Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/_dcAK_Oi6s_IgdXhoCEQmMZplWw.cer
File: _dcAK_Oi6s_IgdXhoCEQmMZplWw.cer (raw, json)
Hash identifier: EJ+k6zKF/dOl6ImSdrR7jS/3X2+GyBEwivZnJp7JGxw=
Subject key identifier: FD:D7:00:2B:F3:A2:EA:CF:C8:81:D5:E1:A0:21:10:98:C6:69:95:6C
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC86F68B99DB863C566E89BCB0726F6F6
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/bd/101bcf-d1df-47c4-a2eb-2161ff47881c/1/_dcAK_Oi6s_IgdXhoCEQmMZplWw.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/bd/101bcf-d1df-47c4-a2eb-2161ff47881c/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 04:29:53 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 29273
IP: 193.41.36.0/24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:68:b9:9d:b8:63:c5:66:e8:9b:cb:07:26:f6:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 04:29:53 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fdd7002bf3a2eacfc881d5e1a0211098c669956c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:ae:45:21:42:6b:a7:fa:fd:ba:31:bc:53:64:
2a:ec:09:0a:27:10:6d:81:21:9c:1c:10:17:e9:e9:
77:dc:45:9f:9e:b2:ac:84:ff:60:47:c3:a2:6e:e5:
98:46:34:29:4a:56:f4:24:20:73:a1:32:48:2d:04:
16:ad:a9:2d:73:59:fc:c9:f2:b8:7d:8e:85:7d:d3:
cb:aa:ee:02:fe:ca:3a:66:b9:b9:34:3f:b6:f7:7b:
61:77:59:80:50:57:28:aa:98:3e:7e:56:b9:b1:d9:
98:8a:47:8b:dd:5a:ec:50:0c:a5:d5:8d:58:99:04:
37:75:12:60:de:26:1f:91:f7:df:37:36:40:03:59:
0f:5b:83:95:96:34:d1:48:72:6f:07:8b:b5:1f:c2:
f6:fd:90:85:91:49:9c:0d:b9:1a:18:76:21:78:95:
5b:57:76:52:8e:8d:59:f2:3d:30:5b:0e:60:e3:a2:
68:23:97:43:09:e7:37:4b:d3:c7:58:a1:b8:84:a1:
12:af:b6:fc:73:c7:2e:31:a0:d4:62:03:92:b7:57:
00:29:4b:03:d1:aa:2b:08:92:47:aa:95:16:e0:e9:
3f:0d:20:59:4f:d4:46:bb:96:4e:45:1c:f7:fb:0a:
eb:b3:39:a5:92:3d:9d:b7:04:b1:8e:51:b2:6f:44:
40:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:D7:00:2B:F3:A2:EA:CF:C8:81:D5:E1:A0:21:10:98:C6:69:95:6C
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/101bcf-d1df-47c4-a2eb-2161ff47881c/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/101bcf-d1df-47c4-a2eb-2161ff47881c/1/_dcAK_Oi6s_IgdXhoCEQmMZplWw.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.41.36.0/24
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
29273
Signature Algorithm: sha256WithRSAEncryption
b1:20:42:f1:03:ae:37:ef:a9:11:d4:35:7d:c7:d5:12:84:b9:
26:8b:9c:05:30:76:72:c6:7e:b8:5d:33:99:17:79:d7:2b:1b:
f6:2e:a6:f5:93:be:64:d2:49:45:d1:8b:b4:f8:21:d6:ab:a8:
b9:37:16:9a:be:80:21:b5:4b:92:50:49:38:69:5d:48:10:cd:
17:e1:96:cd:4a:c8:bf:a2:96:40:63:ad:dd:b7:22:d3:97:cc:
36:f3:7b:39:e5:ee:8a:1e:27:c3:bb:3f:41:fa:21:f4:70:e8:
1c:43:78:e5:2a:17:34:a3:ad:56:fd:3a:ba:bd:6a:8f:15:88:
c0:57:03:b7:cb:98:66:92:b0:96:5a:61:8e:2c:82:08:a4:97:
a4:98:0d:ca:62:89:e9:69:ac:de:07:a2:4a:6f:a4:56:06:0b:
03:59:5a:22:66:dd:ab:b2:82:0f:e2:02:c3:e1:34:d7:1b:f3:
35:46:43:26:35:09:22:d3:23:ac:ca:e3:b4:41:4c:37:b9:d9:
25:eb:54:f7:a3:bf:b3:c2:1a:ee:d6:d5:7a:71:24:4c:b3:fa:
23:46:dd:54:95:af:31:c1:8b:3c:5d:2d:25:9b:cd:86:69:5c:
62:a4:7d:bd:69:0c:5a:15:a7:5d:07:c3:0c:9a:40:c3:b4:7b:
fd:41:6e:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 07:42:55 2024 by rpki-client on console-fra.rpki-client.org