Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/RzRpqWb03zzygXHYfHR4D8Ry-Xk.cer
File: RzRpqWb03zzygXHYfHR4D8Ry-Xk.cer (raw, json)
Hash identifier: a9eze0jLpIfFy5HQVcQr1YnVaI5Hn6sZvPYz4da7tE4=
Subject key identifier: 47:34:69:A9:66:F4:DF:3C:F2:81:71:D8:7C:74:78:0F:C4:72:F9:79
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC94E51282B8AE059A538A079DF7640E3
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/d3/1efbe6-a014-417c-9685-583920f5f05b/1/RzRpqWb03zzygXHYfHR4D8Ry-Xk.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/d3/1efbe6-a014-417c-9685-583920f5f05b/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 08:33:22 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 43310
IP: 91.197.7.0/24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 16:12:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4e:51:28:2b:8a:e0:59:a5:38:a0:79:df:76:40:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 08:33:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=473469a966f4df3cf28171d87c74780fc472f979
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:20:48:69:cc:9f:62:92:ac:81:15:ae:c2:f6:
38:a7:27:c1:5b:7d:e4:5c:b6:ce:c1:1f:ec:08:ae:
18:48:48:fa:ec:22:ae:e0:70:a1:fe:a9:21:cc:e4:
b7:59:6a:98:b5:3f:9a:4e:0e:05:cd:cf:27:81:a7:
9b:e6:8c:28:13:be:89:b3:06:96:01:67:90:af:69:
80:1a:45:62:8c:38:e6:d2:38:6c:14:a7:b4:e9:ef:
28:a0:d1:83:14:91:05:42:1d:dd:c7:44:af:cc:98:
6c:5b:7d:93:bf:ca:d5:a7:51:99:45:73:31:7f:3e:
a0:f2:09:74:e1:c0:f2:fb:18:f8:39:10:81:e9:bd:
db:54:80:a2:10:a6:6e:d6:c6:0a:a7:58:fa:93:40:
a7:32:6f:35:6c:11:d6:e6:05:25:b6:be:8b:14:2d:
3f:2e:64:79:af:9e:fe:0a:13:c2:6e:e7:9e:b7:69:
91:bc:60:4e:e6:86:ea:81:12:79:52:e5:52:bb:08:
11:e6:29:7a:49:53:05:2a:fc:03:38:75:dc:7e:78:
a2:fb:ef:fe:ae:2f:40:f1:04:4e:40:6b:54:cb:df:
77:2c:9f:c6:80:d6:50:7b:6d:5c:e8:c9:41:ff:4c:
dc:ed:fb:41:c8:e0:a6:f6:e3:63:a1:58:35:ad:83:
1d:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:34:69:A9:66:F4:DF:3C:F2:81:71:D8:7C:74:78:0F:C4:72:F9:79
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/1efbe6-a014-417c-9685-583920f5f05b/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/1efbe6-a014-417c-9685-583920f5f05b/1/RzRpqWb03zzygXHYfHR4D8Ry-Xk.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.197.7.0/24
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
43310
Signature Algorithm: sha256WithRSAEncryption
a2:bf:af:9c:49:be:ac:af:db:a6:a9:e4:a6:7e:bc:b3:f6:13:
3b:a5:82:bc:93:99:85:ef:34:9f:ee:df:5c:f0:f3:bc:bb:32:
f1:bd:00:31:af:29:21:50:a6:3b:09:6e:ef:1d:96:d2:36:6e:
02:f0:e4:dc:81:04:29:9b:56:49:a7:aa:d0:6d:18:95:4a:fe:
0e:e1:98:b6:41:fe:13:74:15:64:f9:a8:4d:0e:1e:97:10:0d:
75:09:75:1a:ed:53:4a:ee:c3:69:ba:9b:e0:e2:39:49:8a:08:
9f:c7:80:33:a8:c8:2e:f4:9b:13:1c:68:0f:23:f5:92:46:af:
31:22:d9:57:52:05:64:f1:b3:4d:eb:8b:b5:07:21:c3:84:d9:
4d:4b:f4:85:5d:18:90:af:83:7f:b7:56:49:ef:ad:c4:c4:2d:
f6:05:57:db:81:fb:14:19:e3:fc:ad:79:37:1f:71:5a:e2:76:
a0:80:e3:26:cf:89:a8:2a:8b:bc:4b:4d:8c:5c:88:ac:16:44:
cc:6e:c7:47:b9:48:75:c3:a5:8b:bf:10:53:96:82:fd:1e:33:
1a:06:b5:73:7a:4f:08:81:9d:f8:ec:f1:08:bc:7d:9c:82:60:
fe:7f:39:f9:97:1e:84:9f:d2:d9:da:1a:53:bd:b4:75:43:2a:
d3:4f:6e:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 26 00:48:21 2024 by rpki-client on console-ams.rpki-client.org