Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/Qn35XuEKKtTq8ILfrBWYOLN9NFA.cer
File: Qn35XuEKKtTq8ILfrBWYOLN9NFA.cer (raw, json)
Hash identifier: mrgaH3ySH4TNgE7twj9dWJ5FLvNbl6wTVsN+Z4fsIfA=
Subject key identifier: 42:7D:F9:5E:E1:0A:2A:D4:EA:F0:82:DF:AC:15:98:38:B3:7D:34:50
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC6B8D1F2CD0361F236ECACD14260FF80
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/b4/4a3068-ea9d-4966-be55-7943d9a79bd2/1/Qn35XuEKKtTq8ILfrBWYOLN9NFA.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/b4/4a3068-ea9d-4966-be55-7943d9a79bd2/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 20:30:50 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 59635
IP: 91.247.66.0/23
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b8:d1:f2:cd:03:61:f2:36:ec:ac:d1:42:60:ff:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 20:30:50 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=427df95ee10a2ad4eaf082dfac159838b37d3450
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:2e:03:5b:88:9e:c3:6c:89:90:03:55:62:1e:
f4:c4:88:fd:ad:8d:c1:e2:41:c7:27:4c:a7:07:05:
3b:53:b2:e7:0d:80:68:d3:64:e6:4f:06:7e:7a:25:
4b:66:11:b8:67:40:a7:38:ed:bc:a4:1a:fb:54:c1:
20:00:d3:6b:d8:51:09:fe:9f:2c:54:10:71:5b:d4:
cf:92:9b:46:50:90:52:42:38:db:62:de:e0:c4:ee:
a5:12:97:1e:a8:f2:8c:05:74:39:34:73:2d:09:3e:
73:ec:3c:8c:06:1f:41:48:d4:7f:01:58:82:bd:45:
67:fb:5f:b6:1c:fe:97:df:27:5f:6c:54:6d:6d:9b:
36:fe:2f:73:7e:74:07:ed:39:09:8e:5d:79:be:b1:
9a:bf:e9:5f:89:55:a3:0d:b6:23:f8:67:8b:72:d8:
16:86:45:74:cb:8c:1b:49:65:69:a9:4e:37:40:f8:
4a:6b:56:d4:0a:1c:b8:49:68:f1:8c:72:c0:c5:a0:
d4:40:b9:9b:ce:fd:bb:aa:ec:d7:3a:0c:64:9e:0c:
ac:a6:ae:62:3f:71:70:8c:66:53:4c:47:45:b8:43:
1c:75:23:c2:65:d6:72:77:ad:56:d8:8e:11:f8:9b:
9b:22:62:a7:07:bf:a7:be:7f:04:3f:63:b4:a2:09:
3d:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:7D:F9:5E:E1:0A:2A:D4:EA:F0:82:DF:AC:15:98:38:B3:7D:34:50
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/4a3068-ea9d-4966-be55-7943d9a79bd2/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/4a3068-ea9d-4966-be55-7943d9a79bd2/1/Qn35XuEKKtTq8ILfrBWYOLN9NFA.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.247.66.0/23
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
59635
Signature Algorithm: sha256WithRSAEncryption
61:e5:b2:d1:99:9f:3b:ce:0d:47:ac:12:12:bb:4d:a6:80:a3:
ad:4f:49:ad:2e:0e:62:20:13:cb:82:9a:a5:4c:88:68:f3:5b:
98:7f:e1:4d:e5:c5:fb:83:cd:59:a4:9a:2b:b7:84:57:58:27:
58:0c:bc:c9:bd:87:55:19:90:0c:e1:0b:b4:8c:05:3b:2d:98:
c8:e5:97:87:2e:2c:77:05:cc:02:69:d0:64:61:cf:e2:3c:4f:
4d:d9:fa:96:25:84:f1:c6:f0:e1:c8:08:ea:19:4d:15:a3:1d:
b2:fb:4e:19:7d:e7:76:ea:3c:2b:07:b8:83:b1:e0:f9:45:9a:
3f:d5:eb:aa:91:aa:70:dc:cb:66:4c:08:c0:a3:df:4d:8e:01:
03:be:dd:15:1e:21:10:3a:56:7c:e1:f5:cc:6a:23:1f:0b:af:
40:29:26:13:12:63:49:33:f4:61:d2:fd:10:22:24:be:40:b4:
09:75:4a:15:df:cc:3a:d3:27:f2:8c:cc:4c:6a:ac:80:4d:5f:
8d:ad:bf:66:86:83:98:fd:69:aa:68:20:f5:d0:f2:70:00:7c:
80:d0:ec:bd:bc:b5:78:74:26:92:56:1a:49:76:76:bd:56:42:
d3:72:46:3b:0a:3e:87:ae:7c:67:fc:d4:2b:d7:2b:ee:9f:0c:
5d:24:cc:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 01:44:31 2024 by rpki-client on console-ams.rpki-client.org