Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/Rj-RcHf489DjOMdC6iHWQ1jRnVI.cer
File: Rj-RcHf489DjOMdC6iHWQ1jRnVI.cer (raw, json)
Hash identifier: qPQo3MjTFK+X7m5BkDhEBEJOB8Y8ZiU2NYe3cp0xOSk=
Subject key identifier: 46:3F:91:70:77:F8:F3:D0:E3:38:C7:42:EA:21:D6:43:58:D1:9D:52
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018DEA882B594D6EBF814166DFF8B6ED4AF6
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/3d/8b5f7c-b3ae-4b58-81bb-25a40c075f12/1/Rj-RcHf489DjOMdC6iHWQ1jRnVI.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/3d/8b5f7c-b3ae-4b58-81bb-25a40c075f12/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 27 Feb 2024 12:26:49 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 44196
IP: 195.2.202.0/23
IP: 195.93.132.0/23
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:ea:88:2b:59:4d:6e:bf:81:41:66:df:f8:b6:ed:4a:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Feb 27 12:26:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=463f917077f8f3d0e338c742ea21d64358d19d52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:3e:de:37:9b:2d:fc:30:42:38:ea:45:ab:e3:
37:89:b0:40:c8:92:5d:71:eb:55:8e:d1:56:59:8c:
5b:c2:d2:5c:b6:f5:ee:4a:52:70:a5:d5:7e:d3:87:
ec:a9:72:d4:f8:b6:3a:95:83:eb:3f:0f:3d:c7:fa:
d3:33:60:85:a1:ec:7e:b7:7a:e0:35:7f:15:e5:2d:
95:fa:09:83:2d:f9:5a:18:11:c8:43:da:a8:4e:69:
8e:74:b2:d9:e9:21:ee:91:c1:c3:ce:ee:ab:62:7d:
7a:a2:4c:1d:55:03:f3:19:f5:3f:ad:c5:e6:78:12:
28:37:6e:cd:8b:36:5f:67:5b:f4:85:b6:c0:b8:4e:
c5:de:fa:14:82:9f:94:fb:31:74:46:fe:8c:f9:fa:
2e:da:96:3b:38:22:77:c4:f9:b1:ee:12:e3:b8:91:
18:49:f3:57:57:c2:9f:ae:3b:b9:c4:37:08:e1:07:
cb:7d:f6:f8:64:b2:cd:24:c1:c4:e2:07:ba:6c:7b:
6a:82:32:af:ff:fa:20:c9:c2:dc:5d:da:b5:07:5c:
f4:72:2e:92:35:4e:c9:2e:cf:0b:fc:9d:e6:37:d8:
f9:50:0a:5a:ae:8f:e0:25:28:de:8d:a1:67:96:a1:
f1:66:3b:57:67:bb:95:ba:b0:a4:aa:df:39:3e:de:
8e:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:3F:91:70:77:F8:F3:D0:E3:38:C7:42:EA:21:D6:43:58:D1:9D:52
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/8b5f7c-b3ae-4b58-81bb-25a40c075f12/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/8b5f7c-b3ae-4b58-81bb-25a40c075f12/1/Rj-RcHf489DjOMdC6iHWQ1jRnVI.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.2.202.0/23
195.93.132.0/23
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
44196
Signature Algorithm: sha256WithRSAEncryption
a4:66:45:20:ee:2f:00:d7:df:d5:21:29:8c:93:bb:df:2c:f9:
8c:a5:e1:cc:02:d3:ba:e4:fd:1d:71:50:e3:64:9b:49:71:bd:
39:4f:6f:ca:6a:a9:f8:93:be:64:4a:af:43:7f:04:8c:a5:6f:
41:8a:52:ef:a9:20:53:14:26:59:47:6f:33:5d:48:03:5e:b3:
e5:5c:1d:1d:f0:ca:dc:9e:db:db:cb:13:84:f6:4b:0d:d3:57:
0a:97:5d:f6:9f:48:92:e7:a4:da:14:38:ca:b2:43:5e:48:d0:
0e:26:1b:fe:f3:22:09:b9:30:70:0c:03:5c:2d:e7:56:25:77:
ab:b5:35:35:53:4f:7a:8c:2c:a4:19:c5:21:0b:01:4a:53:0b:
be:00:f4:35:ba:1d:2f:7d:ba:65:15:91:03:33:ee:66:82:b5:
7b:97:2a:d7:dd:cd:9d:18:76:4a:0c:d7:83:ee:f8:2e:28:a2:
c5:50:bf:33:26:b2:42:e3:1d:c6:5b:7b:2b:f9:f0:48:4a:4e:
64:69:5c:63:15:42:cd:83:6c:11:e3:19:19:e1:28:c3:67:a9:
cd:74:c8:77:0c:73:7f:88:d3:97:5a:3a:99:04:84:f5:47:c2:
8f:f0:9c:ae:a6:60:1f:78:55:23:d9:53:2d:dd:d5:ff:4a:5c:
07:6c:f5:e5
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Fri May 3 07:34:43 2024 by rpki-client on console-fra.rpki-client.org