Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/PeJoHdoAcCp1l6cSV-FPenJeiQ4.cer
File: PeJoHdoAcCp1l6cSV-FPenJeiQ4.cer (raw, json)
Hash identifier: m57QD5+KfpE13bhxNpazBu9hYgwUzJHBf+S5RVH99KI=
Subject key identifier: 3D:E2:68:1D:DA:00:70:2A:75:97:A7:12:57:E1:4F:7A:72:5E:89:0E
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC5DC095FCAB89151A2183392F9482377
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/1a/36d6e4-8d77-48d5-afb6-e0ac7263db12/1/PeJoHdoAcCp1l6cSV-FPenJeiQ4.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/1a/36d6e4-8d77-48d5-afb6-e0ac7263db12/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 16:29:41 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 50799
IP: 145.43.0.0/16
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:dc:09:5f:ca:b8:91:51:a2:18:33:92:f9:48:23:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 16:29:41 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3de2681dda00702a7597a71257e14f7a725e890e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:d1:cb:50:2b:88:79:80:20:6e:ca:8b:ea:e7:
57:7f:74:7e:f3:3b:d6:d1:ad:68:33:de:ed:7d:4b:
41:c0:c3:f4:f0:3a:87:08:5e:5e:7a:d5:06:dc:31:
f9:e5:ad:a1:24:9d:66:62:a2:e2:85:8b:7a:12:ec:
af:50:37:78:1c:e0:61:a4:87:a9:ec:72:27:c2:02:
bc:87:db:5f:3e:70:b6:53:b1:29:86:27:30:e0:66:
89:dd:10:2c:7a:76:40:67:12:3e:5e:5c:b5:41:36:
a3:20:74:9c:5b:ca:62:d5:63:be:c3:fc:3c:26:12:
a0:14:c3:ef:fb:86:ba:e1:88:54:7b:67:f0:d6:31:
70:1b:18:28:b8:16:39:a1:86:47:88:f8:16:8a:15:
74:ad:1d:8d:c6:35:aa:0f:f5:83:00:75:fa:35:29:
f6:a4:39:fd:16:7c:d2:b5:9a:37:03:d5:38:37:90:
a8:9f:5b:8f:7f:d1:c0:58:29:9f:f8:0f:18:11:c0:
72:c6:d1:8a:07:95:8c:ca:a3:fb:ab:46:83:3a:ab:
44:9e:82:0c:18:2d:38:26:c0:0e:93:ae:28:18:27:
c5:9e:f2:36:53:5e:f9:2d:d5:64:ea:ab:2c:ca:16:
bc:7d:7d:ff:e0:20:a2:96:48:00:94:30:50:b3:40:
3c:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:E2:68:1D:DA:00:70:2A:75:97:A7:12:57:E1:4F:7A:72:5E:89:0E
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/36d6e4-8d77-48d5-afb6-e0ac7263db12/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/36d6e4-8d77-48d5-afb6-e0ac7263db12/1/PeJoHdoAcCp1l6cSV-FPenJeiQ4.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.43.0.0/16
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
50799
Signature Algorithm: sha256WithRSAEncryption
71:df:1c:6c:ea:59:a4:6f:5a:51:ba:79:6c:a6:09:1f:09:a5:
5d:f8:1e:ce:ee:63:86:ef:33:ea:20:80:93:f2:2d:c2:e6:ea:
83:67:4a:98:ea:06:89:a3:28:d2:4d:37:06:e6:20:24:c3:4a:
ac:54:bd:aa:a5:a1:e8:a4:73:39:7a:79:06:71:c2:1f:4b:e2:
52:45:fd:64:eb:97:cb:b2:9b:f8:47:4f:47:a9:ee:f2:24:5c:
9f:d1:96:11:a1:61:4b:8d:35:ff:c4:35:ee:1a:41:20:f0:c1:
5d:b4:d5:a3:94:19:8c:34:de:3a:78:07:55:eb:b0:0b:45:2e:
9a:b7:b4:22:b6:4c:f6:b9:ce:2a:21:2c:73:de:56:2f:3f:66:
18:78:4f:aa:b8:6f:5b:f8:df:dd:95:69:b9:9a:b8:49:a2:ee:
b9:52:4e:80:14:7b:b7:33:78:3d:7c:03:39:c9:1b:b8:e8:62:
d3:16:b5:49:0a:94:c0:1b:83:0b:ad:9d:de:f5:0e:4f:4b:97:
0c:4d:b8:53:c4:8c:84:bf:a2:61:36:af:b5:93:b9:66:57:28:
03:9c:e3:6e:57:a7:a0:9a:f1:0e:b4:2e:46:3c:a4:aa:ff:44:
d7:7e:aa:1f:4b:77:6f:e5:46:75:5b:1d:8d:3d:e0:f9:29:db:
58:72:58:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 11:31:26 2024 by rpki-client on console-ams.rpki-client.org