Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/Ooy8BatJtspBsc95x5VytCZPcng.cer
File: Ooy8BatJtspBsc95x5VytCZPcng.cer (raw, json)
Hash identifier: jUW4WgXu3tPFMwGyEBdCM+JsmFjTefp2Owm7VKFahGw=
Subject key identifier: 3A:8C:BC:05:AB:49:B6:CA:41:B1:CF:79:C7:95:72:B4:26:4F:72:78
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC64B072CB7499CB203D5BFE22020B95E
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/39/b19916-397a-4a2b-b86c-37d444a2d62c/1/Ooy8BatJtspBsc95x5VytCZPcng.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/39/b19916-397a-4a2b-b86c-37d444a2d62c/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 18:30:55 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 43383
IP: 2a02:230::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4b:07:2c:b7:49:9c:b2:03:d5:bf:e2:20:20:b9:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 18:30:55 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3a8cbc05ab49b6ca41b1cf79c79572b4264f7278
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:98:00:53:52:15:a9:a2:98:a5:e5:88:11:23:
fd:33:53:3e:87:24:ce:39:df:98:0a:58:fc:cc:cb:
45:c0:63:e8:24:c4:af:82:8a:73:cf:eb:f6:e6:9f:
9a:f5:c2:c2:e5:c0:49:80:1d:10:08:6f:e5:93:c0:
7b:d7:f7:2b:15:bf:b4:96:0d:44:7c:a6:03:3b:05:
e7:8e:65:a5:39:d8:f5:0e:da:3b:5e:d3:88:ce:d4:
13:11:8c:f6:2e:90:6a:97:c7:f4:ed:d0:bd:dd:aa:
b4:b9:8a:5b:31:e6:8c:6a:2a:ff:71:12:32:78:51:
85:da:26:c1:43:4c:6b:b1:f3:7a:5b:0c:9f:e9:f4:
85:e3:47:78:3c:e3:ea:dd:de:b8:98:26:ca:e4:29:
48:bf:37:d0:6a:94:97:3d:46:7a:18:ad:41:87:01:
db:03:14:ed:0f:a5:7b:ac:aa:cc:b8:62:c3:54:7a:
d8:e5:d2:2a:83:59:ac:ef:b1:90:7c:c0:43:5c:8f:
9e:d9:f8:c2:d9:dd:16:94:f1:2c:9e:2a:bc:2d:25:
8c:b4:14:a1:5a:d8:50:b9:e1:6d:d3:86:60:56:d2:
18:3a:15:2a:5f:a9:dd:4a:6d:d7:88:7d:67:76:d3:
4b:0d:e0:f2:13:30:16:c3:71:46:92:46:cc:41:26:
a5:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:8C:BC:05:AB:49:B6:CA:41:B1:CF:79:C7:95:72:B4:26:4F:72:78
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/b19916-397a-4a2b-b86c-37d444a2d62c/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/b19916-397a-4a2b-b86c-37d444a2d62c/1/Ooy8BatJtspBsc95x5VytCZPcng.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:230::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
43383
Signature Algorithm: sha256WithRSAEncryption
07:55:5e:ea:2d:2e:38:7f:a2:aa:b5:20:07:0b:84:5e:98:9a:
16:06:c4:ed:db:8c:2e:18:ce:c8:12:1e:4b:f2:c8:4b:0b:49:
8a:34:b5:f0:4a:6c:50:4f:ad:d1:72:08:d4:da:05:d9:23:a2:
d8:29:5f:25:01:2f:13:a2:4e:50:57:97:5f:42:ae:f8:49:8a:
c5:22:6d:18:63:3c:a3:c8:e0:07:20:0a:67:ea:ce:ca:57:24:
3f:ab:4c:8a:6a:5d:a7:05:f4:ad:ee:6c:87:24:51:36:53:8b:
2e:e7:96:ca:03:78:a9:1f:cf:c8:0b:d2:1d:47:2f:34:af:0c:
6c:5d:4a:c3:15:da:0e:56:f7:fe:da:41:a5:17:78:69:04:f4:
c7:98:ef:ef:42:d8:67:32:ee:4d:63:39:2f:e0:3c:9e:63:64:
25:59:a7:56:00:5e:26:59:6b:29:1e:fd:ae:30:50:b1:3a:33:
9f:ca:c0:a6:52:8a:40:89:f9:57:2d:d1:e0:4e:14:5d:44:00:
28:09:c3:8d:88:98:52:f5:07:40:7e:de:0b:72:54:c3:aa:e1:
f2:94:6a:83:cf:6a:7f:6b:a2:90:55:40:ef:9c:3b:79:5f:92:
be:00:09:38:e7:31:9e:10:63:48:12:c7:df:f3:51:b1:45:3e:
1c:60:7a:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 02:56:36 2024 by rpki-client on console-fra.rpki-client.org