Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/Q3FIOk0xlpOmC4o7x5_YgtIScPo.cer
File: Q3FIOk0xlpOmC4o7x5_YgtIScPo.cer (raw, json)
Hash identifier: seGfIRSfWt8o4DDm3HroyFRNrQer3tj3EwTcTL2nLf8=
Subject key identifier: 43:71:48:3A:4D:31:96:93:A6:0B:8A:3B:C7:9F:D8:82:D2:12:70:FA
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC26D450B2C6ED22FC92A929ACE2531FA
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/e4/14dd4c-d72d-4666-9242-920dd39ac62b/1/Q3FIOk0xlpOmC4o7x5_YgtIScPo.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/e4/14dd4c-d72d-4666-9242-920dd39ac62b/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 00:29:50 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 198448
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:6d:45:0b:2c:6e:d2:2f:c9:2a:92:9a:ce:25:31:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 00:29:50 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4371483a4d319693a60b8a3bc79fd882d21270fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:af:6c:e4:a1:4e:80:7d:e6:36:17:1a:cb:76:
a9:8b:44:cb:23:1e:01:41:2b:78:dd:fd:c4:dc:ae:
33:23:cc:d3:de:7d:c5:44:aa:f2:65:13:0a:49:b1:
d2:02:8b:42:3e:4b:89:20:49:2e:2f:ff:99:7b:2a:
55:e9:e8:04:b4:54:66:9b:7e:73:6f:b5:1c:2e:8f:
4f:28:c3:b5:4b:9d:47:ff:9c:fb:ad:8f:24:e0:4e:
43:f0:5d:69:de:f0:7a:37:01:4f:cc:ef:bc:19:5e:
c9:14:b6:34:60:21:ee:2e:50:fc:d5:31:42:8a:e5:
4c:ca:ee:9b:e5:71:26:f6:2a:31:47:43:58:8e:fa:
43:60:7e:b8:7f:57:b0:6c:a8:81:e4:6a:14:c1:d0:
3e:a5:41:a5:35:99:3c:d8:ce:6c:54:1c:79:90:e3:
fd:58:df:d0:f9:4f:a1:7c:f9:64:8d:83:8c:32:be:
a9:f0:cb:ba:23:13:db:32:b3:3d:2f:7b:d5:a2:66:
0b:fc:f0:d5:92:f5:b2:df:3f:15:16:55:68:dd:62:
58:76:89:11:30:e9:54:58:f5:ea:e8:0c:d9:08:84:
3e:e2:dc:30:52:e6:9b:55:14:dc:a5:41:38:79:cf:
a6:f6:45:f2:67:78:42:7a:e5:a3:03:c2:16:aa:e1:
69:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:71:48:3A:4D:31:96:93:A6:0B:8A:3B:C7:9F:D8:82:D2:12:70:FA
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/14dd4c-d72d-4666-9242-920dd39ac62b/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/14dd4c-d72d-4666-9242-920dd39ac62b/1/Q3FIOk0xlpOmC4o7x5_YgtIScPo.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
198448
Signature Algorithm: sha256WithRSAEncryption
92:78:0e:c2:2f:38:1c:c2:70:71:57:90:b8:b3:b0:17:ac:1d:
e2:d2:dd:04:d3:d9:e7:d8:59:42:08:ed:8b:73:38:a4:b1:41:
14:c1:17:96:33:21:bb:d5:23:3b:ae:28:dc:c9:7d:f5:86:52:
01:ca:3d:f1:a9:cd:e1:f7:c1:01:d1:37:18:c4:04:de:ae:49:
3f:da:9f:0e:04:2a:7e:f8:e0:c5:1a:76:63:53:7d:e0:53:df:
b3:0f:f9:d1:1f:8b:19:63:28:20:f1:8f:a4:8d:c3:09:cd:eb:
13:7e:1b:87:57:44:df:1b:a5:7f:af:31:71:19:d7:b5:e3:c7:
55:fc:dc:9e:04:b5:f2:f9:3d:1d:f4:88:24:df:9b:b0:de:6a:
b2:74:a4:56:54:eb:04:d4:5d:80:14:dd:52:ae:b7:d3:f1:b4:
c0:52:2c:de:77:5f:6c:23:4b:2a:98:1b:87:61:32:4c:c9:4f:
00:c7:e1:d5:79:cd:04:e1:3d:b7:d4:f7:e9:cb:cb:d5:53:89:
c1:b8:69:f3:96:0e:dd:41:d9:9f:fa:d7:f4:b1:d0:c1:75:3e:
46:e4:60:c0:2e:99:03:b4:8f:bf:bc:4a:8d:5b:00:b0:a3:84:
67:72:27:17:16:9e:30:5f:cf:82:f1:26:77:8a:a4:45:15:2c:
fd:e1:38:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 01:44:05 2024 by rpki-client on console-ams.rpki-client.org