Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/XOpIaZvRUBgukZEQh8QIxKuhzTA.cer
File: XOpIaZvRUBgukZEQh8QIxKuhzTA.cer (raw, json)
Hash identifier: vmwlDkASt2h1zpTLtj9tMRNBEqrRPmrKKNqM6sTx0Qw=
Subject key identifier: 5C:EA:48:69:9B:D1:50:18:2E:91:91:10:87:C4:08:C4:AB:A1:CD:30
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC86F031741156B1F4420D7C8622AF563
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/4b/7a2b0a-82d7-4887-a4e6-b0960eb2f24a/1/XOpIaZvRUBgukZEQh8QIxKuhzTA.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/4b/7a2b0a-82d7-4887-a4e6-b0960eb2f24a/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 04:29:27 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 197740
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 11:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:03:17:41:15:6b:1f:44:20:d7:c8:62:2a:f5:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 04:29:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5cea48699bd150182e91911087c408c4aba1cd30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:6a:08:58:8a:c9:c0:1d:c5:8c:b5:b3:80:bf:
db:5d:fd:c1:c7:6c:0c:12:05:7f:8a:be:36:fb:d2:
f2:d1:94:c8:21:64:1d:78:11:20:3f:3e:52:4d:2e:
bf:14:a4:ba:4e:33:98:46:f5:c8:4c:fa:cf:0b:71:
10:72:3b:df:d2:32:6c:32:ca:dd:2b:aa:62:ab:38:
fc:0d:4c:70:13:45:73:e4:8b:ea:05:de:73:b4:82:
8d:00:d7:52:eb:19:d7:ca:74:d0:9c:aa:b7:6e:0f:
a9:25:35:18:79:eb:bc:b5:a3:33:04:e1:18:e0:1b:
57:a0:d7:c6:82:da:d4:ac:52:26:65:ce:22:3a:38:
05:ad:bd:fc:76:ec:86:7e:f6:90:67:93:d8:65:05:
aa:8a:7e:7f:02:47:10:7d:aa:3d:42:d2:d4:39:a9:
e2:17:e5:3d:94:e0:89:0f:39:28:80:7d:ff:29:0c:
88:22:45:cb:54:1d:33:33:2c:9a:50:d2:5b:01:10:
e2:a3:fb:96:f2:ef:ba:1c:ba:da:a9:d1:77:e4:7e:
a2:26:fa:b7:d3:06:37:a3:8e:e2:d7:1a:21:a8:51:
ac:fa:c8:32:a2:19:39:43:8f:d0:2e:fd:0b:52:82:
af:b5:24:72:5c:a4:30:c7:11:ef:c0:48:71:b2:d0:
ea:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:EA:48:69:9B:D1:50:18:2E:91:91:10:87:C4:08:C4:AB:A1:CD:30
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/7a2b0a-82d7-4887-a4e6-b0960eb2f24a/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/7a2b0a-82d7-4887-a4e6-b0960eb2f24a/1/XOpIaZvRUBgukZEQh8QIxKuhzTA.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
197740
Signature Algorithm: sha256WithRSAEncryption
40:32:23:64:00:71:56:33:72:01:42:9e:cc:d4:3c:55:49:40:
12:21:7a:f9:19:f2:83:3f:d4:99:19:cb:a7:be:89:8c:71:c3:
19:ff:18:e6:ff:b7:d7:b6:87:ca:6c:4b:5b:f1:07:6f:85:2b:
18:75:04:be:56:0b:bc:89:eb:3f:cc:fb:16:43:06:44:cc:13:
2c:2e:3c:e0:93:94:c9:40:13:7c:52:e4:a4:cb:14:52:75:78:
0c:9c:3a:c5:30:53:c7:85:76:2a:50:e6:8a:72:ac:65:99:13:
45:d4:91:a1:f0:3b:51:5d:b8:e9:69:fc:63:d2:a1:de:e6:58:
ec:67:ae:b7:8d:8d:89:99:56:b9:02:d8:c0:a4:f8:29:be:bf:
3b:f6:be:6f:5d:d1:d3:c0:4d:b2:f7:99:c9:bf:fa:cb:44:3b:
5d:41:1e:95:47:7f:06:b8:4a:e5:bf:e8:2e:7c:29:f4:03:9a:
8b:9f:1b:b0:e1:69:67:24:ff:aa:8e:0b:56:ef:2e:3e:e7:0b:
c7:99:c9:db:13:20:0e:02:16:e9:d6:97:db:06:bb:31:ba:6f:
18:67:db:c4:4c:fd:86:04:c4:9e:a4:8f:e5:45:f7:8c:b8:46:
21:e9:63:e3:84:e8:85:5b:16:93:24:a2:e0:c1:4a:b6:b9:28:
74:ec:cb:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 13:22:18 2024 by rpki-client on console-fra.rpki-client.org