Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/S1dyWwpgXU3cxGS3Dcs6FipfBVs.cer
File: S1dyWwpgXU3cxGS3Dcs6FipfBVs.cer (raw, json)
Hash identifier: 1Iu0OMKNFsFB/jtDiJunLHHVA2UZI70aGii8Y/6z6JQ=
Subject key identifier: 4B:57:72:5B:0A:60:5D:4D:DC:C4:64:B7:0D:CB:3A:16:2A:5F:05:5B
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC727713DC885CA294BABBEACD71002B7
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/be/e005c2-affa-458f-aaf8-8af56e733600/1/S1dyWwpgXU3cxGS3Dcs6FipfBVs.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/be/e005c2-affa-458f-aaf8-8af56e733600/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 22:31:40 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 51440
IP: 37.122.158.0/23
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 11:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:27:71:3d:c8:85:ca:29:4b:ab:be:ac:d7:10:02:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 22:31:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4b57725b0a605d4ddcc464b70dcb3a162a5f055b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:4f:e1:6c:fe:17:db:ac:b3:7d:46:ab:c7:cb:
40:3e:53:57:56:38:00:b7:b6:00:7c:8c:f6:bf:44:
34:bd:aa:e5:51:35:21:33:90:a1:50:68:0b:0c:63:
02:8c:33:4d:a7:4c:0f:23:87:c0:72:e3:86:03:ce:
bf:7e:6b:57:cc:72:d6:a0:3c:da:b7:b8:d2:df:98:
f1:0f:fb:99:5f:41:cd:b3:a8:2d:b5:20:ec:8e:06:
e7:af:2d:ed:06:cf:4b:25:28:9a:a6:fe:40:47:15:
74:7f:db:9f:78:8d:93:b1:d1:bb:ba:b4:df:1b:4a:
f5:28:59:01:91:31:f0:6c:58:d8:c8:c3:0c:50:06:
fd:58:1f:19:0c:dc:04:e6:81:0f:fb:aa:58:47:7d:
ce:6a:b9:16:2c:f4:4f:ee:5d:76:90:01:a9:64:04:
29:ab:b5:76:76:0f:dd:85:cc:cc:ba:d0:16:c0:f4:
c0:d9:de:7a:40:71:7c:45:b3:ce:51:dc:6a:e0:3a:
dd:ea:95:fb:bd:1a:5e:99:d7:5b:e8:15:11:27:63:
1e:93:62:f0:3f:df:df:be:24:01:aa:32:d1:05:16:
a8:88:38:da:26:52:33:aa:4c:72:d5:65:35:57:b7:
bf:31:a8:63:3a:36:91:89:f0:18:d0:1f:af:80:ef:
21:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:57:72:5B:0A:60:5D:4D:DC:C4:64:B7:0D:CB:3A:16:2A:5F:05:5B
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/e005c2-affa-458f-aaf8-8af56e733600/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/e005c2-affa-458f-aaf8-8af56e733600/1/S1dyWwpgXU3cxGS3Dcs6FipfBVs.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.122.158.0/23
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
51440
Signature Algorithm: sha256WithRSAEncryption
8c:3d:61:7c:f6:cd:0b:88:4c:bc:61:05:0e:de:11:bd:b0:50:
8a:29:76:43:18:99:78:0d:aa:f7:27:03:c8:47:a4:1d:66:40:
e7:f5:f5:b3:77:c2:3e:e9:b3:0c:fe:aa:83:b0:fc:d0:6b:f3:
01:4f:94:4a:fb:f6:5f:ef:2f:10:97:28:91:e2:39:11:5b:25:
ec:05:06:9e:e7:b7:1d:84:77:de:fb:4e:32:48:92:13:ae:80:
8c:c8:05:79:bf:11:5e:9b:91:ef:3a:c4:e4:9f:d3:36:2b:c7:
e0:69:2e:5f:95:c7:74:cf:29:7a:df:18:f0:6c:55:fd:2e:0f:
99:95:66:ab:cb:e2:7a:bc:00:44:c5:f4:e6:f8:66:c8:af:33:
09:2e:02:11:c4:cb:87:b8:c0:b8:9f:18:82:cd:bc:f7:30:17:
53:93:18:a5:93:62:8c:de:d3:ac:1e:0c:b3:7a:49:58:41:63:
eb:b0:52:42:52:a8:18:83:78:71:ee:44:3c:80:3d:ac:28:04:
a6:ed:31:0e:ae:72:5a:ae:44:71:d3:51:ed:fe:af:c5:eb:0c:
c7:d0:50:cd:f7:79:97:2f:f7:08:86:0d:30:98:aa:13:7b:c3:
f6:85:c6:9e:9b:4c:2d:d5:44:62:70:d4:00:91:63:b5:91:64:
3f:09:c8:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 13:44:11 2024 by rpki-client on console-ams.rpki-client.org