Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/R-lMy3tgHaDKCUafYPZTZA_tjBw.cer
File: R-lMy3tgHaDKCUafYPZTZA_tjBw.cer (raw, json)
Hash identifier: Xk/SmLhnZJKM1UOXmA1q0mzjZgWkOdIh9pUH2c87s1c=
Subject key identifier: 47:E9:4C:CB:7B:60:1D:A0:CA:09:46:9F:60:F6:53:64:0F:ED:8C:1C
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC5DC50403C4B14A5E9928248B674A280
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/d8/9e29dc-cec9-49e2-bce4-bd90a3f06e16/1/R-lMy3tgHaDKCUafYPZTZA_tjBw.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/d8/9e29dc-cec9-49e2-bce4-bd90a3f06e16/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 16:29:59 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 15829
AS: 29137
AS: 34444
IP: 84.22.64.0/19
IP: 128.140.128.0/20
IP: 185.23.96.0/22
IP: 195.234.248.0/22
IP: 213.180.224.0/19
IP: 2a04:5e0::/29
IP: 2a05:a480::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:dc:50:40:3c:4b:14:a5:e9:92:82:48:b6:74:a2:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 16:29:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=47e94ccb7b601da0ca09469f60f653640fed8c1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:b4:7f:6d:8b:fa:cf:92:72:55:06:2f:97:f7:
62:32:22:14:65:c0:a6:3f:f6:12:dd:02:87:04:bd:
56:b4:5d:da:a8:ef:37:07:a3:0b:49:50:6a:75:c3:
85:74:d5:ef:18:9c:4b:9e:af:53:ac:49:5b:f8:cd:
b0:2b:43:c0:0a:d2:2d:f3:72:15:4e:e6:9f:98:6f:
56:c1:09:9e:bc:43:3b:06:8d:ba:0e:68:4c:6e:40:
b3:0c:13:40:28:67:2d:5f:d4:68:03:5c:0b:f5:8c:
cb:9d:20:fa:c8:c8:bb:55:ca:f2:3c:00:df:e2:d3:
d0:87:af:08:6e:36:9f:cd:69:20:35:5d:18:69:81:
5f:11:fe:30:d9:82:47:0d:10:dc:79:c6:ef:9e:0b:
c5:34:8f:df:69:64:86:bc:38:d8:c2:0b:04:6f:b4:
80:f0:0b:f9:42:c7:2c:cc:5a:ef:b1:2b:cd:ee:42:
ca:0c:b5:78:9e:f4:70:d6:5f:b5:cc:d7:8f:a0:61:
c3:48:00:63:2c:8f:14:fb:61:e7:73:67:7c:b4:c6:
46:5a:05:10:45:88:2a:82:99:89:ab:9e:b3:9f:37:
b4:7d:6e:82:30:21:68:2d:fa:95:44:17:22:a3:d2:
90:e4:f6:7f:8b:74:ea:30:d8:65:02:76:28:59:02:
da:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:E9:4C:CB:7B:60:1D:A0:CA:09:46:9F:60:F6:53:64:0F:ED:8C:1C
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/9e29dc-cec9-49e2-bce4-bd90a3f06e16/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/9e29dc-cec9-49e2-bce4-bd90a3f06e16/1/R-lMy3tgHaDKCUafYPZTZA_tjBw.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.22.64.0/19
128.140.128.0/20
185.23.96.0/22
195.234.248.0/22
213.180.224.0/19
IPv6:
2a04:5e0::/29
2a05:a480::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
15829
29137
34444
Signature Algorithm: sha256WithRSAEncryption
13:85:6d:59:b7:47:25:54:2c:10:c6:20:d9:c9:60:a1:fb:bf:
d0:da:e0:0b:3d:ca:48:90:8c:d6:b8:2f:ef:88:85:c4:6e:92:
7f:c0:3d:12:a2:ce:6a:4f:84:c9:c8:69:09:17:34:23:92:8e:
cc:16:87:ca:82:a1:f5:e0:35:e9:a0:48:de:45:65:f6:48:f2:
7a:03:d0:ef:b9:07:32:cd:46:de:56:67:d3:9a:a7:a5:6b:5a:
8b:0a:39:a1:79:4a:ac:bd:82:52:30:26:db:d8:0d:67:b2:48:
6f:89:fb:f1:1e:08:8f:23:3b:91:4d:00:cf:68:53:8e:9d:82:
d8:6a:4a:30:f8:f7:12:9f:07:21:ad:b7:64:1f:04:6e:02:df:
2c:43:12:92:33:87:cf:8e:ca:02:fa:65:be:ed:fb:50:5f:e2:
b3:43:90:e3:e6:fb:4e:5a:ff:7e:0a:5f:94:0b:1d:c8:eb:b6:
5c:8d:18:0a:61:de:8a:e7:4a:48:35:ad:e5:0c:5d:a2:88:2b:
6b:7d:5e:88:33:53:90:47:17:73:7c:8e:ad:ae:11:c5:4a:89:
1e:8e:cb:ff:7d:ee:7d:ff:21:bc:8b:a0:54:9f:fa:77:1c:b8:
6d:7a:dc:69:62:46:be:f5:ab:63:71:82:9c:d8:c8:54:29:76:
79:50:38:ad
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Fri May 3 01:44:39 2024 by rpki-client on console-ams.rpki-client.org