Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aqj6dcUCDNYhjPfxCd5CAmUgS6w.cer
File: aqj6dcUCDNYhjPfxCd5CAmUgS6w.cer (raw, json)
Hash identifier: qMsrxOsGN9Y3V8QaS6/CJWoy0KU2REXCCIBtb2d5NwA=
Subject key identifier: 6A:A8:FA:75:C5:02:0C:D6:21:8C:F7:F1:09:DE:42:02:65:20:4B:AC
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC86FA6B2F9A798F170E2FC843B8CDA88
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/0c/7012d8-afa1-419b-8b60-35c63fa765a2/1/aqj6dcUCDNYhjPfxCd5CAmUgS6w.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/0c/7012d8-afa1-419b-8b60-35c63fa765a2/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 04:30:09 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 202525
AS: 215913
IP: 2001:67c:c00::/48
IP: 2a13:d040::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:a6:b2:f9:a7:98:f1:70:e2:fc:84:3b:8c:da:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 04:30:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6aa8fa75c5020cd6218cf7f109de420265204bac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:b0:ba:9e:40:86:ff:ce:e5:b1:3c:ac:87:2e:
e2:e6:cf:04:7e:d2:0c:10:26:c6:c4:a8:49:49:c0:
16:19:1d:c2:ad:fb:c1:28:9b:c9:83:78:a9:cb:87:
91:85:c8:d7:a3:d9:b7:a8:13:ce:7e:48:1a:f6:99:
e0:d9:8c:6d:1c:95:40:0a:e4:e8:fb:ae:62:76:57:
6f:05:e9:bf:93:75:32:e9:8c:2b:43:1f:f8:fa:64:
22:e1:d7:0c:6a:c5:5f:2d:49:53:6b:c0:f2:0c:a9:
30:fe:a0:b3:a9:46:67:92:f6:1f:1e:61:83:e9:48:
37:93:d7:b5:bb:2a:c2:1a:98:de:54:28:a2:0c:f0:
c4:68:c2:b6:73:d1:5e:c1:0b:c1:0d:41:09:a9:f7:
1e:73:8d:71:9a:ab:ba:70:cb:a7:65:e8:a9:a4:c1:
f9:e3:70:b7:b0:77:e9:e9:4a:81:09:51:c1:af:5d:
f3:65:09:1c:34:d1:02:07:b2:03:6b:8d:c9:c9:79:
b5:9f:c0:9b:d8:ad:ff:8d:19:0e:62:cd:64:50:19:
9b:3b:93:ad:f4:09:f6:57:3f:39:eb:58:a1:5b:43:
f4:7c:b2:a4:25:cc:8d:d2:d9:6b:7b:48:c8:d6:01:
0d:4b:e3:8c:87:ee:b7:41:b9:e9:ad:6a:d1:85:fd:
e7:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:A8:FA:75:C5:02:0C:D6:21:8C:F7:F1:09:DE:42:02:65:20:4B:AC
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/7012d8-afa1-419b-8b60-35c63fa765a2/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/7012d8-afa1-419b-8b60-35c63fa765a2/1/aqj6dcUCDNYhjPfxCd5CAmUgS6w.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:c00::/48
2a13:d040::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
202525
215913
Signature Algorithm: sha256WithRSAEncryption
06:4f:a5:8d:2d:ad:29:87:80:07:71:27:66:e5:36:99:07:5b:
d3:4e:ed:9d:f0:fd:fe:89:ba:3b:3e:8a:7f:01:a4:db:9c:d4:
4e:3f:c3:fa:a4:86:bd:fd:f9:0f:67:40:a1:6e:19:ff:dd:04:
b3:71:62:a8:ea:dd:85:c2:5e:25:6b:fd:0e:e7:d1:b6:e0:64:
0b:42:83:0c:4b:8d:a0:4a:22:80:00:5c:49:c1:3e:04:1d:2e:
51:49:d5:2b:2e:5d:e5:58:83:d4:ca:9e:14:ce:43:f4:93:c7:
ea:b1:2d:8f:df:9f:56:a3:c6:8b:af:86:fa:93:41:0f:67:ad:
e4:fa:b2:a6:da:d8:28:2e:b2:19:29:29:c5:9a:c3:5f:f8:9b:
e3:34:6e:7d:a5:c9:48:7a:6d:00:b7:2f:4a:69:5f:37:8a:16:
cc:7d:bd:4f:8f:e3:73:c0:02:16:9e:b7:9d:19:ba:3f:50:3a:
c4:c4:39:f7:8e:4e:a0:88:04:ee:5c:9f:5f:f5:c4:e9:1b:b5:
2f:57:b1:d1:49:ae:f7:e9:8f:50:f2:58:5d:64:97:42:cd:7a:
60:4c:d1:d9:f9:3e:fc:b9:66:72:91:4d:e1:aa:cc:e9:1a:18:
ae:f7:b3:57:3a:ab:47:6a:87:ae:f8:39:54:7c:3d:32:3f:a5:
97:95:71:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 18:22:30 2024 by rpki-client on console-fra.rpki-client.org