Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/WfkVrj4iFr4zj2M0Uy-TgM_S9Ao.cer
File: WfkVrj4iFr4zj2M0Uy-TgM_S9Ao.cer (raw, json)
Hash identifier: NATt0Ightn6W8uN2Yo0/0i6vaRC4K81ilFcbM1qzHZs=
Subject key identifier: 59:F9:15:AE:3E:22:16:BE:33:8F:63:34:53:2F:93:80:CF:D2:F4:0A
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC86F985185EFC6152C090C7CE50F9359
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/66/aa2311-b1cd-4d18-aebb-a3f2324f6d8c/1/WfkVrj4iFr4zj2M0Uy-TgM_S9Ao.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/66/aa2311-b1cd-4d18-aebb-a3f2324f6d8c/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 04:30:05 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 21190
AS: 25090
IP: 193.8.222.0/23
IP: 194.56.96.0 -- 194.56.123.255
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:98:51:85:ef:c6:15:2c:09:0c:7c:e5:0f:93:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 04:30:05 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=59f915ae3e2216be338f6334532f9380cfd2f40a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:00:6c:a8:b6:76:ec:72:b6:11:b9:15:be:3a:
b7:e9:3c:22:e6:c2:31:de:82:08:7e:1a:f5:f2:7b:
d6:38:22:2d:12:40:7c:e7:85:1d:3b:75:36:fd:ed:
84:b7:ce:f4:92:f0:fc:15:cf:96:f7:4e:dd:86:22:
75:60:ab:1e:22:0a:81:e0:63:91:36:62:b3:8d:d3:
15:21:cd:87:25:5c:24:ec:bf:a6:56:65:b6:19:08:
3a:d8:32:d3:11:de:f4:f9:8e:b2:9f:09:0e:4b:57:
eb:65:dd:0c:a8:5c:a3:6c:73:b3:ed:56:5a:2b:9d:
84:fb:35:75:34:4b:74:3f:17:fc:fb:b9:b2:86:79:
cb:1f:90:b9:46:7a:2b:2c:ba:04:98:0a:f8:e1:9a:
3a:35:5e:ec:37:49:51:b2:60:6a:4f:b8:59:d2:42:
bd:6e:9b:d1:09:d9:3a:cf:a9:3e:44:d8:68:71:dd:
60:62:13:1c:78:96:f3:5e:c9:2a:85:ea:50:dc:9e:
95:a4:c8:7e:74:59:85:ea:ce:43:a1:32:b2:4a:2f:
cf:66:ad:77:2a:35:c2:bc:3d:67:4c:eb:26:eb:ab:
f6:48:6e:fb:2f:b9:1d:95:76:3f:c3:bd:d7:0e:86:
78:da:74:1b:b9:a4:3c:08:ae:b7:14:a7:9b:fd:66:
87:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:F9:15:AE:3E:22:16:BE:33:8F:63:34:53:2F:93:80:CF:D2:F4:0A
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/aa2311-b1cd-4d18-aebb-a3f2324f6d8c/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/aa2311-b1cd-4d18-aebb-a3f2324f6d8c/1/WfkVrj4iFr4zj2M0Uy-TgM_S9Ao.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.8.222.0/23
194.56.96.0-194.56.123.255
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
21190
25090
Signature Algorithm: sha256WithRSAEncryption
3e:df:9b:8f:ba:76:04:7b:88:32:d0:f6:43:ca:e2:37:fe:d0:
a5:be:a4:b1:88:1f:f5:6c:ef:55:9b:3b:6f:b5:ad:48:52:3e:
b4:cd:14:d3:bb:13:b4:0a:9b:09:80:eb:a5:83:04:14:58:33:
d9:79:ff:91:51:b2:6e:3b:dc:d0:d0:31:3c:f9:20:06:c4:80:
cc:da:d5:d0:9d:bc:4f:da:b0:00:63:d1:8c:35:c0:95:8b:58:
2a:20:a0:00:59:62:3c:cd:a8:13:f6:16:fd:5a:b8:74:94:ce:
6d:1f:b8:ec:4f:2b:e3:84:a3:ee:dd:ac:5a:77:09:60:ec:67:
3b:d5:9d:02:04:75:1d:1e:df:09:40:4b:5c:01:b5:ad:89:34:
3a:43:01:3a:17:1b:73:54:a2:ca:5e:6b:22:70:2c:6b:3e:58:
b4:ba:92:62:1e:18:8a:8b:e4:bc:df:d4:af:4c:b1:96:1e:91:
d7:fe:1f:47:6d:12:7f:5c:cc:1d:51:d9:7a:53:de:87:a1:79:
98:0d:e6:de:7c:bb:ae:c9:74:2f:2d:3d:3d:f2:8a:6e:00:d6:
d3:08:55:87:b7:6c:27:0c:e5:e5:60:85:e0:4b:9c:d1:84:0b:
fa:85:8b:07:cc:9d:93:21:62:07:67:d0:0e:38:d4:bf:f5:43:
78:21:4a:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:25:19 2024 by rpki-client on console-ams.rpki-client.org