Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/TS-f1cihTNyfMcRYXNYNtXz_tMI.cer
File: TS-f1cihTNyfMcRYXNYNtXz_tMI.cer (raw, json)
Hash identifier: HWgF/wGlea0YtCCRPgqUIP55nmuFCG7RrI7qTPk7PCY=
Subject key identifier: 4D:2F:9F:D5:C8:A1:4C:DC:9F:31:C4:58:5C:D6:0D:B5:7C:FF:B4:C2
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC6499EFED861BFCD3F08BC79D48A99E5
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/b1/da4e46-2a93-44a4-b8e3-c2133dd81b56/1/TS-f1cihTNyfMcRYXNYNtXz_tMI.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/b1/da4e46-2a93-44a4-b8e3-c2133dd81b56/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 18:29:22 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 34022
IP: 193.17.195.0/24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:49:9e:fe:d8:61:bf:cd:3f:08:bc:79:d4:8a:99:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 18:29:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4d2f9fd5c8a14cdc9f31c4585cd60db57cffb4c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:7d:de:63:e3:cf:2e:84:88:21:1a:63:51:26:
88:c4:b5:d6:0c:a5:05:5b:81:55:1c:02:32:a0:ca:
87:d4:75:36:37:01:3e:97:4e:8e:f4:f2:21:78:91:
bb:2d:77:3b:a9:9f:2a:49:e0:8f:cd:66:06:d5:c4:
9f:a7:3e:25:89:eb:48:b2:3e:63:7a:e3:5e:d3:64:
71:36:4b:f0:00:21:98:3c:cb:e8:a2:38:86:ec:b2:
7f:f7:61:68:22:49:5e:0a:3b:d9:9b:f6:22:6b:26:
e8:b0:a2:ac:bc:b3:75:75:91:38:be:6c:06:c0:42:
6b:75:fb:24:c9:72:da:29:ae:91:49:c7:56:ce:77:
ef:a2:bc:5f:02:25:18:c1:2a:9e:0a:70:87:e1:6f:
3b:25:45:14:3c:c1:80:2b:32:6c:e3:3d:40:15:87:
b2:1d:53:d5:a9:db:90:6e:cd:9e:75:18:d2:1d:b7:
ee:3c:6e:7a:10:b8:ea:d1:57:3a:fe:ba:34:5b:28:
8f:05:78:9a:e9:f7:90:4c:6e:23:ac:e9:42:95:17:
70:88:a0:84:47:ce:bf:22:0a:d9:86:a2:97:84:7c:
ae:7d:4d:2d:25:17:a3:22:4a:72:e0:da:4a:5c:f1:
93:5b:05:44:93:7f:fb:78:f3:a4:fc:7a:05:24:d7:
2c:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:2F:9F:D5:C8:A1:4C:DC:9F:31:C4:58:5C:D6:0D:B5:7C:FF:B4:C2
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/da4e46-2a93-44a4-b8e3-c2133dd81b56/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/da4e46-2a93-44a4-b8e3-c2133dd81b56/1/TS-f1cihTNyfMcRYXNYNtXz_tMI.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.17.195.0/24
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
34022
Signature Algorithm: sha256WithRSAEncryption
03:96:34:f4:51:77:41:75:ac:f1:cf:f0:ad:9f:4d:db:49:18:
6a:5f:62:ce:05:5e:8b:69:a3:90:57:22:53:8c:3f:2f:92:0f:
b5:7b:04:34:32:99:cf:d2:8a:ee:12:50:aa:3f:11:42:e0:7b:
fa:29:3a:73:84:af:e6:06:66:85:c6:07:f2:46:25:df:b2:26:
47:3f:91:67:b5:12:27:b2:21:21:5f:3a:b2:3f:fc:c2:26:0d:
3d:e9:97:88:65:6a:61:b5:fb:23:a6:94:6d:d7:e5:96:c0:5e:
5e:8d:5d:73:76:46:3a:6d:b1:44:c9:74:7c:dc:8a:50:c7:7a:
f5:84:20:fc:9f:99:3f:e0:ac:e7:e0:ac:e5:db:47:3a:ff:74:
4a:2f:ba:28:4f:50:cf:46:29:90:f5:f1:28:ec:98:f4:2a:0b:
47:a2:6b:db:77:f5:e5:15:01:8e:cd:be:98:15:91:67:99:d4:
3d:a5:de:b8:6b:2b:cd:fe:a2:50:02:5f:2b:b4:1f:92:47:87:
60:5d:21:4a:48:ca:a5:25:29:b8:c1:05:24:91:5c:ff:79:3f:
d7:cc:50:88:29:f6:c6:44:7a:75:7e:f2:69:3a:e6:ef:1b:b7:
68:01:fb:05:bd:b4:bd:a2:64:50:29:d9:55:b5:83:28:34:3c:
fc:b7:0f:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 07:01:35 2024 by rpki-client on console-ams.rpki-client.org