Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/JKtnE2v5kKqL6IV6aNLDmezWKZo.cer
File: JKtnE2v5kKqL6IV6aNLDmezWKZo.cer (raw, json)
Hash identifier: tvlE+BkFaDbVpmJ1QD5AIC8Y/jGFkQBtLn7R79JIe9E=
Subject key identifier: 24:AB:67:13:6B:F9:90:AA:8B:E8:85:7A:68:D2:C3:99:EC:D6:29:9A
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC7954F704AC40823EA71A277AA7237A2
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/20/088521-2398-457b-b1e3-dd3360393391/1/JKtnE2v5kKqL6IV6aNLDmezWKZo.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/20/088521-2398-457b-b1e3-dd3360393391/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 00:31:40 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: IP: 194.127.176.0/24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:95:4f:70:4a:c4:08:23:ea:71:a2:77:aa:72:37:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 00:31:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=24ab67136bf990aa8be8857a68d2c399ecd6299a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:c6:45:88:86:c4:87:42:1d:02:81:e6:d7:fc:
3b:5c:b6:ed:bb:bc:48:87:f9:08:0d:c1:99:2a:60:
37:d8:9e:0c:d8:eb:05:f6:7f:19:9d:b5:79:b5:e6:
dd:ed:c5:e8:e1:89:9a:b6:35:b6:f6:e5:ad:88:0a:
d4:5a:0a:99:e7:f4:05:19:99:a1:f9:7c:5a:cc:c9:
dd:20:c8:20:dc:36:44:e3:68:1b:68:45:5f:56:85:
17:c0:c5:6d:2e:fd:6c:1f:a8:da:d6:80:cc:4b:7f:
2d:74:23:ad:14:c1:78:34:64:8c:e6:e0:a2:4b:d5:
e2:3a:da:00:73:d5:00:91:5c:53:9d:f4:12:54:f0:
ff:92:3d:0c:64:76:1f:f5:bd:83:3a:ee:61:51:a5:
d3:44:f3:97:7f:fe:24:e5:f9:ea:be:25:4f:44:aa:
00:3d:9a:c9:02:0a:bc:a9:bb:bd:57:db:98:a2:94:
34:f2:aa:58:3b:d3:44:70:01:21:e7:7e:37:a6:03:
6e:d5:ef:39:bb:e3:e8:b5:05:30:a4:db:dd:cb:dc:
e7:01:af:1d:0b:e4:29:79:d1:c2:24:9d:22:a8:bd:
79:c5:c1:9d:1d:9d:12:c0:76:02:3f:5a:08:6f:ff:
d3:a9:3f:d9:06:92:04:c6:fd:3d:c1:fe:f2:41:76:
53:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:AB:67:13:6B:F9:90:AA:8B:E8:85:7A:68:D2:C3:99:EC:D6:29:9A
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/088521-2398-457b-b1e3-dd3360393391/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/088521-2398-457b-b1e3-dd3360393391/1/JKtnE2v5kKqL6IV6aNLDmezWKZo.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.127.176.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:99:27:2d:cd:3d:17:75:92:1e:64:bd:f6:cc:42:8e:2e:db:
5c:50:97:60:d3:c1:e8:43:8f:dd:bb:82:ee:7c:ca:54:0b:63:
ac:96:7e:2d:be:72:8b:10:2a:41:79:8a:7a:28:b9:cc:e1:ea:
7d:d9:30:d9:e2:4d:9e:3a:4b:69:e4:fd:1b:d7:e8:18:b3:6c:
69:a4:b8:34:08:5c:26:d1:23:53:d9:92:5b:d7:54:c7:bd:18:
d6:8a:13:da:00:bc:a7:ea:81:53:cc:11:ee:21:f6:cb:fb:5a:
c8:72:85:88:5d:7e:36:53:42:9a:8e:bb:df:9a:df:1d:36:89:
de:7c:54:f1:23:e2:c4:d8:82:c1:16:c8:10:94:ca:aa:ef:db:
71:51:75:49:1d:2b:ef:1d:a4:84:cc:e8:c5:c0:c8:77:15:12:
f0:9c:73:98:77:2f:09:e3:cd:53:9b:6a:84:c4:83:11:e3:c5:
48:a8:fc:e6:26:5d:d6:ff:f5:81:08:f1:42:c2:72:51:0c:04:
96:d4:9c:30:cd:69:56:21:bb:16:f7:c5:c3:c2:12:a0:77:f5:
8d:0d:b2:5a:f1:69:d7:31:14:cf:29:f5:52:d1:5f:dc:fd:36:
5e:9d:fb:97:2e:2f:f3:7f:c1:c5:80:a3:d5:8f:7b:63:f9:5a:
84:29:51:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 01:40:09 2024 by rpki-client on console-ams.rpki-client.org