Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/R928ziYovwn65r8EQhjGV-i9PG4.cer
File: R928ziYovwn65r8EQhjGV-i9PG4.cer (raw, json)
Hash identifier: PvLiDpNGSgOyj2xHVaTIMDYHN02lyukH6BI0K3zABCY=
Subject key identifier: 47:DD:BC:CE:26:28:BF:09:FA:E6:BF:04:42:18:C6:57:E8:BD:3C:6E
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018EA78EE11A1A4DD6D49A8CB9FA6D132B0A
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/be/a3b355-9afa-434e-8098-50d709bffeb5/1/R928ziYovwn65r8EQhjGV-i9PG4.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/be/a3b355-9afa-434e-8098-50d709bffeb5/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 04 Apr 2024 05:22:22 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 215239
IP: 2a14:2d40::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:a7:8e:e1:1a:1a:4d:d6:d4:9a:8c:b9:fa:6d:13:2b:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Apr 4 05:22:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=47ddbcce2628bf09fae6bf044218c657e8bd3c6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:7f:ba:64:12:2a:b7:69:4f:6f:9a:fa:92:ee:
b3:81:9e:a5:c5:cc:89:eb:15:73:3c:af:b0:bc:15:
29:51:12:55:4f:63:df:76:83:80:e6:b4:92:b2:32:
d1:33:75:c8:1f:a8:ee:cd:46:a5:3f:6a:87:64:4f:
cf:41:14:52:bf:e3:90:f4:54:6c:9d:20:98:4f:66:
68:62:d3:a4:ef:5a:9e:11:12:57:ff:fe:e8:eb:01:
d1:84:6b:ce:ab:4f:f7:51:2e:bf:6e:f8:5c:db:59:
c0:e2:c6:f5:b5:73:ba:06:33:13:4f:43:72:55:91:
ae:4b:18:28:02:aa:c4:2f:21:ef:51:70:e5:88:5c:
58:96:d5:e3:1d:0d:3a:f4:4c:77:e1:f9:e8:a5:25:
db:10:61:53:f9:56:1d:f5:eb:22:9b:ed:91:d3:f5:
c6:ea:08:80:a0:56:98:ba:dc:4f:c9:03:60:7b:b7:
1e:09:13:f7:db:2f:ae:39:db:2d:45:bf:d3:d6:06:
34:46:d8:2e:5e:34:9d:b6:67:72:3f:43:d9:bd:a2:
e6:6a:3f:58:d5:b3:d9:6d:c9:52:1a:31:08:03:f4:
ff:a1:b3:db:f7:a6:21:bf:42:fd:10:fb:cf:44:f2:
a3:50:2d:22:22:74:7b:13:27:44:0d:b0:52:d1:70:
d7:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:DD:BC:CE:26:28:BF:09:FA:E6:BF:04:42:18:C6:57:E8:BD:3C:6E
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/a3b355-9afa-434e-8098-50d709bffeb5/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/a3b355-9afa-434e-8098-50d709bffeb5/1/R928ziYovwn65r8EQhjGV-i9PG4.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:2d40::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
215239
Signature Algorithm: sha256WithRSAEncryption
7b:0c:75:29:83:9e:15:4c:11:9d:e2:f8:5d:b7:78:03:21:0e:
9d:4b:c8:b9:2f:c8:b1:1d:d4:99:31:8d:10:b2:d1:e7:6c:e4:
de:b5:41:d8:1a:28:42:74:ca:72:25:e0:42:e2:d4:c3:e7:d1:
56:d2:8d:2e:c7:e2:c7:b2:11:94:50:c5:24:c3:76:6d:87:78:
3e:28:ab:22:51:dc:7d:44:51:0d:f1:ad:f7:b0:bd:2f:25:2b:
1e:a5:35:41:28:ab:71:93:6e:3a:3e:f1:00:73:70:0c:57:13:
fd:a3:e1:43:0b:a2:31:c5:20:7e:43:80:1c:d8:c3:77:3a:b3:
39:0e:b0:ad:06:4a:e5:e8:1c:3c:3c:60:b5:50:81:84:b3:7a:
a7:98:b7:a2:c2:a2:a5:87:f1:aa:6d:b8:55:cf:c1:a8:ea:4f:
4f:5d:47:cb:85:32:8c:e3:5c:f3:ca:8f:42:59:75:b5:74:bd:
1f:ea:af:84:07:0c:2b:44:93:bb:2c:3d:59:79:45:3b:ae:4a:
04:48:8e:86:c2:8f:b7:2c:ea:2c:67:85:65:cb:38:42:df:dc:
f5:16:3e:ee:24:56:8c:f0:cb:7a:e7:56:2d:80:13:fa:67:3e:
38:71:4f:30:ad:08:6b:51:09:97:30:84:b7:45:ab:07:12:37:
d0:69:78:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 09:06:53 2024 by rpki-client on console-ams.rpki-client.org