Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/coe8FdmVjihdWllYuOZJfl_OkfU.cer
File: coe8FdmVjihdWllYuOZJfl_OkfU.cer (raw, json)
Hash identifier: lDfejZMZi6LLJARuUinh4HHVK+GQD/ykMqRCawuciA0=
Subject key identifier: 72:87:BC:15:D9:95:8E:28:5D:5A:59:58:B8:E6:49:7E:5F:CE:91:F5
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC64AEFFD6CCE685953BDA44D4239B728
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/7c/9e5de4-f650-44d7-bd30-7ec213cb115f/1/coe8FdmVjihdWllYuOZJfl_OkfU.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/7c/9e5de4-f650-44d7-bd30-7ec213cb115f/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 18:30:49 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 21211
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4a:ef:fd:6c:ce:68:59:53:bd:a4:4d:42:39:b7:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 18:30:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7287bc15d9958e285d5a5958b8e6497e5fce91f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:0d:cb:22:6f:8b:0b:4b:2c:da:b9:48:25:06:
ee:fb:2d:3e:f7:78:a6:8e:bf:8f:20:fb:28:e1:6e:
4c:c5:69:be:70:10:82:81:71:da:4e:80:64:c1:30:
bd:90:27:0b:6e:b1:cc:cf:34:2b:31:de:5b:74:96:
e0:36:44:d3:2e:14:15:58:62:ee:68:e0:28:13:99:
7c:93:89:64:5e:81:7a:ca:e4:1a:62:25:1d:1c:34:
c3:f0:0a:cd:3f:c9:e3:a9:23:79:fd:90:be:ff:19:
96:20:be:70:bd:8c:a5:cd:2e:6b:ea:a8:68:2c:c2:
bd:8f:42:f5:ff:33:92:1c:3a:f5:1c:81:fa:ac:22:
0f:2c:d1:25:48:b9:a9:48:0e:30:c8:6b:a6:ae:47:
f3:a1:17:26:bb:0a:f7:d6:99:c6:3c:c9:98:d1:17:
c7:22:b2:08:43:99:34:96:a7:34:42:d6:85:ed:64:
2c:61:85:82:a4:b5:78:00:d3:c1:bb:75:56:cd:2d:
6d:f4:49:f9:74:85:ef:46:13:4f:7f:90:c5:94:46:
cc:40:09:99:64:06:c1:04:8e:70:bd:93:66:0e:a1:
f3:9f:aa:69:9a:d4:e0:3c:64:db:63:a7:e4:0f:75:
d2:b6:b3:45:96:45:d8:11:b8:c8:02:27:12:2e:0f:
56:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:87:BC:15:D9:95:8E:28:5D:5A:59:58:B8:E6:49:7E:5F:CE:91:F5
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/9e5de4-f650-44d7-bd30-7ec213cb115f/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/9e5de4-f650-44d7-bd30-7ec213cb115f/1/coe8FdmVjihdWllYuOZJfl_OkfU.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
21211
Signature Algorithm: sha256WithRSAEncryption
79:38:ae:60:e8:e3:df:f1:60:7e:61:8d:a2:e4:3d:1e:f4:a4:
de:cc:62:08:83:4c:bb:e4:c6:63:7e:a0:be:a0:aa:e9:09:cf:
f0:32:86:85:48:7b:ea:37:a0:12:d5:e9:d2:27:2e:1e:04:96:
f3:b6:e9:66:56:19:01:58:eb:1a:c1:ae:f1:a1:05:22:6d:ce:
75:cb:b3:8b:fd:e0:eb:02:03:cc:94:bc:47:33:b6:c0:01:71:
0d:51:0c:64:60:24:e0:d2:ae:2e:12:f1:4a:b0:e2:94:5c:bf:
ce:8b:b9:ba:a9:11:db:95:d7:5d:db:4c:53:8a:bd:07:54:61:
fa:be:66:72:28:60:fe:ce:56:c3:11:13:02:21:49:16:d3:07:
c7:15:94:34:29:e6:ef:b6:0d:8f:90:74:74:8d:8b:9d:7e:20:
49:24:9d:aa:66:14:f3:2c:bc:6e:d3:28:29:e8:26:30:f0:66:
aa:aa:41:c3:6f:40:cb:09:0b:21:7e:c9:4a:25:fc:5a:74:a9:
0f:76:ab:74:6f:31:04:ec:5e:2d:12:53:48:48:f5:3f:7b:43:
cd:7e:6a:6d:e3:e2:9e:b0:79:42:ef:7e:b3:de:ea:0d:81:f9:
ec:6b:59:06:6d:e4:d2:53:ce:73:f2:84:3b:4e:b5:64:57:93:
86:79:94:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 10:37:14 2024 by rpki-client on console-fra.rpki-client.org