Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/clLH1e2MWivCrQMGXUHD5LOsFXU.cer
File: clLH1e2MWivCrQMGXUHD5LOsFXU.cer (raw, json)
Hash identifier: yysT2vGJ1yy3Usz+A1He6PcMv4iz5t1ILvYU48EBCEE=
Subject key identifier: 72:52:C7:D5:ED:8C:5A:2B:C2:AD:03:06:5D:41:C3:E4:B3:AC:15:75
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC26D248EF1FAB87A75F8DE0901E89A63
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/86/2b9d89-ed82-4401-81d9-67d1b2a61bb0/1/clLH1e2MWivCrQMGXUHD5LOsFXU.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/86/2b9d89-ed82-4401-81d9-67d1b2a61bb0/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 00:29:41 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 47919
AS: 210613
IP: 91.208.198.0/24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:6d:24:8e:f1:fa:b8:7a:75:f8:de:09:01:e8:9a:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 00:29:41 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7252c7d5ed8c5a2bc2ad03065d41c3e4b3ac1575
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:35:61:7a:62:71:34:37:da:b8:32:41:3e:6b:
dc:28:ca:12:55:91:a9:06:08:a5:ed:c4:c4:b6:e9:
21:4a:a2:5d:0c:b3:79:9a:f9:dd:a5:ab:52:1e:bd:
a6:21:12:b5:a4:97:02:19:83:98:d6:4d:28:5d:b3:
8b:7f:f0:f4:93:a8:1d:8d:8e:2d:ce:62:24:ae:16:
f6:8a:df:27:29:33:d2:af:fc:60:6c:a5:b0:e2:d4:
e9:8d:a7:05:46:67:df:34:d3:04:49:32:01:b5:a7:
43:3e:99:55:ce:13:ba:cd:f0:a8:7d:4b:23:e8:ba:
5f:f4:9a:72:58:a3:b5:88:13:43:28:0a:41:d8:94:
05:06:4b:7a:fb:fb:87:96:db:fd:cb:58:c4:7f:3c:
ff:0a:20:2b:bb:03:48:04:02:a6:39:41:b9:ac:f3:
1a:b2:dc:b6:df:71:22:2e:80:25:9c:1d:83:e0:d7:
04:46:4d:5c:2e:7e:af:6a:a9:bb:34:ef:f0:04:07:
e9:49:30:f8:3c:cd:5d:a2:07:be:18:51:d1:f8:9b:
3f:7f:b8:03:a1:62:f6:f9:0a:ea:e3:31:12:7b:bd:
8e:77:bb:8f:31:ef:0a:26:b2:be:80:c3:89:82:d6:
12:6d:ca:fe:d3:41:6f:ce:dc:42:b7:64:47:d3:e4:
3f:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:52:C7:D5:ED:8C:5A:2B:C2:AD:03:06:5D:41:C3:E4:B3:AC:15:75
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/2b9d89-ed82-4401-81d9-67d1b2a61bb0/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/2b9d89-ed82-4401-81d9-67d1b2a61bb0/1/clLH1e2MWivCrQMGXUHD5LOsFXU.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.208.198.0/24
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
47919
210613
Signature Algorithm: sha256WithRSAEncryption
84:9f:ec:2f:04:e5:e1:34:c9:04:66:6d:02:52:bc:1d:fb:7f:
0f:1d:8e:c0:5f:bc:2d:0c:9a:c9:bb:f6:55:d3:a4:aa:0d:9b:
7d:06:cb:54:14:0e:4d:55:d2:d8:d0:d3:22:2a:09:68:44:e5:
b0:b0:0e:3b:47:8f:c9:6b:af:3b:f6:32:ba:53:8d:a3:02:20:
82:08:1a:57:d0:5c:ac:0c:96:5b:df:89:4e:5a:76:ce:c1:d8:
30:a1:19:4e:69:b1:a4:e6:48:ed:03:8c:c1:fb:07:e0:40:d8:
64:a0:69:7b:78:25:85:54:44:ed:f8:65:b8:8a:6b:30:e3:aa:
be:35:c2:19:7c:00:8b:14:82:12:01:2a:73:28:39:79:8f:a1:
eb:62:9c:4a:9c:62:be:1f:38:95:99:0b:08:37:3d:b6:9e:26:
d2:1b:f7:fa:27:12:ac:41:1a:10:e2:01:27:0b:31:e5:20:eb:
9c:79:16:a6:3d:c7:4d:6c:cd:a0:63:b3:13:ae:b9:36:81:3f:
86:75:7d:15:1d:9c:90:32:b2:d5:75:0e:7e:56:3e:ca:a0:78:
69:fa:df:cf:ed:c2:f0:d3:52:c6:88:10:65:00:5d:85:fe:78:
f4:6c:a2:1b:01:62:e8:a9:74:87:b1:78:39:5c:12:43:dc:72:
ad:9e:54:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 09:22:02 2024 by rpki-client on console-ams.rpki-client.org