Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ckJsPRHJ8krMCh2EVMvJYEhlqAk.cer
File: ckJsPRHJ8krMCh2EVMvJYEhlqAk.cer (raw, json)
Hash identifier: Yu6/I4pXFDcH+1y8mfe9ziNgJZpgt3sDzSZ8LAl81jM=
Subject key identifier: 72:42:6C:3D:11:C9:F2:4A:CC:0A:1D:84:54:CB:C9:60:48:65:A8:09
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC5DD44DEECCBEC07674477D4FEFCB10E
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/46/4c1b34-9c70-411f-b01f-be90b0fd1f78/1/ckJsPRHJ8krMCh2EVMvJYEhlqAk.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/46/4c1b34-9c70-411f-b01f-be90b0fd1f78/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 16:31:01 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 200607
IP: 185.101.180.0/22
IP: 2a06:2040::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:dd:44:de:ec:cb:ec:07:67:44:77:d4:fe:fc:b1:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 16:31:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=72426c3d11c9f24acc0a1d8454cbc9604865a809
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:9d:fc:3e:ec:82:25:01:c9:a2:ab:bd:07:f6:
d3:89:7f:36:b3:04:26:36:bd:5d:77:fc:10:18:af:
5f:10:2b:de:ce:9e:af:2c:fd:77:28:58:2a:c1:85:
44:61:5d:46:7a:d4:56:59:1c:55:61:1f:c4:f0:8f:
6f:e3:5a:76:35:62:62:82:d9:d3:d1:d3:48:e8:72:
8a:ee:95:1e:32:79:eb:3f:7a:27:d4:bf:f2:37:e5:
32:d4:5c:81:ea:c7:8e:2c:74:02:5b:32:e0:ca:cc:
84:68:2d:61:0c:f2:57:03:f7:cc:13:b4:7c:d6:8e:
35:f7:d9:51:b5:2a:24:4f:6b:06:86:34:39:d6:24:
4e:25:63:e7:7d:dd:ba:4d:12:50:82:f9:2e:e4:14:
7e:cb:e0:ab:b8:e6:d6:fe:fa:84:56:4f:bf:4c:9b:
da:0a:32:d0:c8:fb:a8:7e:bb:82:7c:ce:a5:d8:b6:
db:64:7f:21:19:98:ed:ef:b2:ca:5a:26:e7:25:5f:
9b:13:1c:ab:ec:a9:a2:ae:21:62:7e:90:a4:53:15:
90:f7:2a:e2:cd:9d:fe:91:a7:c7:fc:b8:97:93:cd:
54:5c:ec:4f:4d:c7:50:29:2c:2f:a1:95:3a:8b:5e:
73:b1:dd:43:7c:9e:31:dc:c8:6a:38:10:8d:7c:b8:
8b:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:42:6C:3D:11:C9:F2:4A:CC:0A:1D:84:54:CB:C9:60:48:65:A8:09
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/4c1b34-9c70-411f-b01f-be90b0fd1f78/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/4c1b34-9c70-411f-b01f-be90b0fd1f78/1/ckJsPRHJ8krMCh2EVMvJYEhlqAk.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.101.180.0/22
IPv6:
2a06:2040::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
200607
Signature Algorithm: sha256WithRSAEncryption
02:01:70:19:d4:a9:b2:78:d9:62:b7:5e:1a:f3:b4:70:5e:06:
d5:3a:39:39:61:0b:5c:4b:ca:71:43:9e:24:45:07:d4:52:ab:
8f:bf:8c:4c:59:8e:24:c3:08:52:8c:01:86:0e:c9:fa:40:10:
19:9a:46:0f:39:0a:79:39:ec:08:53:02:1c:36:83:09:4e:ee:
4f:35:9f:4e:5b:af:bb:d8:80:8b:24:00:17:57:5c:65:48:83:
fc:dd:e2:a6:7a:1c:22:44:bf:de:4c:03:6b:35:38:b4:63:8c:
75:db:1c:67:ea:10:8a:f6:a0:ba:c8:b7:16:37:d7:be:e3:52:
9f:15:e4:d4:3e:f7:9c:a6:b0:64:0f:d5:5a:63:ef:02:9b:2a:
df:0e:c3:cb:7c:42:18:7b:4d:cc:9c:a3:06:f4:27:d6:4e:a3:
00:b7:8f:6a:a2:c7:82:08:06:c6:6e:87:09:24:3d:6a:ac:8a:
31:1b:28:18:c0:a7:41:64:39:57:02:64:af:a1:b8:69:56:9b:
41:08:de:68:a2:05:b2:64:de:d6:af:ab:b4:56:6e:0b:75:df:
96:c6:7b:78:09:67:ea:a8:c9:8d:37:8f:d2:53:1e:06:bb:62:
24:50:46:b8:0c:02:15:a6:19:2f:b0:68:b7:96:eb:c5:36:70:
56:e8:62:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 09:22:00 2024 by rpki-client on console-ams.rpki-client.org