Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/V0zsR2DtovCf62939yFCvmmbuMM.cer
File: V0zsR2DtovCf62939yFCvmmbuMM.cer (raw, json)
Hash identifier: cLD79r4XfwxpMO58FJckktjzduKPK3fODAIoqlcIUmg=
Subject key identifier: 57:4C:EC:47:60:ED:A2:F0:9F:EB:6F:77:F7:21:42:BE:69:9B:B8:C3
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CCA2B3CFF24C8C88CFA51DF32E41D0CFC
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/b4/9571da-efca-41d6-85f3-d6a99934c493/1/V0zsR2DtovCf62939yFCvmmbuMM.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/b4/9571da-efca-41d6-85f3-d6a99934c493/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 12:34:40 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: IP: 81.90.180.0/22
IP: 194.76.36.0/23
IP: 194.76.46.0/23
IP: 2a0f:2440::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 11:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:2b:3c:ff:24:c8:c8:8c:fa:51:df:32:e4:1d:0c:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 12:34:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=574cec4760eda2f09feb6f77f72142be699bb8c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:72:92:14:52:75:e1:0a:e2:bd:11:ff:7a:ca:
8e:42:1f:52:41:3a:04:f6:34:71:b1:6e:8c:0a:3c:
42:a6:4a:d3:df:14:14:d2:df:39:3d:c8:b9:0c:95:
bf:82:57:9a:ce:b8:2a:7e:97:1d:06:ad:b9:1a:33:
2a:68:6c:e0:df:3a:5a:91:e3:d0:33:fe:f6:21:b6:
a3:b5:b5:58:ac:f7:a7:d1:f1:e7:39:d8:81:1f:e5:
1c:2c:fc:31:d9:d9:7e:d0:8b:9c:bf:26:88:00:1b:
44:74:c2:4e:0c:22:e3:fb:1a:43:8b:3a:27:c2:2c:
98:b4:87:c4:e3:11:3d:20:4f:1c:16:57:f3:57:95:
cf:cd:00:88:4e:68:4b:89:0e:0a:2f:24:c8:e2:36:
e4:22:f6:36:3e:58:d8:84:76:bc:b4:3f:c4:f9:8d:
74:8b:0d:20:ad:70:9d:9b:94:44:43:75:f5:08:e9:
29:ed:d1:e7:46:ff:94:60:e6:97:97:12:60:14:23:
0c:e9:bb:de:9d:d5:b8:c0:09:a6:0f:b3:b2:ee:4a:
d5:9f:cc:6a:ac:03:2e:98:e3:32:2c:12:16:c7:09:
41:15:54:0b:a0:95:42:d3:c8:22:72:21:97:89:90:
ed:62:ec:05:02:54:51:f3:55:1f:72:ac:1b:d1:cf:
98:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:4C:EC:47:60:ED:A2:F0:9F:EB:6F:77:F7:21:42:BE:69:9B:B8:C3
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/9571da-efca-41d6-85f3-d6a99934c493/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/9571da-efca-41d6-85f3-d6a99934c493/1/V0zsR2DtovCf62939yFCvmmbuMM.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.90.180.0/22
194.76.36.0/23
194.76.46.0/23
IPv6:
2a0f:2440::/29
Signature Algorithm: sha256WithRSAEncryption
3b:24:c5:bd:c9:58:cd:46:50:62:93:33:dc:49:af:81:62:67:
ff:9b:a7:3f:16:3a:f6:09:a4:dc:7f:b3:6a:70:70:26:91:8e:
a0:32:ea:b9:e9:e5:9b:f2:76:1e:1d:7b:32:7f:ea:b7:2b:29:
22:2b:a9:59:a5:8a:c7:3e:5d:a8:0f:72:c7:e7:b8:5e:92:f4:
c0:ad:65:74:39:c8:67:d0:38:c1:1a:c3:1c:d3:87:c0:7b:ac:
bb:06:ec:10:e1:49:18:55:db:8b:8f:6f:d8:e3:d2:6a:5d:2e:
21:74:8c:14:13:d3:cc:6c:11:e7:d2:58:67:a7:4e:02:43:94:
8f:dc:d8:cb:f1:21:d4:a7:e6:04:9b:55:7c:47:2f:18:b5:eb:
81:1e:62:82:fa:d9:ee:b3:e8:a3:a1:a8:9a:45:bb:b6:d1:52:
83:9d:c1:6d:73:1a:70:23:65:2b:aa:bc:10:07:23:2b:0e:8e:
bf:b1:0d:23:66:5e:cb:55:cc:40:03:58:36:0c:e7:6b:fe:e2:
51:a5:a1:b2:f4:15:c6:27:9c:4d:54:d6:17:94:2b:b5:65:4d:
ac:92:e2:8b:e3:d5:b2:35:2b:4b:a2:b0:df:08:57:cd:47:7b:
bc:7a:f9:c0:fc:fb:8f:b5:61:71:19:7c:69:71:32:01:29:30:
e3:13:ef:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 13:46:02 2024 by rpki-client on console-ams.rpki-client.org