Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/V0lGcOlW4_sVEZSMWVbipCZ5M4g.cer
File: V0lGcOlW4_sVEZSMWVbipCZ5M4g.cer (raw, json)
Hash identifier: dGP09h15Ed+2GUSTUSNcj8G618pXjBd5rLXMROUsg3c=
Subject key identifier: 57:49:46:70:E9:56:E3:FB:15:11:94:8C:59:56:E2:A4:26:79:33:88
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC64A193F069AF3EEFCF6A7A650DAC65A
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/b8/49881e-b0a9-4d5f-b072-a53772b01cb2/1/V0lGcOlW4_sVEZSMWVbipCZ5M4g.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/b8/49881e-b0a9-4d5f-b072-a53772b01cb2/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 18:29:54 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 209336
IP: 193.42.44.0/22
IP: 2a0d:de40::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4a:19:3f:06:9a:f3:ee:fc:f6:a7:a6:50:da:c6:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 18:29:54 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=57494670e956e3fb1511948c5956e2a426793388
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:41:6d:bd:91:5a:96:1e:2b:6f:95:c9:ef:c2:
7c:22:f3:d2:a3:f5:63:56:6d:61:7c:37:d2:b9:b8:
56:88:f1:b4:14:de:9a:c1:92:f8:8a:7e:1d:68:31:
e0:0e:0d:81:57:38:b0:36:7d:7e:0e:42:bc:28:fe:
0c:0a:b7:b2:1d:77:59:95:52:0b:fe:f3:af:bc:a5:
d0:ed:74:11:b7:85:d2:6e:4b:74:49:19:d9:f6:92:
07:93:c5:37:1c:b3:1b:ff:fd:99:82:cf:33:6e:c5:
a3:24:0b:48:ab:dd:4b:44:62:42:62:ef:ce:e4:47:
2c:5b:24:96:5b:e6:1c:54:16:6a:94:80:fa:22:e8:
7a:45:e7:b6:e5:33:47:e3:22:e5:e6:de:64:cd:a3:
f0:d6:a2:de:af:39:f5:5c:29:79:d8:b6:e5:79:3b:
8f:ed:74:94:2d:e3:32:d6:1b:a6:c3:3b:9b:11:42:
32:1a:46:5b:c7:a3:f9:70:66:14:d2:1b:6d:d2:6f:
f5:39:83:90:43:13:4d:b4:89:fc:e9:86:08:88:0e:
b0:17:0f:71:ce:cb:ca:a1:9f:1a:c3:dc:d9:cb:0b:
57:d0:b7:43:0d:de:56:ff:0c:be:04:40:99:30:d6:
03:05:1f:e0:50:70:9c:e6:68:69:ca:26:d6:e4:6f:
a6:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:49:46:70:E9:56:E3:FB:15:11:94:8C:59:56:E2:A4:26:79:33:88
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/49881e-b0a9-4d5f-b072-a53772b01cb2/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/49881e-b0a9-4d5f-b072-a53772b01cb2/1/V0lGcOlW4_sVEZSMWVbipCZ5M4g.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.42.44.0/22
IPv6:
2a0d:de40::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
209336
Signature Algorithm: sha256WithRSAEncryption
8b:97:47:23:95:a2:c4:0e:69:31:3b:5d:a7:f7:84:06:d1:8f:
4e:19:87:d7:62:c5:6e:65:36:e0:d4:e6:97:d6:d3:c4:11:f3:
a1:16:bb:e7:50:fd:6d:86:8d:a1:5e:4c:a1:8a:f6:84:3c:7e:
e5:dd:0d:ac:20:68:70:bf:b6:2b:48:50:a5:b9:93:ad:ca:e0:
0c:36:32:57:bf:50:4e:ed:0a:76:60:76:38:b7:cc:9f:26:c1:
c1:b6:32:b2:c9:bb:d7:6a:91:cc:26:cb:a7:44:0e:27:05:7a:
bd:48:5a:f3:62:f8:d5:79:ee:64:d7:f5:09:7a:f8:95:f5:da:
25:34:81:7b:c1:1a:00:a4:7c:c2:f6:5d:b3:93:ba:8f:65:5c:
a9:a4:26:c0:a2:b9:b9:36:5b:77:d0:92:43:cc:ba:95:de:27:
66:20:71:61:f9:09:89:9a:b0:b1:d7:0a:fb:f2:67:83:19:7e:
d3:fe:9d:72:65:cb:e5:37:8f:f2:c1:19:4f:7b:93:05:6d:e0:
f6:12:f6:28:60:51:31:31:cf:7a:43:c0:b4:0c:8b:9e:fc:6a:
93:c3:87:b8:8b:0a:38:5c:bd:0a:17:92:f4:b2:bd:90:b2:4c:
5a:82:fe:72:b1:c2:d1:2f:9a:73:43:10:20:0f:31:b8:6a:dc:
66:51:21:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 11:34:40 2024 by rpki-client on console-ams.rpki-client.org