f5:f9:d4:0a:be:98:ab:72:2b:f0:25:09:b3:3e:
ee:25:7e:8a:4a:a3:a6:6a:8d:77:32:45:3a:d1:19:
0e:b3:f0:e0:c0:e4:36:52:a9:65:9c:2a:42:f9:76:
cf:37:32:75:f4:26:ba:f5:65:ba:68:01:53:a4:a7:
2f:f1:de:29:62:fa:ed:1c:81:25:a8:65:f8:4d:1a:
46:a4:f0:95:06:de:5c:13:c0:4c:39:c9:c2:26:44:
d5:02:16:c9:fd:c1:5f:8c:db:f3:b0:21:57:5b:21:
1c:dc:38:56:76:e5:49:53:58:40:e1:8b:7d:88:2d:
9f:3b:96:0c:65:e6:44:28:20:f7:fe:62:84:36:5d:
97:d6:c3:0b:04:bb:85:14:aa:2f:69:43:05:ce:52:
5c:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:E3:D1:1F:72:DD:BE:D8:36:12:85:B4:99:B9:32:19:12:03:B7:56
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/c5f7b8-d2c1-46de-9db4-069bfaf2bce4/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/c5f7b8-d2c1-46de-9db4-069bfaf2bce4/1/GePRH3Ldvtg2EoW0mbkyGRIDt1Y.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.109.252.0/24
Signature Algorithm: sha256WithRSAEncryption
42:89:4e:0d:9b:24:9d:82:14:ed:ad:dd:7b:f8:51:fd:82:ea:
a0:f6:86:ef:56:d7:3b:c1:cc:3b:15:fc:29:14:40:6e:71:72:
7e:e4:d5:49:41:b0:13:95:8e:98:b4:92:88:ab:f1:af:3c:6a:
fd:29:58:4e:67:28:6b:9f:a7:20:ec:7a:26:aa:3b:c0:2b:55:
dc:c2:e4:a7:d9:94:8d:fa:00:65:e1:22:b3:37:6b:d1:d6:67:
67:85:8a:e4:3d:1b:5a:db:db:dc:c5:b8:26:f5:de:df:ae:78:
3a:7f:8e:8b:b2:b9:bc:58:19:99:84:07:4e:a7:08:ab:8d:c9:
67:c0:72:04:10:d7:ff:93:d3:8a:de:b3:ec:c0:5f:dc:52:c9:
d1:c1:fb:31:72:9d:25:e1:bb:cb:51:d1:0e:3a:83:56:24:b9:
4c:f1:30:6e:be:20:5c:b1:82:d9:50:e4:e4:54:f5:60:fb:5a:
3d:5a:c1:3f:44:3b:75:b1:14:f3:72:48:d6:0c:c8:85:9a:fb:
ec:7d:56:1c:ae:b0:28:b0:38:a3:7a:e7:ed:98:07:6a:df:ec:
39:fe:de:bd:88:6d:f1:f9:f3:a3:72:3e:22:79:f6:f1:49:e3:
4c:4b:7a:25:17:77:7e:74:5b:50:c0:bf:c1:82:3e:c8:1c:70:
93:21:6e:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 11:26:10 2024 by rpki-client on console-ams.rpki-client.org