Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/SqvRp2WuXL4dyT2vAk06R-cqyRg.cer
File: SqvRp2WuXL4dyT2vAk06R-cqyRg.cer (raw, json)
Hash identifier: 3bQqY+C78a/kgmqvDLCJrrtoQaKFLJ110a1sb2Nr70U=
Subject key identifier: 4A:AB:D1:A7:65:AE:5C:BE:1D:C9:3D:AF:02:4D:3A:47:E7:2A:C9:18
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC501125B8384F661DBCC371356AE10C7
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/d7/fbf239-5f8a-4d6a-a0cb-44ac6adb3a49/1/SqvRp2WuXL4dyT2vAk06R-cqyRg.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/d7/fbf239-5f8a-4d6a-a0cb-44ac6adb3a49/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 12:30:30 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 210961
IP: 2001:67c:30::/48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:01:12:5b:83:84:f6:61:db:cc:37:13:56:ae:10:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 12:30:30 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4aabd1a765ae5cbe1dc93daf024d3a47e72ac918
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:cc:6b:03:cc:e8:d0:12:29:17:9d:87:b3:cd:
51:3f:6b:6b:a1:ee:18:07:36:3e:14:7e:ea:26:bf:
59:44:1f:b2:5e:41:f9:bb:b2:bc:61:c0:88:db:a8:
8d:ba:fa:07:83:f0:47:a1:d7:06:d0:e6:09:06:ad:
e3:ca:34:4c:86:2e:19:98:52:ec:56:13:e0:dd:94:
88:a3:c7:7c:76:a6:08:e9:6f:21:b6:cd:18:3f:ab:
fe:69:fd:ac:42:5c:eb:4d:5d:85:31:c5:a4:90:28:
5d:78:ab:5c:04:a6:39:bb:d3:47:20:28:6b:31:c7:
9e:3e:3d:77:4f:59:ed:ab:f0:53:48:d7:fa:89:38:
09:16:72:c9:bb:64:4b:76:de:63:41:c3:cc:2e:bb:
36:42:39:62:a3:d7:73:99:69:98:74:62:f3:11:37:
ba:c7:5a:42:00:55:6f:9b:7a:56:4e:09:ef:09:b2:
b1:b8:8c:19:10:b8:93:d4:67:6a:cb:83:65:2b:b0:
e2:71:55:92:6c:ce:7b:b9:f8:99:53:e3:03:8b:54:
00:47:ba:c0:a1:79:47:ec:52:9a:b5:a9:0e:a2:d6:
6b:23:46:1c:02:60:08:c5:6e:0d:85:a6:16:0e:a1:
01:80:c3:fe:e6:40:95:16:f2:63:ed:9e:46:ef:70:
86:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:AB:D1:A7:65:AE:5C:BE:1D:C9:3D:AF:02:4D:3A:47:E7:2A:C9:18
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/fbf239-5f8a-4d6a-a0cb-44ac6adb3a49/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/fbf239-5f8a-4d6a-a0cb-44ac6adb3a49/1/SqvRp2WuXL4dyT2vAk06R-cqyRg.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:30::/48
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
210961
Signature Algorithm: sha256WithRSAEncryption
23:17:ae:7f:f4:61:4b:ad:a4:00:4e:c9:6d:bd:3b:7a:1b:6c:
c0:b3:7a:62:4d:b3:08:4b:01:1c:a6:85:fc:23:c5:d9:4d:55:
01:b3:5a:a8:d7:08:42:d7:1c:17:36:75:8d:77:8b:81:54:da:
8e:c7:7f:35:41:c6:c8:ff:00:27:f9:5f:15:26:56:98:c6:db:
69:7a:22:36:0b:a9:26:4e:ef:5f:55:5a:62:dd:d6:75:a4:db:
81:05:45:17:84:f2:48:2f:97:cf:da:91:06:97:20:bd:37:48:
84:4e:0b:fe:6c:d3:99:ee:3e:67:8a:1d:a1:d6:63:36:e3:2b:
c5:77:57:1c:47:fd:ff:1c:90:cc:7c:08:0d:43:f3:60:42:34:
f1:e4:28:65:0c:87:bf:8e:2b:18:93:70:8d:be:e6:0e:d9:b9:
19:d8:df:d1:32:12:f7:e4:14:31:c5:27:a0:c4:af:9d:7c:23:
b6:3d:0f:65:a2:62:06:be:85:ca:76:df:1a:48:53:78:e7:7d:
0e:2c:aa:f7:d1:9e:f4:28:da:05:1d:36:94:99:5f:2e:5a:d1:
ba:57:aa:84:1e:c0:d6:5f:12:19:ff:9a:65:cb:a6:32:86:5d:
06:db:e6:56:70:e2:49:1e:aa:08:76:ce:f2:95:49:b4:79:6e:
81:25:1a:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:09:14 2024 by rpki-client on console-fra.rpki-client.org