Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/NbA-yF0IYHprHd8f553GUcz-Pzc.cer
File: NbA-yF0IYHprHd8f553GUcz-Pzc.cer (raw, json)
Hash identifier: UaBP98cvKZtWvu9Dv2rGPZlEcjr+9UUBGV5D4c/VY4o=
Subject key identifier: 35:B0:3E:C8:5D:08:60:7A:6B:1D:DF:1F:E7:9D:C6:51:CC:FE:3F:37
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC56ED0D9F9BD19BC7CED4C6881C232DA
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/95/cc4fe9-e48c-42da-97ea-ab57cabc18f7/1/NbA-yF0IYHprHd8f553GUcz-Pzc.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/95/cc4fe9-e48c-42da-97ea-ab57cabc18f7/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 14:30:23 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 44134
IP: 79.142.224.0/20
IP: 217.71.0.0/20
IP: 2a02:2190::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:d0:d9:f9:bd:19:bc:7c:ed:4c:68:81:c2:32:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 14:30:23 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=35b03ec85d08607a6b1ddf1fe79dc651ccfe3f37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:c3:79:6a:ed:7a:ad:3b:c0:5e:32:b9:39:72:
fb:d6:01:65:b6:50:6c:a0:22:56:bf:ad:21:ed:51:
ed:90:dd:12:27:5b:21:07:d2:f7:e8:05:0f:8d:66:
f0:55:56:0d:61:23:18:b0:d1:df:5a:21:74:05:c7:
94:ee:01:6a:dc:b8:8e:e2:3c:4a:e7:8a:43:19:84:
8c:bb:76:c3:21:1a:a5:00:19:28:56:a2:be:e6:e7:
83:8f:a2:7c:2d:4e:74:2b:69:74:16:dc:75:20:91:
65:79:37:64:9c:e6:ef:9a:9b:38:86:d8:70:bd:07:
96:d4:4a:4b:bc:5f:c9:85:bf:f8:31:5f:be:63:d8:
b1:68:29:cf:e9:8f:ee:e4:72:6b:ab:f5:a1:4b:ec:
e3:4a:50:d1:e0:87:9e:b1:65:04:44:e6:d7:e4:5b:
22:7d:98:2d:39:5a:76:ce:13:c5:a4:bd:c3:04:e7:
d9:a5:df:6b:b8:2b:b1:8a:f5:17:26:12:40:1c:99:
39:78:43:b3:b3:e9:aa:c5:d3:79:3e:91:b9:18:89:
25:68:0f:d5:ae:d8:c0:b9:73:ee:9a:c3:44:81:c8:
9d:d3:e3:69:c2:e0:88:27:ee:f1:82:3e:de:fe:5a:
2a:55:08:9a:94:2d:df:0c:0c:cf:00:2d:73:94:87:
00:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:B0:3E:C8:5D:08:60:7A:6B:1D:DF:1F:E7:9D:C6:51:CC:FE:3F:37
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/cc4fe9-e48c-42da-97ea-ab57cabc18f7/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/cc4fe9-e48c-42da-97ea-ab57cabc18f7/1/NbA-yF0IYHprHd8f553GUcz-Pzc.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.142.224.0/20
217.71.0.0/20
IPv6:
2a02:2190::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
44134
Signature Algorithm: sha256WithRSAEncryption
2c:36:31:20:78:62:26:f5:cf:af:58:d9:82:e6:9d:4c:fd:5a:
12:b2:5a:d6:ce:ba:1c:00:43:7f:c3:2f:75:b7:4e:5a:be:f1:
57:68:ed:88:96:82:8c:7d:d2:18:60:b6:26:83:6e:bf:48:0d:
2d:ee:35:32:7c:a4:bd:62:15:68:b3:64:dc:61:14:43:1f:25:
2f:be:69:9e:9a:9a:65:01:5e:74:25:c5:7c:c2:8d:40:ec:e6:
85:50:16:ae:de:06:a0:b3:69:24:03:d5:d4:16:74:2f:f3:6b:
21:5e:72:9f:d2:8a:b5:5e:f9:44:2c:54:cc:67:5e:44:36:24:
15:90:e7:5e:1e:98:aa:c6:80:2c:04:5c:32:fb:71:e9:0e:cf:
61:b0:cf:24:6a:fe:1d:da:88:29:7a:59:0c:f2:8c:38:71:7b:
a1:26:85:95:dd:da:07:9a:a3:5f:dc:b4:7a:3b:87:f1:b1:27:
92:61:60:31:9f:c4:65:62:24:27:94:43:3b:9c:75:32:6f:7d:
06:23:e8:86:c3:f7:d4:7d:b1:42:1b:2e:9e:20:4a:a2:47:f8:
4f:c9:57:96:f4:51:55:00:4a:ff:9c:50:1c:20:1d:6a:72:e5:
bc:6c:58:a0:36:db:16:c0:28:9d:1f:88:8b:ae:ec:ed:fa:f7:
a2:a5:7a:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 07:31:09 2024 by rpki-client on console-fra.rpki-client.org