Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/UX1ZQ4zCAdyi_BznpodzvXG-Dr4.cer
File: UX1ZQ4zCAdyi_BznpodzvXG-Dr4.cer (raw, json)
Hash identifier: QsJho1NlVXX6LPK93mwKD4avxI7mSWNG9hGjhZXUq6E=
Subject key identifier: 51:7D:59:43:8C:C2:01:DC:A2:FC:1C:E7:A6:87:73:BD:71:BE:0E:BE
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC49327F45DBB3AEB9E3D6815719F877E
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/82/50f5ba-bdf4-4a71-a836-8b31e23382da/1/UX1ZQ4zCAdyi_BznpodzvXG-Dr4.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/82/50f5ba-bdf4-4a71-a836-8b31e23382da/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 10:30:27 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 20887
IP: 193.108.19.0/24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:93:27:f4:5d:bb:3a:eb:9e:3d:68:15:71:9f:87:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 10:30:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=517d59438cc201dca2fc1ce7a68773bd71be0ebe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:d9:23:0c:9a:01:ae:ff:9d:d3:fe:32:50:80:
02:e6:c8:14:dd:24:d2:b4:e4:a3:87:41:e3:bd:52:
9a:8c:4d:ea:8b:57:12:8a:e6:b4:23:82:0b:44:2d:
f0:62:06:a1:63:98:7f:97:18:2a:75:5a:a6:f7:43:
42:99:95:b9:c0:47:38:68:91:8a:42:a9:33:5e:cb:
d1:c5:5a:f0:e0:1b:82:a6:57:6b:2d:f2:77:67:be:
58:12:29:af:8c:0f:49:d7:0e:54:4a:f5:1f:10:4f:
22:d0:17:bc:d0:f9:0f:c2:df:46:8b:33:99:ec:13:
64:9e:32:02:39:f5:6b:43:59:ef:ed:6d:40:5a:6b:
42:a6:20:c9:2d:ee:f3:fa:d3:d2:a5:41:c0:ba:01:
9a:56:93:a0:2d:12:20:b2:d6:bb:ac:2b:ac:67:2c:
98:2f:b5:fd:bd:57:81:f2:7c:e5:b3:a5:4d:35:da:
42:66:6f:f8:e0:08:d9:d0:77:cd:a4:e6:4d:09:c8:
89:b3:f1:64:3a:21:4c:ef:ed:a3:8c:db:2d:67:14:
3c:b2:68:8a:1f:93:89:45:61:95:03:6d:a7:75:5d:
3e:d4:c2:be:37:4e:ff:b1:12:65:56:3c:39:f9:1e:
5a:28:61:79:2d:69:90:09:3a:16:57:a7:03:42:22:
a6:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:7D:59:43:8C:C2:01:DC:A2:FC:1C:E7:A6:87:73:BD:71:BE:0E:BE
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/50f5ba-bdf4-4a71-a836-8b31e23382da/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/50f5ba-bdf4-4a71-a836-8b31e23382da/1/UX1ZQ4zCAdyi_BznpodzvXG-Dr4.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.108.19.0/24
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
20887
Signature Algorithm: sha256WithRSAEncryption
7a:d4:f0:ca:b7:1c:01:39:8f:59:78:41:2c:67:d3:cd:6a:2b:
2f:49:64:48:5d:3e:3f:15:11:80:b0:0a:f9:ca:af:75:5a:0d:
f3:4d:d3:36:37:10:f9:72:5f:49:7a:aa:25:4a:c4:b2:66:aa:
00:37:48:4f:17:55:ec:85:9c:26:20:e9:37:f1:c6:39:08:96:
8e:62:bf:d3:31:f0:5b:56:1a:db:de:3b:60:61:10:da:26:de:
5d:8f:dd:9a:5d:c8:8e:b2:02:82:64:de:97:fc:0d:a5:98:89:
b2:4b:6b:d9:eb:a2:08:76:38:c0:8b:8c:a0:9f:10:0f:ec:81:
0f:b2:38:ad:05:dd:d4:b4:fe:bc:d2:15:1e:b1:73:99:03:72:
93:32:6d:74:fe:ec:c9:a9:01:2c:a9:a9:88:32:3b:cd:b7:07:
55:e5:80:64:ee:50:1e:73:61:09:7c:03:e6:83:2e:4c:0b:1d:
57:eb:f4:d3:ac:2b:96:44:88:f4:c6:95:dd:e6:71:bc:3f:e7:
86:9b:9c:44:af:fa:0c:da:4b:cd:6a:f9:ec:58:f8:c5:6d:62:
e7:89:4d:6e:e2:aa:89:b4:b1:ae:d2:b5:18:23:30:af:10:2c:
d0:81:31:36:a4:29:43:af:f0:6a:8b:69:71:16:80:de:dd:57:
f6:af:ce:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 03:01:51 2024 by rpki-client on console-fra.rpki-client.org