Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/OmEbwpH_HeAiVvIxU0VoBgP6Tts.cer
File: OmEbwpH_HeAiVvIxU0VoBgP6Tts.cer (raw, json)
Hash identifier: JPvCNfabm4wOtbgCgL5li5hPEHI9ExIqBX6hC+n17Dc=
Subject key identifier: 3A:61:1B:C2:91:FF:1D:E0:22:56:F2:31:53:45:68:06:03:FA:4E:DB
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018F157D1D00E494D176BE5745A5D43BA1D4
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/9c/d14728-442e-44ea-afd7-1b5cd5b4d399/1/OmEbwpH_HeAiVvIxU0VoBgP6Tts.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/9c/d14728-442e-44ea-afd7-1b5cd5b4d399/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 25 Apr 2024 13:41:12 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 215041
IP: 2001:67c:1570::/48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:15:7d:1d:00:e4:94:d1:76:be:57:45:a5:d4:3b:a1:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Apr 25 13:41:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3a611bc291ff1de02256f2315345680603fa4edb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:60:d7:1c:a7:94:91:c0:b9:38:ab:f2:0d:27:
2d:db:a9:9b:ba:61:7f:55:b7:2a:a2:2c:ab:35:43:
58:5e:f5:56:86:da:f2:94:22:8d:b4:26:2a:c9:38:
01:ab:a2:c6:a6:58:38:2b:30:42:8e:c7:d6:4d:1c:
f1:fa:14:aa:6c:26:4a:5b:42:a6:4e:34:22:da:2d:
43:9d:4f:ba:cd:c6:5d:e7:1e:22:a4:ca:e0:58:ec:
b7:be:c8:50:1a:f7:e6:5c:a5:8a:7b:6c:b5:42:94:
6e:2c:e4:0c:4b:e1:96:e9:70:ee:99:0f:10:04:02:
56:d5:07:5a:02:9e:ee:91:44:c2:ad:8c:ae:e8:7c:
0e:91:d6:f8:75:27:01:33:ff:4d:dd:43:6f:07:dd:
83:6d:ef:78:60:d9:e0:df:44:61:78:68:61:f4:44:
ac:9d:0c:c5:1f:4b:db:ad:e8:b8:0d:aa:d9:fc:f4:
52:3b:ec:f3:73:d4:c0:9b:bf:75:d3:94:cd:49:69:
e1:eb:db:3e:5f:ea:21:c3:62:d8:93:92:19:f7:d7:
9e:d1:22:56:0f:f0:e9:2f:29:d7:7e:97:b6:5e:b7:
59:d1:dd:c4:8e:51:9e:7e:92:1f:39:b8:df:70:20:
0f:e2:34:5e:57:61:ce:46:1a:78:e2:e9:3a:bd:10:
2a:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:61:1B:C2:91:FF:1D:E0:22:56:F2:31:53:45:68:06:03:FA:4E:DB
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/d14728-442e-44ea-afd7-1b5cd5b4d399/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/d14728-442e-44ea-afd7-1b5cd5b4d399/1/OmEbwpH_HeAiVvIxU0VoBgP6Tts.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:1570::/48
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
215041
Signature Algorithm: sha256WithRSAEncryption
8a:61:86:bc:10:9d:78:4c:a9:f5:76:e6:40:63:8a:d8:90:e0:
54:b4:9e:7b:70:79:cc:5f:ff:dc:de:04:43:50:a0:bc:ae:fa:
02:9d:04:35:0d:39:e6:0e:40:b5:00:d0:91:c9:06:05:3f:0b:
34:35:bf:e3:e4:38:8f:1a:21:99:ca:56:64:4a:e3:e5:b8:b4:
93:13:0a:95:91:76:27:3d:d3:0e:e7:96:16:2f:c7:d4:7e:ee:
47:7b:8d:b4:c5:ee:38:70:3f:31:9c:51:3f:ab:88:c0:0e:d5:
a7:42:8c:1c:2f:00:68:e8:b1:cd:bf:66:5e:6d:e1:1f:61:02:
7e:7f:04:fc:88:d5:92:c8:03:8b:39:db:74:36:0d:17:06:be:
46:1c:de:7e:21:74:75:f3:a3:2d:2b:2a:d2:18:72:49:e5:b4:
61:db:87:b5:53:a1:cb:ac:7a:4e:6d:ac:f3:d5:66:96:84:d3:
89:35:27:67:e0:97:5a:cd:15:b3:da:b4:1e:2a:e1:dd:a4:ae:
e2:1c:ca:a2:e8:8c:3f:c8:c0:31:27:20:57:22:fd:e0:3e:0a:
7c:bd:4a:51:a2:85:6f:a1:90:91:95:8d:36:4d:01:1e:2d:e4:
a8:6a:2f:94:8f:d8:c8:fa:ff:e8:51:c1:00:74:42:97:0c:ac:
8b:6d:99:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 02:15:32 2024 by rpki-client on console-ams.rpki-client.org