Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/VfrLmru0yp4IZiqT0ucy5wsGwvI.cer
File: VfrLmru0yp4IZiqT0ucy5wsGwvI.cer (raw, json)
Hash identifier: KgiK2kYju30oASgESQJMgtot2Do/ela1g78sd/nYtUA=
Subject key identifier: 55:FA:CB:9A:BB:B4:CA:9E:08:66:2A:93:D2:E7:32:E7:0B:06:C2:F2
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CCA2B8F1AFB2E3770424D23433070300B
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/f0/e23338-1f3f-4acd-a88c-2eccfce112dd/1/VfrLmru0yp4IZiqT0ucy5wsGwvI.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/f0/e23338-1f3f-4acd-a88c-2eccfce112dd/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 12:35:01 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: IP: 89.45.128.0/20
IP: 185.4.84.0/22
IP: 185.84.48.0/22
IP: 185.92.28.0/22
IP: 185.96.108.0/22
IP: 2a02:67c0::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:2b:8f:1a:fb:2e:37:70:42:4d:23:43:30:70:30:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 12:35:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=55facb9abbb4ca9e08662a93d2e732e70b06c2f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:0d:f9:68:00:14:56:4d:81:ce:dc:b6:fe:22:
60:b8:0b:ae:f0:fe:d1:eb:9e:b6:8e:6e:e5:73:91:
46:50:fc:a8:34:29:52:82:05:21:d2:47:46:4a:65:
6d:75:65:dd:6e:cd:1a:e5:54:c4:bd:46:0c:fa:4c:
b2:6b:c4:26:58:48:45:9a:7e:ed:f6:8a:c2:ac:bb:
d8:dc:e7:ac:89:47:6b:7e:77:9d:7a:05:99:8c:52:
7e:04:d2:ec:67:af:ef:49:69:02:e0:77:38:7c:bb:
f8:dd:e3:74:e1:b7:0e:18:9e:7c:e3:8d:cf:eb:1d:
72:5d:ba:8e:a0:7d:c7:60:ae:a2:90:4f:09:11:42:
fd:1b:0b:86:fb:b8:c3:10:c8:eb:8d:56:0b:ea:d0:
a6:c0:1b:a7:99:23:9d:0d:f2:9b:0a:1e:68:56:00:
a3:0f:e5:44:d2:d7:9f:a9:4b:53:4b:93:af:fb:68:
39:8b:22:a9:ba:76:7c:90:08:55:36:11:38:a9:93:
ab:e9:cc:b2:0f:f5:18:61:4e:04:26:cc:01:fe:6b:
eb:b5:10:52:6b:48:47:9e:11:84:7e:99:da:89:03:
cc:7d:b0:57:9a:be:38:53:3a:0e:08:03:0e:6c:54:
54:d8:ac:88:47:11:40:07:81:3b:71:e3:c6:30:40:
8e:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:FA:CB:9A:BB:B4:CA:9E:08:66:2A:93:D2:E7:32:E7:0B:06:C2:F2
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/e23338-1f3f-4acd-a88c-2eccfce112dd/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/e23338-1f3f-4acd-a88c-2eccfce112dd/1/VfrLmru0yp4IZiqT0ucy5wsGwvI.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.45.128.0/20
185.4.84.0/22
185.84.48.0/22
185.92.28.0/22
185.96.108.0/22
IPv6:
2a02:67c0::/32
Signature Algorithm: sha256WithRSAEncryption
3c:99:a7:db:c8:d1:f2:10:6d:07:58:94:5e:7f:29:d8:6d:02:
32:75:3b:18:e3:62:38:6e:af:b0:33:72:b0:94:29:71:e5:a7:
b5:93:c4:1e:d9:0c:e6:29:0b:4f:ec:65:a2:63:0a:1f:eb:25:
57:ed:96:74:af:f6:70:01:78:d1:4f:c7:ea:fe:b2:98:24:35:
e7:a6:67:b6:39:9b:67:7d:08:a7:ad:b8:4c:75:32:71:71:fd:
1f:ce:2d:21:49:a8:eb:bd:36:50:f1:42:61:9b:b5:99:14:bc:
15:38:57:e3:b1:d4:6c:19:5c:73:1b:61:06:ab:86:6f:03:14:
7f:45:57:9c:95:d6:0f:de:fb:9d:d2:e3:30:6f:8f:a5:5b:34:
30:33:fd:83:4b:64:a1:2a:18:66:c1:5c:0d:8b:a3:0d:07:59:
9f:cd:2e:41:73:c9:b2:b1:a5:9f:1f:cc:5e:d4:37:ce:91:58:
db:d3:86:4e:34:58:4b:8a:2e:46:fd:b9:18:45:f8:f2:1a:22:
6f:e5:f6:d8:2d:cc:5d:ae:7c:69:b5:b3:49:d2:e6:50:14:d8:
72:b0:65:6b:24:de:a2:e1:6d:60:54:5d:a7:eb:f0:b5:75:af:
cf:b2:cb:bd:4f:09:a3:7d:45:28:5a:5a:3e:00:e5:1d:39:8a:
16:60:72:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 07:38:25 2024 by rpki-client on console-fra.rpki-client.org