Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/azT6U9HYTbq-aY1bvMrt8QnRV64.cer
File: azT6U9HYTbq-aY1bvMrt8QnRV64.cer (raw, json)
Hash identifier: bR9bVtHWGOCv67JVRcKPD61EdRt+wMnPJM0ewyBxqjo=
Subject key identifier: 6B:34:FA:53:D1:D8:4D:BA:BE:69:8D:5B:BC:CA:ED:F1:09:D1:57:AE
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC3491D3481CF946D44A41F45EEA5AAB0
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/6b/528de1-8f68-4cb9-b6ce-ffaaa299af61/1/azT6U9HYTbq-aY1bvMrt8QnRV64.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/6b/528de1-8f68-4cb9-b6ce-ffaaa299af61/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 04:29:57 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 8762
IP: 147.95.0.0/16
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:49:1d:34:81:cf:94:6d:44:a4:1f:45:ee:a5:aa:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 04:29:57 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6b34fa53d1d84dbabe698d5bbccaedf109d157ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:2a:22:a0:fa:3a:b4:f3:c9:83:57:dd:6e:0d:
62:af:3f:ea:3a:c4:0c:79:4b:8c:9f:8e:29:39:90:
7d:29:85:6c:d8:1a:b6:7d:20:32:66:80:66:89:e0:
97:aa:37:e1:39:0c:83:08:ad:e4:b4:7e:7b:09:b6:
7d:99:16:5c:13:6f:ba:70:6e:39:c1:39:38:d7:67:
59:5e:a9:46:30:9f:03:b5:1d:d9:df:99:cc:d3:52:
e2:6d:eb:bb:1d:0f:2a:0a:d1:28:38:50:da:18:e1:
1c:ac:3e:46:10:22:df:85:24:ad:68:c4:72:fa:7b:
a4:6f:ea:81:d2:1e:46:06:f8:bb:e6:0b:cf:88:88:
fa:ce:f3:f8:5a:59:5a:73:57:aa:36:cb:3e:11:f8:
0e:75:7c:ed:7f:e1:ea:59:63:37:10:94:5d:d3:52:
b4:54:79:d4:80:64:98:c3:96:ba:ee:10:0b:93:0a:
ea:b9:52:0b:3c:5d:f3:a3:67:7f:a6:41:c9:f9:72:
41:19:c6:9c:99:20:09:8d:49:8a:75:a5:a7:8a:d4:
32:e3:b8:13:15:0d:66:71:39:e1:01:e1:74:16:5e:
29:a9:61:75:33:65:78:63:0f:62:f2:9b:2b:7b:b0:
b4:5f:37:75:8f:6f:ea:08:ec:57:f5:b2:52:fe:d3:
b3:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:34:FA:53:D1:D8:4D:BA:BE:69:8D:5B:BC:CA:ED:F1:09:D1:57:AE
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/528de1-8f68-4cb9-b6ce-ffaaa299af61/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/528de1-8f68-4cb9-b6ce-ffaaa299af61/1/azT6U9HYTbq-aY1bvMrt8QnRV64.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.95.0.0/16
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
8762
Signature Algorithm: sha256WithRSAEncryption
ae:d7:50:04:6f:30:d5:8f:79:bb:97:a1:32:16:fd:cc:73:d4:
c1:16:12:07:60:65:72:21:2e:8f:a0:cb:71:ca:7c:7a:ce:da:
1a:ba:13:b2:0b:36:72:7d:27:35:84:17:3a:e1:43:f5:c0:65:
6b:4a:2b:c0:7c:2f:44:fc:44:e0:9d:38:39:62:fb:1c:d7:3e:
3e:3d:8c:02:75:8d:89:d8:87:c9:16:07:83:97:b8:77:db:8f:
3a:4c:e9:18:a2:17:3f:4e:10:f7:aa:da:b8:11:d3:60:2b:1a:
10:61:11:36:56:1f:ec:57:73:3b:b0:44:54:5f:ef:54:ca:32:
b3:c2:45:cb:6e:64:ea:b1:64:d5:88:69:7e:80:b1:25:b8:d8:
15:db:ad:8d:1a:e0:b1:d7:89:58:b7:01:39:2d:b2:17:dd:07:
4b:d2:fd:00:b2:4d:0c:7a:e8:ab:fb:d9:9e:ce:85:2c:0a:cf:
c5:b8:e8:7f:95:33:ba:e1:21:4e:02:b2:18:ca:1b:13:fd:e9:
74:62:b0:97:b5:56:15:2d:12:ae:c3:51:b7:84:d9:78:72:f1:
10:17:e8:3e:52:c0:8b:ec:63:e4:0b:99:91:88:37:48:8a:f3:
9a:9b:4c:52:74:69:61:83:c9:71:6b:66:af:b7:2b:35:82:60:
ab:e7:54:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 01:53:26 2024 by rpki-client on console-ams.rpki-client.org