Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/VG8F2b4omRw-YZozFJWA5QzIbMk.cer
File: VG8F2b4omRw-YZozFJWA5QzIbMk.cer (raw, json)
Hash identifier: 5rKSdrSJi3Tww9D9XXRMIIfd+Ddaveg1iGL68BdLu1E=
Subject key identifier: 54:6F:05:D9:BE:28:99:1C:3E:61:9A:33:14:95:80:E5:0C:C8:6C:C9
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC500F68B6312B48D56CBDE39CEB7504D
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/57/8a0dc4-e402-4118-93a2-a3d8257803e5/1/VG8F2b4omRw-YZozFJWA5QzIbMk.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/57/8a0dc4-e402-4118-93a2-a3d8257803e5/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 12:30:23 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 62356
IP: 185.39.4.0/22
IP: 2a04:7900::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:00:f6:8b:63:12:b4:8d:56:cb:de:39:ce:b7:50:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 12:30:23 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=546f05d9be28991c3e619a33149580e50cc86cc9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:4f:c5:25:9f:a8:2d:b6:4d:e6:c3:d8:87:98:
8e:94:cc:72:8b:11:2c:7a:a8:ef:04:ec:06:15:e5:
92:e0:ab:80:0c:b3:a1:c0:32:f0:67:e2:49:55:fe:
0b:c0:39:a9:cb:97:5c:2c:af:9c:a2:d8:ae:cd:ae:
a8:9d:65:db:8b:d4:fa:74:b2:da:33:b2:2c:ad:6f:
04:92:15:26:fb:1a:6f:e6:ea:94:f4:ee:44:40:22:
6a:1a:2e:45:1c:bf:a3:16:3a:ab:51:6a:98:53:6f:
b0:a1:7e:e4:9c:96:a7:33:97:be:16:9f:6e:5a:20:
3d:8c:22:36:92:c0:8a:dd:e5:58:92:7e:99:f7:26:
7d:f6:df:4e:e6:cc:4e:53:ca:e9:50:7b:25:14:7c:
c8:3b:b6:30:10:1d:ae:c8:be:7c:5a:70:62:72:e6:
d7:6e:64:6f:23:6e:04:eb:53:bc:fb:45:3f:9f:4d:
08:2c:4c:e5:d5:4a:93:55:8d:ce:6c:f6:5f:97:43:
51:56:10:80:60:26:1e:07:f6:05:4b:83:04:e3:af:
fd:ad:07:96:23:11:a4:74:10:bb:b7:6f:4c:dd:1d:
33:84:d2:3e:97:61:33:5d:91:ec:42:90:3c:39:35:
ad:41:37:05:7b:06:31:e8:59:44:dc:50:ee:ad:1a:
b3:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:6F:05:D9:BE:28:99:1C:3E:61:9A:33:14:95:80:E5:0C:C8:6C:C9
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/8a0dc4-e402-4118-93a2-a3d8257803e5/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/8a0dc4-e402-4118-93a2-a3d8257803e5/1/VG8F2b4omRw-YZozFJWA5QzIbMk.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.39.4.0/22
IPv6:
2a04:7900::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
62356
Signature Algorithm: sha256WithRSAEncryption
a4:41:7a:06:84:b3:85:9a:e1:85:bf:25:52:31:3f:f4:3f:cf:
a4:5b:28:ed:e6:28:43:43:94:54:87:86:e3:ab:8b:b4:a1:50:
e1:f8:f7:d7:4a:66:b7:6b:9f:21:00:ab:b9:14:09:11:6f:89:
11:41:26:04:44:11:90:4e:f7:cf:9e:fc:e9:1b:bb:9a:9b:47:
4f:3c:17:a0:b6:28:3d:c3:49:ea:98:e2:68:8c:6b:de:59:c1:
a2:07:23:c9:4a:fe:42:bb:bb:02:7b:f9:77:9c:46:17:23:69:
03:1f:aa:b3:50:37:3a:61:bb:7e:d7:a0:3a:d3:96:b2:23:45:
56:f8:ab:82:5c:3e:d5:2c:f3:78:f6:14:17:d1:06:af:8b:51:
63:95:96:b6:78:fe:1a:be:78:df:64:c4:ec:08:e9:f1:48:db:
bd:6a:e6:d2:fc:f6:db:e2:3f:c8:e5:4b:84:f3:49:8c:a1:41:
01:32:ef:c8:68:cb:05:2f:48:55:9d:1d:da:02:c6:b6:9a:e4:
e4:7b:4e:9f:cb:88:d1:54:22:a4:cf:ed:a3:36:e2:37:06:3c:
28:5a:ae:1b:d6:31:4f:08:fa:1a:93:8d:71:b9:c5:72:76:f9:
d5:bc:c5:ff:23:e7:33:a7:86:6c:d7:d6:f6:58:22:9d:25:39:
bc:3a:f5:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 09:09:20 2024 by rpki-client on console-ams.rpki-client.org