Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/NkYhMZiJnt-otCrdRzraIYdI4QQ.cer
File: NkYhMZiJnt-otCrdRzraIYdI4QQ.cer (raw, json)
Hash identifier: Y8Z98Lpupy0vZuG4AaSKY85/nneOVXkeVMyw6nhyrLo=
Subject key identifier: 36:46:21:31:98:89:9E:DF:A8:B4:2A:DD:47:3A:DA:21:87:48:E1:04
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC64B054E70B7BDFE69911923C73943F5
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/9f/376d45-c00a-4ee9-986b-06dc38b57535/1/NkYhMZiJnt-otCrdRzraIYdI4QQ.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/9f/376d45-c00a-4ee9-986b-06dc38b57535/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 18:30:54 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 49593
IP: 193.218.94.0/24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4b:05:4e:70:b7:bd:fe:69:91:19:23:c7:39:43:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 18:30:54 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3646213198899edfa8b42add473ada218748e104
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:29:1a:5d:28:36:50:49:88:81:bf:2b:b3:d0:
29:2d:39:3e:fc:37:33:70:9e:15:0f:84:c1:ea:22:
2b:87:7c:a4:05:3c:58:c6:2b:41:7e:bb:4a:94:08:
57:00:a7:a4:9e:a1:a9:fb:ae:35:5d:d5:e4:73:23:
10:60:15:f9:53:48:92:87:d0:9f:f6:db:ad:ee:76:
3c:43:ef:0d:e7:56:9e:c5:d2:ae:99:94:e8:80:13:
78:e2:71:60:9a:70:6f:59:6b:93:8a:41:8d:82:11:
18:c4:21:91:93:4a:5b:d9:fd:6d:40:78:6c:58:45:
e9:16:c5:c2:85:96:3c:e9:d2:59:3b:9c:70:a0:3f:
0f:09:00:7b:78:6a:0c:61:01:e1:92:89:48:a5:24:
44:93:bb:ce:1d:50:7e:d0:f0:b1:c2:64:bd:54:db:
fe:bb:dd:f6:96:ee:75:8e:01:70:34:ef:71:19:40:
2d:65:8e:ad:d6:93:3b:fc:cb:6f:d8:da:cd:3c:b2:
74:41:f4:c8:a2:99:83:29:fb:29:3a:69:b8:0e:cf:
2a:f5:b3:0b:67:d3:ac:2a:48:2e:99:6e:a6:81:ee:
99:6f:99:ee:88:d5:d7:08:9b:9d:57:cc:32:92:94:
b5:5d:0d:66:4b:a1:71:2b:3a:0c:b5:47:96:a2:f7:
5b:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:46:21:31:98:89:9E:DF:A8:B4:2A:DD:47:3A:DA:21:87:48:E1:04
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/376d45-c00a-4ee9-986b-06dc38b57535/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/376d45-c00a-4ee9-986b-06dc38b57535/1/NkYhMZiJnt-otCrdRzraIYdI4QQ.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.218.94.0/24
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
49593
Signature Algorithm: sha256WithRSAEncryption
a6:48:d8:33:82:6b:16:96:34:1d:43:87:19:2e:e4:3e:e3:20:
fc:f1:92:93:4e:b1:5c:74:1b:ea:78:0c:aa:56:20:07:c8:c5:
99:5d:58:9f:b0:8f:80:db:a2:4c:46:3f:97:74:98:39:93:55:
ea:7c:4d:07:e7:51:40:7f:75:4a:17:af:c3:8f:36:99:62:d8:
46:b1:45:20:31:6b:5c:da:52:ef:f7:01:b1:c3:41:cb:8d:61:
1c:20:c0:39:85:40:d4:be:5b:79:ad:03:a8:e8:3f:fb:34:7c:
a6:3d:9b:b6:03:95:ab:42:a2:0d:c8:fd:2f:72:e8:35:a6:ac:
f6:4a:de:dd:54:51:68:0b:01:c8:55:da:66:e1:75:49:82:9f:
78:94:b3:59:78:14:f6:50:7a:1e:ee:45:c5:42:9b:5a:ca:e8:
02:70:7e:4f:46:24:ac:f2:0c:3a:8a:5e:d0:37:c1:ce:d9:b6:
a3:bf:c6:d7:dc:96:b3:ad:d5:c7:9d:eb:e3:68:db:3e:d8:11:
01:e8:4f:d6:3a:87:34:2c:0c:b7:56:17:4f:21:84:06:5a:02:
5b:66:7a:aa:6f:56:b4:91:06:4a:bb:2b:76:8b:41:b0:a6:f7:
50:e1:52:e8:50:84:1e:28:0a:6d:20:30:4a:6d:0f:be:03:48:
74:44:03:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:08:00 2024 by rpki-client on console-fra.rpki-client.org