Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/NpABg88IpuW8gHhGKUpGBi4ZDjs.cer
File: NpABg88IpuW8gHhGKUpGBi4ZDjs.cer (raw, json)
Hash identifier: CUqHXRUh9wx33o787bZGuQFPwplt+c/8KNf5hBNPbeQ=
Subject key identifier: 36:90:01:83:CF:08:A6:E5:BC:80:78:46:29:4A:46:06:2E:19:0E:3B
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC2DB4212936824C3700B0938A4C3D685
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/10/5a32bc-0836-47ec-b5b3-2f5b6a83faf3/1/NpABg88IpuW8gHhGKUpGBi4ZDjs.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/10/5a32bc-0836-47ec-b5b3-2f5b6a83faf3/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 02:29:58 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: IP: 45.11.184.0/22
IP: 80.91.218.0/24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 20 Apr 2024 08:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:db:42:12:93:68:24:c3:70:0b:09:38:a4:c3:d6:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 02:29:58 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=36900183cf08a6e5bc807846294a46062e190e3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:9d:93:9a:af:dc:2c:b4:a3:4b:79:01:25:52:
32:fd:48:89:83:e1:0c:0d:84:d8:07:41:7c:1f:6a:
d0:15:cd:cf:3e:29:4c:1e:c9:b9:9e:95:93:8b:21:
6a:db:6a:6a:ff:38:f9:46:e9:a7:86:b9:10:d3:cf:
cc:dd:d4:b2:97:31:ce:7e:40:d8:58:50:87:74:a6:
99:94:33:82:34:13:3b:d5:d7:8f:93:6c:09:6f:e4:
37:62:20:69:1c:a7:cd:ed:21:29:cf:27:bf:b0:91:
c3:f8:38:d4:0f:69:ed:66:a7:a6:90:47:e2:1e:b2:
b1:95:04:b0:ba:3f:f7:59:b1:b3:74:fc:3f:e3:de:
5a:7c:26:08:92:dc:31:94:d3:95:fb:7e:3d:69:25:
d7:80:e3:78:13:d7:70:b4:1e:fe:94:d4:58:ba:64:
72:a2:33:75:cb:d5:e3:9d:4d:b1:84:73:86:e1:61:
1e:17:e4:69:36:f6:b5:4f:db:4c:3b:c5:48:95:16:
2c:7b:fc:a6:5c:83:63:f8:6c:d8:7d:91:32:47:9a:
08:88:c1:0d:ef:ee:ef:5e:de:e6:18:3f:e9:76:c6:
44:8d:e7:d8:03:a0:68:5e:4a:b9:2f:e8:38:91:ca:
f9:cc:c4:81:93:83:46:8b:7e:d6:cb:33:8f:5a:42:
59:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:90:01:83:CF:08:A6:E5:BC:80:78:46:29:4A:46:06:2E:19:0E:3B
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/5a32bc-0836-47ec-b5b3-2f5b6a83faf3/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/5a32bc-0836-47ec-b5b3-2f5b6a83faf3/1/NpABg88IpuW8gHhGKUpGBi4ZDjs.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.11.184.0/22
80.91.218.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:ce:b3:73:7a:ac:bf:5f:d4:87:27:48:4d:08:50:8f:94:20:
5f:03:d7:dc:f7:7f:d5:77:4c:b8:db:1e:37:e4:8d:97:d1:cc:
97:44:fd:39:30:50:2f:9f:1e:54:19:c1:3c:45:5b:81:8e:de:
6e:ae:28:97:1c:a0:80:1c:b8:08:87:63:d6:bf:f6:26:aa:0b:
94:5a:ad:b4:36:4f:d5:6c:29:df:f6:83:d5:21:c5:7a:c0:12:
c1:09:a0:12:ba:59:1e:f0:4a:c5:02:3d:1e:05:a1:c8:10:53:
0c:34:d8:83:81:1c:f8:e6:86:27:90:cd:16:28:2b:4d:3b:bf:
42:2c:7e:38:33:4b:b9:6a:6b:60:80:40:6b:a2:72:9a:30:90:
f4:fd:e4:97:41:e9:fc:c3:d8:96:f3:5a:31:cb:2e:af:51:9c:
51:53:5f:59:89:75:9f:cd:7c:f3:69:92:37:da:56:ce:78:ef:
7a:78:95:f9:09:49:b8:7b:1b:18:1a:bb:5b:b2:b2:0a:b1:90:
39:22:eb:6e:10:a2:79:bc:09:44:d5:d4:67:76:33:ac:40:00:
09:46:a7:b6:9d:fe:24:bc:16:e2:d0:6d:59:a1:72:d4:95:ed:
6e:ea:e8:91:9c:32:fa:c3:05:af:9c:77:b1:06:2d:10:4c:f9:
ff:47:b3:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 19 13:58:53 2024 by rpki-client on console-fra.rpki-client.org