Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/SwGEomKzUJ4aumGpC-yrMrACVUw.cer
File: SwGEomKzUJ4aumGpC-yrMrACVUw.cer (raw, json)
Hash identifier: U9mQaJusJ6UycEIJhYzlU28tXjxgnwQ9KA34qY1dzko=
Subject key identifier: 4B:01:84:A2:62:B3:50:9E:1A:BA:61:A9:0B:EC:AB:32:B0:02:55:4C
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC492E972D4EB099086B9643EF91B1202
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/1a/264ad4-aa1b-46e3-94b2-e35afa36a428/1/SwGEomKzUJ4aumGpC-yrMrACVUw.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/1a/264ad4-aa1b-46e3-94b2-e35afa36a428/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 10:30:11 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: IP: 141.81.0.0/16
IP: 2001:678:734::/48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:92:e9:72:d4:eb:09:90:86:b9:64:3e:f9:1b:12:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 10:30:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4b0184a262b3509e1aba61a90becab32b002554c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:e8:3f:0b:1e:e7:98:d2:b6:e2:13:a9:b9:8f:
1d:98:e0:2c:d9:dc:b1:84:ef:6d:37:07:5b:6d:f3:
50:8e:e8:39:ec:78:76:39:39:d1:a6:b7:35:4c:83:
bf:29:ec:60:88:6d:dd:66:4d:d8:91:a0:8f:ee:06:
9d:20:0a:d3:88:3a:e2:0f:68:8d:7c:33:13:08:fe:
a0:70:1e:9e:15:c2:c9:c0:06:56:00:b6:62:63:f4:
e5:52:51:f1:ec:91:16:96:85:18:ac:7a:9e:9b:ed:
45:82:e4:77:c6:b5:b5:42:eb:a1:31:17:ba:42:5c:
8e:b5:3d:fc:38:4b:35:db:ab:ae:4c:96:f1:da:ce:
76:4b:fe:a3:e9:7c:65:9a:c0:05:22:f6:09:c2:f5:
47:2d:d3:06:1e:73:39:32:e7:32:c3:98:b6:bf:b4:
5e:1b:08:dd:57:20:69:ed:eb:49:c1:4d:d1:ba:23:
93:fb:81:80:3a:89:98:6a:a7:d3:d7:40:c1:99:16:
f5:5c:41:1a:88:6c:57:df:f7:58:85:e4:30:d5:7c:
94:91:3d:5c:ae:a4:0b:5e:42:93:57:1d:75:f0:58:
44:37:e2:3d:6b:8b:98:be:c7:34:c7:2c:e3:37:38:
03:14:8d:98:8a:bf:e0:e5:2d:dc:7c:92:84:85:13:
e0:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:01:84:A2:62:B3:50:9E:1A:BA:61:A9:0B:EC:AB:32:B0:02:55:4C
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/264ad4-aa1b-46e3-94b2-e35afa36a428/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/264ad4-aa1b-46e3-94b2-e35afa36a428/1/SwGEomKzUJ4aumGpC-yrMrACVUw.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.81.0.0/16
IPv6:
2001:678:734::/48
Signature Algorithm: sha256WithRSAEncryption
3d:97:d7:a2:fc:42:82:54:95:d5:50:bc:be:bf:21:c8:79:e4:
fc:68:de:02:ed:ad:11:0d:48:e0:cf:5a:b4:c3:ee:d0:c5:aa:
65:77:91:c0:3f:03:6b:a1:49:88:14:6b:e2:9c:b2:1a:dd:1d:
a3:8f:6f:a2:97:3b:05:60:4c:fe:b8:cb:63:64:e5:7e:f2:f4:
47:d5:8a:de:3b:41:b3:0a:53:ca:7b:98:db:d1:f4:63:fe:9e:
1b:0b:8a:5c:b8:ba:89:21:8b:76:df:5b:d2:7a:f0:7d:f2:ea:
98:e6:a7:cd:f1:a5:ca:23:46:19:6e:ae:24:ae:45:07:4c:a9:
c0:56:96:0c:08:31:e4:8d:4a:2c:de:05:40:0d:99:0f:2b:2c:
46:15:e0:de:ed:d4:a8:1c:b7:31:b8:2d:5b:97:12:b2:7d:61:
52:4e:b8:7f:6a:78:58:d4:be:02:57:7d:49:54:98:d8:b5:03:
7c:26:f3:14:d0:d9:24:89:46:32:56:7a:f2:4e:70:bd:01:76:
75:d5:a7:28:79:a4:a2:c3:e3:08:21:09:73:1a:5e:33:11:98:
44:d2:b1:42:86:7b:f1:ba:8d:5e:d9:41:13:96:74:00:0d:aa:
5c:55:45:4d:67:99:17:02:71:dc:05:5a:c5:ad:c1:e0:30:58:
f8:ba:e6:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 07:35:52 2024 by rpki-client on console-fra.rpki-client.org