Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aJxopFZh-QpAWb2MKaPJZ7-S6FU.cer
File: aJxopFZh-QpAWb2MKaPJZ7-S6FU.cer (raw, json)
Hash identifier: Is1L72qpo64BXjYbVS1jTiXPBxQ+1I66N+msIJhgtPM=
Subject key identifier: 68:9C:68:A4:56:61:F9:0A:40:59:BD:8C:29:A3:C9:67:BF:92:E8:55
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018D2E5745CB0484742305965AD9E011F5A9
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/8d/39dacc-1c57-4deb-a225-b6207f755267/1/aJxopFZh-QpAWb2MKaPJZ7-S6FU.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/8d/39dacc-1c57-4deb-a225-b6207f755267/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Sun 21 Jan 2024 23:24:47 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 211839
IP: 193.163.71.0/24
IP: 2a10:89c0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:2e:57:45:cb:04:84:74:23:05:96:5a:d9:e0:11:f5:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 21 23:24:47 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=689c68a45661f90a4059bd8c29a3c967bf92e855
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:94:83:a2:fd:ca:68:9f:27:6c:10:05:ea:e4:
ef:6a:ac:4d:87:1a:63:00:c7:a9:f8:2a:82:6d:3c:
3f:ed:9a:cd:ac:99:da:cb:87:a6:6f:7f:bc:4f:e8:
a0:6d:d2:be:6d:af:7f:e4:b2:f9:bd:b7:29:a5:15:
a6:37:75:c1:a9:75:a0:9f:cf:c5:4e:d9:c9:b9:3d:
6b:f1:d1:96:d9:99:4c:59:3b:e9:f1:7e:56:25:72:
c0:12:37:8b:2e:05:ca:15:40:bb:4c:08:44:a0:bc:
3b:b8:27:98:9c:30:01:c4:93:c9:bb:67:ac:55:15:
5f:e0:3b:38:0f:30:32:aa:55:f3:be:a1:4f:2f:49:
05:74:f4:16:7d:7e:37:16:41:38:e9:03:11:ed:fd:
68:71:94:0d:26:76:5c:90:42:80:1b:6f:73:36:87:
b5:e0:3f:68:7d:72:bd:6d:58:86:67:57:37:b1:59:
a2:ea:e5:dd:13:16:94:3b:a6:91:11:f0:40:18:09:
5b:a9:77:df:0b:ea:7b:ea:6b:7a:6b:c0:93:b2:7d:
4c:68:38:e7:72:3f:be:fb:ef:62:93:9b:00:8b:44:
a8:c5:25:ea:71:40:cc:30:c8:f2:50:4d:06:ef:b3:
d6:5a:22:91:18:53:46:99:74:8a:b3:9e:ca:16:13:
5a:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:9C:68:A4:56:61:F9:0A:40:59:BD:8C:29:A3:C9:67:BF:92:E8:55
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/39dacc-1c57-4deb-a225-b6207f755267/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/39dacc-1c57-4deb-a225-b6207f755267/1/aJxopFZh-QpAWb2MKaPJZ7-S6FU.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.163.71.0/24
IPv6:
2a10:89c0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
211839
Signature Algorithm: sha256WithRSAEncryption
2b:3f:09:bc:dd:6b:4b:9e:28:60:7e:c8:a5:63:79:0f:c5:0b:
90:a3:ae:ae:e8:6c:c5:5a:4a:64:87:2d:10:6d:1a:72:50:ff:
7a:19:33:f3:f7:ac:11:1f:c0:dc:c9:de:93:97:ee:0c:9e:fd:
bf:ac:c2:49:85:ed:13:eb:7c:5e:49:bf:eb:66:2e:f5:96:2a:
c8:97:ae:5a:cb:fd:6c:81:08:10:bc:ec:96:32:5e:f8:11:64:
c6:73:80:e1:10:ea:b8:6d:27:92:7f:d8:0e:e0:da:60:55:11:
12:c5:e9:44:4b:bf:04:ea:e6:0e:a1:23:cb:31:09:dc:53:03:
47:24:d4:8d:d6:b4:51:95:12:de:13:85:46:86:a5:4b:a0:47:
7d:e4:8e:bb:12:b6:45:ee:51:3c:9c:1c:19:f2:9d:24:15:d4:
f6:3c:f8:ae:43:41:6b:d2:b1:a6:ee:26:af:4a:81:6a:45:d5:
12:18:f8:db:bd:80:ac:ed:1a:9a:aa:d8:d4:80:97:87:32:1f:
b0:ec:db:c9:81:fd:ff:e1:b5:3e:f8:5e:78:1e:20:1b:70:1a:
47:86:79:11:75:55:87:ea:3b:b0:1b:90:84:1b:67:42:a9:b9:
e7:68:05:8f:e8:1e:a9:a5:e1:de:e3:5c:d7:5c:be:5f:2a:06:
ba:5a:6c:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 09:14:24 2024 by rpki-client on console-ams.rpki-client.org