Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/U5Ork-hXAac-9NXgDtbrmJOTc5Q.cer
File: U5Ork-hXAac-9NXgDtbrmJOTc5Q.cer (raw, json)
Hash identifier: XvnAKTxTGPvz9kwxztI/VJu+sjCbSAWAW1uEwBBIiBE=
Subject key identifier: 53:93:AB:93:E8:57:01:A7:3E:F4:D5:E0:0E:D6:EB:98:93:93:73:94
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC6B93E98859B9A6114C75C754540DE8E
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/fd/ad7662-73ff-4594-8e30-59a7efd384c0/1/U5Ork-hXAac-9NXgDtbrmJOTc5Q.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/fd/ad7662-73ff-4594-8e30-59a7efd384c0/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 20:31:18 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: IP: 185.16.132.0/22
IP: 185.77.160.0/22
IP: 2a03:d740::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b9:3e:98:85:9b:9a:61:14:c7:5c:75:45:40:de:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 20:31:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5393ab93e85701a73ef4d5e00ed6eb9893937394
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:80:e1:68:6d:03:f8:e7:a8:5c:46:12:4b:03:
23:8a:29:0c:1f:e9:91:73:03:7d:d1:b1:8e:f9:ee:
1c:7f:9c:7c:85:11:20:80:61:de:05:81:13:e5:4c:
8c:3a:c9:a9:1d:d4:f3:f7:92:f7:0a:e5:87:c6:2f:
3e:60:8a:a1:dc:de:41:c4:36:21:bc:c4:a8:d2:9b:
c7:39:11:df:34:2f:25:f7:1b:b5:54:bb:9b:10:80:
cc:70:34:09:65:20:ca:f7:7c:69:ed:ce:07:21:ff:
26:f7:d8:8b:2a:05:ec:b5:70:c2:ab:71:48:a0:e1:
44:ab:30:b0:24:0c:ee:e0:50:dc:0e:e0:8f:44:db:
d9:59:de:a8:f8:0c:46:c2:b0:e1:32:62:ee:cc:09:
0b:4f:e8:3d:a0:cb:7a:6d:bf:39:b1:1d:7b:0a:d3:
9a:8f:b8:dd:d8:aa:04:7e:a9:8e:88:22:de:cd:5f:
4c:3d:9c:74:4b:7a:13:9c:54:f4:03:09:4b:c4:c3:
4e:c5:65:4d:1f:48:18:06:56:60:e1:42:e1:60:32:
5d:53:59:27:13:3f:00:26:fe:79:17:82:49:3d:09:
f5:c2:7e:42:2d:78:23:02:ee:48:76:a5:ca:80:0b:
3d:bf:50:54:5b:4f:e4:4c:b4:df:bf:c0:54:1c:a7:
a7:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:93:AB:93:E8:57:01:A7:3E:F4:D5:E0:0E:D6:EB:98:93:93:73:94
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/ad7662-73ff-4594-8e30-59a7efd384c0/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/ad7662-73ff-4594-8e30-59a7efd384c0/1/U5Ork-hXAac-9NXgDtbrmJOTc5Q.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.16.132.0/22
185.77.160.0/22
IPv6:
2a03:d740::/32
Signature Algorithm: sha256WithRSAEncryption
8f:a4:6b:b5:1a:a0:4b:31:54:09:12:f6:6e:17:ab:7e:de:28:
98:0b:5a:ef:04:c5:e5:7e:d8:ed:10:f6:29:48:05:69:76:71:
12:d0:4e:ca:1b:16:4a:39:3e:57:f8:d5:66:a5:6b:4a:80:b0:
76:bd:5e:79:72:c5:2c:30:a4:54:9e:d1:5a:4c:e6:64:67:52:
f0:9a:ac:3b:ea:b0:f0:16:7e:51:4b:ab:41:4b:63:78:89:07:
af:d4:21:4b:6c:c9:8b:15:be:d8:66:51:91:16:25:33:4c:d0:
2a:a9:cd:37:70:78:a2:40:69:c2:35:73:3a:9b:8b:95:db:d5:
9a:2a:9f:7e:e5:0f:25:4f:82:7e:44:ab:f1:d9:64:54:d4:d2:
f0:6a:2d:92:08:9a:68:a7:d8:4b:d9:12:2e:10:c1:ca:90:e3:
00:8d:34:a4:e0:11:3c:e3:c0:62:2c:df:ae:23:35:41:ef:a8:
b2:69:ed:be:ba:26:2b:3e:09:d2:b4:46:e6:6d:78:4f:7b:7d:
14:3b:f3:a3:a1:27:75:b1:ad:4d:e1:78:b4:5d:27:32:9c:57:
a7:64:fd:d7:99:33:40:21:09:5f:cb:29:6d:7c:63:47:e7:cc:
4c:86:ea:f4:a4:5b:54:0c:5c:8b:c7:25:79:c5:a5:3b:c9:b0:
93:be:91:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 03:01:27 2024 by rpki-client on console-fra.rpki-client.org