Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/JgGttY6Dyu5nXc94lUugiqkwGg4.cer
File: JgGttY6Dyu5nXc94lUugiqkwGg4.cer (raw, json)
Hash identifier: JTH4S0k2Ago57MyWQdGsz1mgiaoOEr1Bzb+nU6pTjqw=
Subject key identifier: 26:01:AD:B5:8E:83:CA:EE:67:5D:CF:78:95:4B:A0:8A:A9:30:1A:0E
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC649D804EB1B4407A2B1210B273E31DC
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/df/c699a3-7d51-4b38-809d-1529adb0c9d7/1/JgGttY6Dyu5nXc94lUugiqkwGg4.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/df/c699a3-7d51-4b38-809d-1529adb0c9d7/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 18:29:37 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 215980
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:49:d8:04:eb:1b:44:07:a2:b1:21:0b:27:3e:31:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 18:29:37 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2601adb58e83caee675dcf78954ba08aa9301a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:d3:9f:96:56:f5:ff:3a:c5:80:39:5b:3e:11:
55:b3:b6:84:41:3c:5f:34:ae:3a:66:81:ab:90:1b:
f9:c8:30:f7:b5:b4:08:15:9f:4b:d1:a2:c9:ce:ba:
a0:9b:9c:1e:e3:44:af:74:0d:0f:25:c8:ad:55:99:
6f:02:cb:04:6e:8f:7c:cd:f0:9d:09:4c:c6:cd:a7:
06:fb:b4:5e:c9:74:b6:b5:27:62:a3:18:c0:68:cd:
1d:2f:d8:52:66:ab:38:10:2e:78:68:26:44:1e:ff:
1f:b7:88:37:f7:6b:7b:fc:f3:b9:71:c6:77:92:1c:
a9:3f:f7:77:bf:24:a3:06:9c:58:16:d0:ec:8a:8e:
40:ef:be:68:e8:5d:64:2b:7d:ea:f3:64:99:1e:0a:
77:50:7b:0e:c3:16:c4:02:85:7a:d5:b3:49:2b:82:
73:ed:f0:a1:84:62:37:1c:f2:60:0a:5f:1c:de:b1:
c8:47:7f:66:ad:d3:dd:26:04:be:94:09:d1:50:64:
20:35:8c:5c:65:8d:71:6e:5e:b8:69:4c:e6:8a:2e:
79:b0:c8:c4:ba:64:21:6e:0a:c2:a5:a6:c3:20:a6:
50:3f:1a:96:ba:47:2a:9d:12:bd:be:65:ec:29:32:
9b:a6:72:e1:0b:dc:ab:91:20:04:54:a7:cf:d9:ed:
55:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:01:AD:B5:8E:83:CA:EE:67:5D:CF:78:95:4B:A0:8A:A9:30:1A:0E
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/c699a3-7d51-4b38-809d-1529adb0c9d7/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/c699a3-7d51-4b38-809d-1529adb0c9d7/1/JgGttY6Dyu5nXc94lUugiqkwGg4.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
215980
Signature Algorithm: sha256WithRSAEncryption
29:2f:95:d0:9b:fe:03:ff:8d:ed:c9:0f:5b:68:39:2d:f9:28:
8c:b0:59:28:73:ad:44:dd:28:d3:d3:2d:03:23:25:2e:9e:d4:
7d:c2:3f:46:4a:03:5e:0d:43:25:ec:b8:1f:d3:d1:2c:7e:8a:
05:23:18:d9:29:be:68:3e:70:3e:92:61:b1:0f:22:20:79:6f:
26:d3:4f:75:a1:2c:81:e9:15:96:d4:85:e2:b6:b6:8a:6a:9c:
a6:1d:1b:ca:05:29:33:f9:4e:ba:b0:b2:09:16:1c:af:49:16:
e5:c7:9a:9b:26:f4:93:b0:f6:70:5a:23:20:88:3b:d5:84:9d:
e4:db:13:7c:87:e1:e5:81:6f:72:86:2c:8a:af:1b:27:70:ac:
04:26:20:6b:c3:bd:e2:b5:5e:d9:41:b0:c2:38:8e:4c:2a:f9:
91:6a:f9:e0:a4:e4:ed:70:a8:50:8d:79:f6:88:c2:cb:29:b9:
27:51:59:36:5b:30:56:9d:a9:af:4a:e2:59:d5:71:ee:b6:a1:
58:5c:e1:19:5d:3f:f2:02:cb:6f:af:1e:7c:90:56:70:81:52:
c4:1a:81:4c:1a:cf:e5:b5:5d:87:dd:cc:62:9f:92:a8:e9:78:
fd:85:bc:26:74:b0:de:20:7e:4d:17:4f:30:76:b6:b3:d9:07:
37:51:5d:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 01:40:20 2024 by rpki-client on console-ams.rpki-client.org