Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/Iaw4_oEF-1mizSV_UZ-FhZWEAwE.cer
File: Iaw4_oEF-1mizSV_UZ-FhZWEAwE.cer (raw, json)
Hash identifier: 8VYwOxmpDem7E6wyjxlixgWUUj0ssgzKOvcPakWbOms=
Subject key identifier: 21:AC:38:FE:81:05:FB:59:A2:CD:25:7F:51:9F:85:85:95:84:03:01
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018D74C50487C50412FBB5613DA0340CC260
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/c8/345c62-2e0a-4ce1-befb-0cf54cfa8da1/1/Iaw4_oEF-1mizSV_UZ-FhZWEAwE.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/c8/345c62-2e0a-4ce1-befb-0cf54cfa8da1/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Sun 04 Feb 2024 15:38:05 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 215601
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:74:c5:04:87:c5:04:12:fb:b5:61:3d:a0:34:0c:c2:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Feb 4 15:38:05 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=21ac38fe8105fb59a2cd257f519f858595840301
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:f7:1b:f9:52:da:9f:b8:e6:c8:92:ec:f0:1f:
3f:98:7c:e3:5e:f2:2a:fc:90:f7:e2:cb:28:31:aa:
2b:3b:63:ec:27:59:90:85:39:be:4a:5c:88:82:71:
6a:29:7c:57:76:e5:f9:bc:5a:49:e2:52:76:ff:43:
81:24:0c:14:02:f3:d1:bb:3c:ac:01:dc:0b:3f:77:
17:11:c5:df:7d:af:d9:3b:10:47:21:58:44:8f:ce:
ff:8c:c4:a5:fe:f4:6f:a4:03:8f:08:4c:b3:cd:e3:
f9:31:e1:f0:e2:e9:93:2d:66:44:a4:29:6b:7a:c5:
65:e1:69:14:3c:a7:90:94:68:2d:f2:88:d2:f3:87:
b3:83:a3:2a:34:fb:9e:05:80:fa:81:8f:31:cf:b6:
50:61:02:17:f6:86:9a:be:1e:51:66:c2:f8:23:40:
ea:54:57:68:d5:78:29:dc:98:66:cf:f3:19:81:1b:
e5:86:cf:f8:96:db:81:9a:e8:2c:9f:d5:98:87:f3:
bf:d3:88:6f:17:d4:df:b0:c8:f1:b8:98:07:98:53:
05:f5:84:0b:c1:bb:db:0d:d5:f2:c3:13:ad:27:71:
5b:b1:79:4a:0d:79:3e:29:a3:00:44:ea:9a:ec:cd:
f2:a9:25:97:2c:84:55:29:af:80:5f:64:85:4c:b9:
61:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:AC:38:FE:81:05:FB:59:A2:CD:25:7F:51:9F:85:85:95:84:03:01
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/345c62-2e0a-4ce1-befb-0cf54cfa8da1/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/345c62-2e0a-4ce1-befb-0cf54cfa8da1/1/Iaw4_oEF-1mizSV_UZ-FhZWEAwE.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
215601
Signature Algorithm: sha256WithRSAEncryption
a8:17:d0:46:ea:6e:dc:6d:5c:83:61:b9:88:b5:4a:ab:9a:26:
b4:aa:54:8f:00:d3:09:f6:2b:f7:42:a2:1c:3f:f4:9c:2a:32:
6c:48:7b:27:44:a7:63:3e:e0:c2:0d:82:ad:ed:06:00:7b:8e:
4a:c4:48:bf:ce:12:e9:d1:a5:13:ec:de:76:31:a1:1d:c0:f6:
8f:d5:6e:03:bb:b6:f8:28:12:a8:4e:d1:32:61:0b:4d:9f:43:
b3:e9:0c:d0:8c:e1:ea:a4:2b:5b:43:07:00:27:4b:72:0b:62:
1b:71:84:85:a3:8e:9c:d3:3b:5e:53:c8:1d:35:83:98:b9:50:
d7:03:2d:94:27:15:9d:5b:d4:17:63:a5:a2:14:95:5b:3d:8d:
ba:31:5c:d6:1a:72:34:90:b9:cd:07:da:65:6b:08:be:1c:d2:
a7:55:d3:f0:0f:70:f1:ac:ca:48:db:a0:db:55:3d:f2:cd:a9:
4a:5a:91:dd:49:f5:7a:24:05:44:35:06:01:8b:7c:3a:8c:56:
9e:70:b8:98:14:29:b7:ea:27:c6:e4:ee:60:88:93:39:a9:a2:
a3:3e:8b:20:3c:d0:b9:0e:ec:ef:b1:d0:13:39:91:f0:86:81:
e9:0d:e1:b4:93:79:73:64:b0:7e:62:89:85:72:6d:f8:56:54:
59:ad:08:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 07:26:46 2024 by rpki-client on console-fra.rpki-client.org