Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/QjU1qmwxe6dsy4G7_uXUdLGT5uM.cer
File: QjU1qmwxe6dsy4G7_uXUdLGT5uM.cer (raw, json)
Hash identifier: EYKHqVFF3A3D5OCBSC9GqVcGL5xOcQOOa3hoSJC+4uY=
Subject key identifier: 42:35:35:AA:6C:31:7B:A7:6C:CB:81:BB:FE:E5:D4:74:B1:93:E6:E3
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC3490D91D81F831C91FD0B06801C844E
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/c0/a12b7a-2e4a-4f22-8811-099587c71bab/1/QjU1qmwxe6dsy4G7_uXUdLGT5uM.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/c0/a12b7a-2e4a-4f22-8811-099587c71bab/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 04:29:53 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 31505
IP: 83.151.32.0/20
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:49:0d:91:d8:1f:83:1c:91:fd:0b:06:80:1c:84:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 04:29:53 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=423535aa6c317ba76ccb81bbfee5d474b193e6e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:54:bc:30:c0:9d:02:11:07:83:7a:72:d2:62:
fe:4f:b9:34:8d:42:d3:5a:16:dc:60:9a:01:2f:e4:
4e:ff:ae:bf:06:36:d0:85:0b:f1:8d:59:3d:18:3e:
41:43:91:03:ab:e1:d3:4f:f4:c3:bd:56:77:be:6f:
9a:7f:a6:c1:ee:06:f9:16:76:cd:17:e8:aa:f8:86:
41:8a:47:9f:b3:55:97:cd:82:7d:96:b7:c8:67:b1:
c6:73:fe:5a:fb:aa:66:a7:af:49:79:5b:3f:7f:ed:
54:62:3e:44:89:97:e8:43:26:7d:f5:8e:94:ae:41:
84:f5:32:49:0d:9e:cb:dd:27:35:a0:71:fb:08:57:
6a:04:26:c7:2a:fd:7f:ac:56:9e:af:af:8a:d6:22:
22:5c:5a:f9:26:e6:bc:ff:3c:b8:b4:ea:9b:5a:42:
72:49:d6:35:63:79:25:96:bf:fb:f6:56:f3:cd:00:
a7:cf:b0:64:5f:38:68:1c:5f:e5:cd:75:27:15:6f:
0d:43:e6:83:5c:5d:d6:e3:8d:99:13:11:f0:75:89:
cb:a4:ce:14:23:03:fc:fa:07:48:c8:d7:5f:83:63:
4c:3e:fb:82:b2:71:6f:4b:93:8b:9c:1c:68:88:75:
77:58:2a:04:71:e7:8b:d3:b6:75:2e:74:86:26:60:
d9:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:35:35:AA:6C:31:7B:A7:6C:CB:81:BB:FE:E5:D4:74:B1:93:E6:E3
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/a12b7a-2e4a-4f22-8811-099587c71bab/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/a12b7a-2e4a-4f22-8811-099587c71bab/1/QjU1qmwxe6dsy4G7_uXUdLGT5uM.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.151.32.0/20
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
31505
Signature Algorithm: sha256WithRSAEncryption
7c:8f:f6:a6:da:ee:67:54:27:ad:95:ea:1a:40:a2:dc:73:fa:
49:20:84:e3:c8:8b:d9:03:6e:c6:5d:5c:3d:ec:ef:23:65:dd:
d5:c0:dc:32:3f:49:3d:ba:75:3e:ab:1c:5a:67:22:32:6d:e5:
d3:92:fd:cd:3d:37:85:58:97:12:a4:05:0a:32:f4:8d:01:06:
15:83:3c:5a:23:54:fc:3f:58:01:f6:6f:12:54:74:57:56:0b:
7e:e7:7e:21:b4:b5:a5:a9:3b:aa:82:da:81:79:e7:e1:64:27:
f4:c6:2c:57:73:14:a0:4e:f7:6a:31:a6:33:38:31:6a:b4:80:
9f:e3:fc:49:6c:24:ea:1d:e2:c4:f2:c3:43:6e:f1:b5:26:a7:
51:b0:6e:fd:07:c3:95:bf:de:5b:e6:f3:8b:07:5a:15:af:af:
53:30:ed:96:5d:95:0d:81:e9:58:89:3b:e5:0c:3a:c7:1c:c0:
1e:1a:71:e3:90:af:f3:ed:64:6d:d4:d1:2b:d8:97:5e:47:df:
69:69:76:af:d0:61:ae:4c:be:c8:4f:1d:69:f7:5a:31:e5:25:
8e:63:89:cb:80:be:12:be:12:e0:5d:be:11:78:76:db:c6:dd:
c7:61:a2:33:49:3d:10:84:aa:06:56:35:63:ab:02:d7:ae:a2:
f5:98:17:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 10:14:13 2024 by rpki-client on console-fra.rpki-client.org