Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/WZypahnO8ifMM7NFhZaqRV0rePg.cer
File: WZypahnO8ifMM7NFhZaqRV0rePg.cer (raw, json)
Hash identifier: JBHRGzaf66yUFuH19eb6ShOLgZE9tLz5iMf74YzfPQs=
Subject key identifier: 59:9C:A9:6A:19:CE:F2:27:CC:33:B3:45:85:96:AA:45:5D:2B:78:F8
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018DEC456A3C0D98B87B7361AD0856B127D0
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/70/af2dd5-3f6e-45d5-b10e-b55f70fb1142/1/WZypahnO8ifMM7NFhZaqRV0rePg.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/70/af2dd5-3f6e-45d5-b10e-b55f70fb1142/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 27 Feb 2024 20:33:08 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 44733
AS: 50917
IP: 2001:678:7ec::/48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 11:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:ec:45:6a:3c:0d:98:b8:7b:73:61:ad:08:56:b1:27:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Feb 27 20:33:08 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=599ca96a19cef227cc33b3458596aa455d2b78f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:6c:af:da:fa:88:f1:bb:23:8f:f6:f7:11:c7:
ac:dd:b0:aa:5c:74:04:47:78:48:d7:a7:86:aa:70:
51:c1:d0:c3:e4:28:af:77:e0:e6:ca:e4:79:d2:f3:
f5:73:44:da:2e:76:b9:d4:3b:29:7d:f7:fc:e1:2f:
80:e7:cf:3a:89:3e:35:43:7c:73:aa:ec:1c:52:2f:
37:72:b9:7b:67:c5:35:c4:4b:52:aa:4b:73:f0:3d:
61:bb:8a:47:c2:ce:ad:53:7b:19:93:f9:88:56:56:
65:9d:90:93:0a:a2:b8:03:3d:d1:7a:c4:3b:f4:79:
68:de:3f:08:9d:c8:b0:90:bf:cf:a6:ca:35:86:0e:
64:29:15:03:7b:35:4c:2c:77:97:2a:a8:1a:59:63:
a9:99:f0:56:4e:53:7c:72:48:55:3e:a8:f6:59:4b:
a8:4c:0a:e9:95:29:f7:d2:af:0a:3f:c2:ee:db:46:
fc:35:db:0c:5f:ca:c9:5f:d8:47:e8:75:e3:01:b5:
0f:4b:7d:6c:f4:12:3e:36:eb:a7:58:ec:b5:18:ab:
80:be:c3:8f:36:fe:86:10:8e:6e:ca:0c:b2:de:67:
51:f5:c8:b2:bb:4a:2a:37:09:c4:c8:33:3b:97:32:
13:fd:ff:ea:1c:87:c8:e3:7e:1c:40:4a:5a:a0:26:
92:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:9C:A9:6A:19:CE:F2:27:CC:33:B3:45:85:96:AA:45:5D:2B:78:F8
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/af2dd5-3f6e-45d5-b10e-b55f70fb1142/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/af2dd5-3f6e-45d5-b10e-b55f70fb1142/1/WZypahnO8ifMM7NFhZaqRV0rePg.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:7ec::/48
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
44733
50917
Signature Algorithm: sha256WithRSAEncryption
03:e7:47:d2:2d:6d:b3:0e:92:2c:ac:d2:36:d8:29:43:83:c4:
78:03:e6:0d:68:c1:1a:f6:01:e8:0c:59:ed:3c:f1:83:cb:c2:
33:6a:c7:f4:26:8f:03:cc:b2:54:77:3e:78:7e:ad:0e:33:97:
ec:35:17:59:3b:44:fd:30:b1:b5:33:09:e9:f6:a6:da:69:7f:
16:86:6b:5f:c1:b4:af:be:76:d8:87:52:4b:07:9f:6f:6d:02:
fb:96:fa:3d:ae:0e:d9:f2:f4:26:9f:ec:55:5b:32:ac:11:05:
a0:09:62:c7:31:a4:14:08:fb:f0:3e:65:5f:98:91:8e:f2:0e:
3e:53:b6:7d:8a:92:78:94:65:9b:f1:09:99:0a:99:f1:fc:ca:
f0:55:4d:89:6c:c1:fe:10:b8:a4:fc:54:f8:b1:25:e0:a2:6d:
f2:9c:c3:c6:8f:ff:50:bf:e5:e2:de:e9:8e:f9:fd:71:78:e3:
9e:d4:ba:5e:9e:91:81:4d:c7:4d:c0:6f:1a:b6:25:71:33:75:
eb:38:dc:0c:8f:88:78:c9:2b:97:67:9d:80:90:77:28:f2:60:
01:36:5a:5b:54:31:cf:76:e2:bc:44:18:ad:18:91:55:5a:0b:
53:e2:6d:ab:6b:4c:ed:bd:a4:3a:43:a5:e6:e3:ab:9c:d8:ba:
71:81:ea:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 13:46:56 2024 by rpki-client on console-ams.rpki-client.org