Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/H2_gB5F-tjJ74wYamvbsVI01MGY.cer
File: H2_gB5F-tjJ74wYamvbsVI01MGY.cer (raw, json)
Hash identifier: ZkIe6axghAZ3Bz3nRkJDX/1XLdpHR/eM2q+k5fOZpak=
Subject key identifier: 1F:6F:E0:07:91:7E:B6:32:7B:E3:06:1A:9A:F6:EC:54:8D:35:30:66
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC726E170F77376D1D6E4884D1F3E68A0
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/0b/1555b8-853d-43d6-8124-09b3b8722688/1/H2_gB5F-tjJ74wYamvbsVI01MGY.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/0b/1555b8-853d-43d6-8124-09b3b8722688/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 22:31:03 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 47504
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:26:e1:70:f7:73:76:d1:d6:e4:88:4d:1f:3e:68:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 22:31:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1f6fe007917eb6327be3061a9af6ec548d353066
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:0e:3c:68:0a:69:cb:a2:4a:61:6e:d5:22:9d:
4f:14:45:fe:c3:a9:16:6e:07:4e:f3:66:ca:f6:d7:
4e:5b:ac:16:1d:68:c9:4f:84:03:2e:1f:8f:88:99:
2f:19:af:8a:66:76:0a:9a:3e:20:b1:e7:c5:0c:05:
9a:e8:92:a0:03:6c:52:bd:a2:f3:93:f5:59:27:f1:
bc:60:b7:c4:32:6f:a4:c3:eb:82:6e:b2:88:8b:48:
ee:ec:75:39:83:f3:f5:74:82:1a:ec:87:1b:2e:75:
d5:d8:93:99:bb:f5:5e:99:73:af:e5:21:bf:be:20:
13:8c:0f:b4:da:b4:71:83:b7:11:0f:78:e4:6c:5a:
f1:29:d9:c4:c9:bc:85:6e:8b:ea:c4:54:ed:bb:6c:
62:eb:7c:cf:7b:1a:7e:86:30:23:1f:b2:c9:38:86:
7e:13:74:e2:07:ec:72:11:54:3e:bf:28:40:6c:f3:
76:29:2d:10:30:90:dd:e9:4b:49:29:81:9d:0e:98:
fa:f3:f4:7c:b6:30:4d:06:d9:d9:3c:99:1c:f1:b4:
77:0b:f4:4c:db:31:9c:99:98:b2:ec:02:9b:d9:f5:
83:eb:f8:2c:62:d3:be:b3:8e:df:a8:ec:47:2b:d4:
1a:ce:d6:47:f7:e4:8d:de:28:fe:e2:7e:77:fb:47:
42:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:6F:E0:07:91:7E:B6:32:7B:E3:06:1A:9A:F6:EC:54:8D:35:30:66
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/1555b8-853d-43d6-8124-09b3b8722688/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/1555b8-853d-43d6-8124-09b3b8722688/1/H2_gB5F-tjJ74wYamvbsVI01MGY.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
47504
Signature Algorithm: sha256WithRSAEncryption
9d:fb:bd:a4:0a:3d:41:f5:1f:0f:5b:38:f6:57:dd:43:f1:41:
50:56:19:f5:8e:00:3a:d8:f8:57:e2:5b:ea:2e:e6:47:ec:cf:
1a:fa:ae:62:a9:ed:2b:5f:fb:1a:8b:f7:37:04:2a:0b:8f:cf:
d4:eb:a8:27:18:d6:67:15:10:1e:31:13:e5:e9:7f:62:57:d7:
a5:2a:32:5a:db:d5:e5:01:08:f0:80:e8:3a:21:42:16:56:97:
ea:01:53:80:cb:36:35:c4:76:c9:ad:31:12:ed:2e:cc:04:0f:
b2:ae:59:ae:e5:f7:14:84:f0:7a:f2:73:b0:d8:4e:52:85:2c:
31:90:12:4b:5e:92:52:45:30:64:c7:fe:fa:99:4c:09:a1:44:
b4:83:32:de:e7:8b:67:ba:2e:68:b7:00:f3:f4:e9:fb:6a:b1:
ab:11:48:05:bd:03:63:af:5a:64:d3:f4:e7:65:2a:11:49:fe:
b2:15:46:6c:b5:0c:49:35:1a:b9:2f:ca:7b:07:87:8c:7f:0e:
91:a7:39:e8:e8:21:18:25:64:41:33:b2:c3:f6:de:f9:45:8e:
41:4a:69:ef:a2:86:15:80:d5:3e:9d:70:a6:e0:99:3c:b9:62:
57:fc:22:79:44:51:58:d7:fd:d0:78:fb:48:9f:ae:55:c6:7e:
d9:f3:00:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 09:01:04 2024 by rpki-client on console-ams.rpki-client.org