Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/SIkYymYYDe4Hm69FBT5M61dikr0.cer
File: SIkYymYYDe4Hm69FBT5M61dikr0.cer (raw, json)
Hash identifier: CJ7w+zFR03GwjGGxDP4ri+TCCvo6svGIE0wx8ubxsiw=
Subject key identifier: 48:89:18:CA:66:18:0D:EE:07:9B:AF:45:05:3E:4C:EB:57:62:92:BD
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC4245F14E91101F06D60EFA898907A50
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/cf/b24936-097f-41e3-b58d-d2cfd5f22e7a/1/SIkYymYYDe4Hm69FBT5M61dikr0.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/cf/b24936-097f-41e3-b58d-d2cfd5f22e7a/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 08:29:27 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: IP: 194.34.64.0/19
IP: 194.93.92.0/22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:24:5f:14:e9:11:01:f0:6d:60:ef:a8:98:90:7a:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 08:29:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=488918ca66180dee079baf45053e4ceb576292bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:9e:c9:a6:b3:dd:45:25:1e:bc:80:b2:40:ac:
2a:0c:70:ba:9f:fc:f5:a7:d4:2d:1e:6a:cd:dd:01:
0d:7b:a6:c9:8a:3f:a1:01:cf:0c:58:ad:c0:39:a5:
26:ee:28:1a:08:05:41:ca:92:fd:eb:28:1f:f7:fb:
f9:d7:0a:e5:2d:c2:94:90:d7:d6:3b:24:87:bb:3c:
ad:a1:a8:b7:e8:fb:b8:3c:6f:18:e3:2a:93:23:7d:
2e:d4:2d:41:4c:37:6b:d2:f0:23:92:cd:4c:d5:7f:
c3:f1:71:54:1e:81:57:aa:fc:7f:d0:87:92:9c:3e:
47:2e:43:12:3d:48:80:90:c1:68:92:15:db:98:8b:
06:c2:02:ac:3b:3e:7c:d8:45:d5:13:d9:1b:07:37:
84:10:d3:da:63:04:a5:13:c9:9d:53:a3:d6:f8:d0:
ee:dc:99:a2:75:96:a0:40:b1:63:8c:af:5b:23:9e:
65:7f:b6:11:72:18:55:0f:3d:5d:c2:5f:cb:6a:ab:
15:87:f3:57:eb:78:ac:2b:86:fd:61:c5:d7:2e:ab:
81:e9:4f:51:1c:6c:21:75:74:cb:e5:51:c2:2f:61:
11:c5:32:38:04:e6:79:a7:9c:b1:0e:ff:98:69:ed:
06:77:f0:0e:be:27:33:9c:40:b5:c2:92:99:dd:b2:
f5:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:89:18:CA:66:18:0D:EE:07:9B:AF:45:05:3E:4C:EB:57:62:92:BD
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/b24936-097f-41e3-b58d-d2cfd5f22e7a/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/b24936-097f-41e3-b58d-d2cfd5f22e7a/1/SIkYymYYDe4Hm69FBT5M61dikr0.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.34.64.0/19
194.93.92.0/22
Signature Algorithm: sha256WithRSAEncryption
a0:40:85:d9:a3:b1:24:a9:92:0e:97:a9:67:6b:2e:51:e8:54:
c0:80:b8:fd:ff:4a:8f:f0:33:7a:13:7b:2c:3c:48:7b:76:01:
72:59:f3:09:95:0a:25:95:ea:a0:71:85:f5:ac:c1:2e:2f:26:
18:0f:f8:a3:82:28:05:3b:20:dc:70:b0:47:e8:d1:ef:49:59:
47:66:22:49:e4:1d:48:7b:29:bb:09:66:62:03:30:db:c1:0e:
b4:6c:6b:c3:ae:13:d5:72:a8:89:14:68:b9:a9:2b:5e:6a:16:
5c:7e:10:b2:20:77:d3:3a:13:95:29:ce:05:ff:1e:3a:37:1d:
47:c4:63:64:e6:50:72:e7:28:fb:27:22:9b:58:4d:a2:56:06:
83:72:a1:8f:b8:7e:3c:56:26:6d:9a:86:52:d3:3e:6b:0e:d5:
bb:86:c6:ef:fb:d0:d8:62:a4:52:9d:e3:63:b6:35:7d:91:55:
97:34:db:1e:a6:d3:12:f6:81:2c:e8:73:c6:b5:04:1b:c2:29:
ee:f2:72:b8:d1:65:5e:94:4c:2f:3b:56:33:ec:08:27:d8:e8:
0f:fc:a2:2e:9d:2c:64:65:9e:8e:72:8e:2d:d4:34:d9:fc:e2:
ae:f1:ed:fb:ff:75:c3:ab:44:7a:1b:00:26:44:41:0e:92:61:
1c:50:64:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 01:45:22 2024 by rpki-client on console-ams.rpki-client.org