Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/K-U9NAqL9Hwb800yVeEC77GBrRk.cer
File: K-U9NAqL9Hwb800yVeEC77GBrRk.cer (raw, json)
Hash identifier: sSCLM1nbagimB1iDRAO+6kuLPFP7OrII/eVZb7VTJ4g=
Subject key identifier: 2B:E5:3D:34:0A:8B:F4:7C:1B:F3:4D:32:55:E1:02:EF:B1:81:AD:19
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC9BC32FA3220A7BE4523DDC9859D9499
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/e7/f72562-45f5-4019-83a1-74f0c3e663cb/1/K-U9NAqL9Hwb800yVeEC77GBrRk.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/e7/f72562-45f5-4019-83a1-74f0c3e663cb/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 10:33:23 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: IP: 46.236.0.0/18
IP: 81.29.64.0/19
IP: 89.151.64.0/18
IP: 178.236.144.0/20
IP: 185.68.112.0/22
IP: 2a02:16f8::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 11:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:32:fa:32:20:a7:be:45:23:dd:c9:85:9d:94:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 10:33:23 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2be53d340a8bf47c1bf34d3255e102efb181ad19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:b7:c0:93:7f:c2:76:3e:4a:ad:f6:a4:22:52:
a8:44:d6:6d:45:62:2b:03:7a:11:d8:3a:50:3b:65:
01:7e:b7:0e:ef:11:5a:c4:86:df:07:4c:99:64:d1:
50:5d:29:ea:38:94:40:d1:70:81:c3:e5:11:bb:1c:
b8:a9:8e:b8:e7:32:98:12:dc:43:a1:6a:ba:31:48:
fd:28:53:f0:95:63:bf:97:4b:41:3a:e6:a3:a2:90:
8c:3c:d7:0b:cf:5e:4f:90:dd:f9:2c:bf:29:7b:c1:
b3:38:40:c1:15:81:f3:e8:13:69:e0:bc:71:3c:6a:
4b:9a:1f:66:16:a7:c4:b6:c2:88:f1:2c:d7:ad:a4:
a6:19:1c:a5:21:fd:75:55:6b:5e:77:aa:09:37:69:
5d:7b:2d:4b:cd:0d:e5:3b:b3:a2:17:00:06:bc:fd:
75:11:d0:03:17:a3:df:46:a1:d2:ee:b6:95:31:0d:
99:de:d8:6d:77:d7:6c:96:ec:97:d7:e3:50:3b:88:
2c:c7:7d:73:61:44:92:61:c9:45:c6:0c:01:bb:71:
c7:88:01:37:4a:9f:89:30:61:98:4a:a8:9c:31:55:
c1:6f:cf:e0:7c:31:e6:65:7e:bc:9d:8f:a1:89:73:
70:d2:f8:a0:e9:bb:96:c2:77:34:09:da:98:70:7b:
62:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:E5:3D:34:0A:8B:F4:7C:1B:F3:4D:32:55:E1:02:EF:B1:81:AD:19
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/f72562-45f5-4019-83a1-74f0c3e663cb/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/f72562-45f5-4019-83a1-74f0c3e663cb/1/K-U9NAqL9Hwb800yVeEC77GBrRk.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.236.0.0/18
81.29.64.0/19
89.151.64.0/18
178.236.144.0/20
185.68.112.0/22
IPv6:
2a02:16f8::/32
Signature Algorithm: sha256WithRSAEncryption
64:47:dc:bc:da:6b:ce:69:27:91:fc:38:6b:75:1c:2e:7c:47:
45:6a:3c:2f:b3:69:9c:a7:13:d4:da:18:8e:0b:99:23:da:7d:
db:f8:a2:bb:7c:28:90:85:a7:a0:9b:6b:99:e6:90:a2:ba:23:
43:ff:7f:a9:c8:08:85:ce:00:e9:ad:40:d9:1b:c4:58:c3:71:
1b:23:5e:eb:8e:4c:c6:9e:3c:4c:73:38:5a:28:82:c0:5f:69:
a5:18:e1:66:5a:c1:05:44:f1:0e:8f:d8:6a:4e:07:d6:58:6d:
76:81:eb:d0:39:98:0b:be:3e:53:47:37:68:09:f2:6d:51:64:
b4:22:3a:5a:b1:80:ca:e3:88:22:7d:c3:ce:44:28:c1:58:36:
34:b9:f5:2d:48:d0:5d:a8:7a:6f:fb:82:56:1a:e8:24:35:3b:
0d:e9:c5:f3:b5:69:54:4e:3b:8e:16:36:c7:e9:15:d6:0d:7d:
89:6e:44:4c:06:ce:10:70:ea:74:bc:99:f3:b1:51:d3:e8:66:
48:a7:45:5d:a9:a4:61:4b:03:5f:f2:b0:73:08:c1:06:2e:a9:
31:5a:d5:26:91:69:f4:e9:b9:cb:02:77:d4:6b:f7:1a:d1:23:
d6:a7:b1:28:20:1f:3f:d1:ed:ce:fc:41:88:03:f4:f4:3c:38:
43:0a:8b:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 13:10:22 2024 by rpki-client on console-fra.rpki-client.org