Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c-9b03Yu9g-njtVfVE-joFE_2EI.cer
File: c-9b03Yu9g-njtVfVE-joFE_2EI.cer (raw, json)
Hash identifier: 7rKJEtDYIZhuHis4A23AfnLQgnT1B2bQmARFUqaG/Uo=
Subject key identifier: 73:EF:5B:D3:76:2E:F6:0F:A7:8E:D5:5F:54:4F:A3:A0:51:3F:D8:42
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC348C67CFE2FD61D46C0F733693C01C4
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/66/a13cbc-1db4-4b22-baf4-b546a2d208f2/1/c-9b03Yu9g-njtVfVE-joFE_2EI.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/66/a13cbc-1db4-4b22-baf4-b546a2d208f2/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 04:29:35 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 211387
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:48:c6:7c:fe:2f:d6:1d:46:c0:f7:33:69:3c:01:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 04:29:35 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=73ef5bd3762ef60fa78ed55f544fa3a0513fd842
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:64:eb:ad:0d:48:3a:80:1a:bf:00:8a:32:1f:
b5:15:7b:5b:9e:28:98:42:4b:19:69:fe:b0:43:58:
ef:14:d7:1e:7a:1f:3c:7d:16:0a:db:54:68:1a:aa:
fc:f6:99:b4:52:84:0f:0f:5a:96:ef:98:f4:d2:30:
04:69:a0:f6:5c:7c:8c:fb:7f:db:ac:a1:23:34:26:
b3:0f:86:dd:d3:1a:9c:c1:f3:86:3d:a9:31:49:a0:
ef:47:d6:10:81:1b:a3:f6:22:81:1d:aa:58:0c:41:
79:04:71:de:88:51:19:37:d9:c3:31:0d:39:be:5c:
eb:55:3d:3b:db:a3:90:b9:aa:bc:27:e7:b5:70:01:
ba:fe:43:fd:67:fa:9b:e6:ee:1e:ae:d3:90:03:d3:
13:68:67:58:38:50:03:86:b7:c3:f2:96:82:27:1a:
4c:23:57:d9:18:bf:28:83:65:57:b8:93:72:b0:2a:
18:da:b4:44:45:c6:db:66:ae:f0:8b:75:fd:89:48:
78:87:17:e2:7e:64:7e:0a:a4:47:aa:0e:fa:a9:27:
44:01:22:b6:75:92:d2:48:dd:66:f4:eb:15:36:6c:
06:72:be:3f:3c:1a:cf:8e:d7:7f:bb:97:4b:70:50:
d1:df:83:95:17:89:0e:c4:a2:d3:a0:a6:fa:78:57:
82:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:EF:5B:D3:76:2E:F6:0F:A7:8E:D5:5F:54:4F:A3:A0:51:3F:D8:42
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/a13cbc-1db4-4b22-baf4-b546a2d208f2/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/a13cbc-1db4-4b22-baf4-b546a2d208f2/1/c-9b03Yu9g-njtVfVE-joFE_2EI.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
211387
Signature Algorithm: sha256WithRSAEncryption
3c:fa:f6:41:1e:cf:2f:9b:eb:de:ae:d3:6f:4b:b5:6c:ed:05:
11:33:a0:b9:c5:56:38:03:48:c1:e4:e1:02:82:7d:c2:18:18:
0a:db:a1:ea:fc:3b:29:c9:af:f7:59:01:7c:cb:b7:7a:21:fe:
dd:43:c0:7e:cf:7a:5c:25:dc:e4:bd:27:22:c6:9c:1e:2d:ed:
ef:fc:f5:8b:5d:63:0c:37:57:10:68:59:8a:04:71:50:a6:01:
d8:3a:33:1a:98:99:3d:e6:ee:36:94:e8:6c:35:61:5e:12:f1:
7a:de:14:de:6b:0c:47:73:65:19:35:b2:d6:fb:84:fb:ac:73:
13:ef:e7:fe:41:2c:e7:68:49:68:4d:04:ec:6d:a5:9b:06:6b:
b3:3e:a2:13:8a:18:da:81:c2:34:83:74:93:28:b0:f5:24:04:
94:84:5a:be:a9:35:fc:e7:1b:8e:b6:c8:5d:52:ae:d9:d8:3d:
1d:24:8f:d6:68:d6:4a:8c:0c:14:4e:57:81:8d:4a:df:73:8b:
3b:2d:c2:cd:9a:29:6c:65:2d:df:a1:61:f1:26:e6:f4:1c:e7:
dd:41:88:93:86:80:28:30:8c:28:dd:ae:32:9f:7f:6b:9e:b4:
71:d1:24:7b:60:bd:71:6b:b9:1f:a7:e8:f0:b0:dc:6a:d5:4d:
30:b7:57:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 09:18:55 2024 by rpki-client on console-ams.rpki-client.org