Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dxPzWC9jkBMFUwtLGTbNbmYRowo.cer
File: dxPzWC9jkBMFUwtLGTbNbmYRowo.cer (raw, json)
Hash identifier: gt/VYjMKVMiI9gdRxv2wf8zrJM57KQ6PfPrjBiVOm7Q=
Subject key identifier: 77:13:F3:58:2F:63:90:13:05:53:0B:4B:19:36:CD:6E:66:11:A3:0A
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0190915D3EE4E9F41E8CC7C276474FB91727
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/ea/f4d76e-34a1-4d0a-b9bd-189d53ae4e3e/1/dxPzWC9jkBMFUwtLGTbNbmYRowo.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/ea/f4d76e-34a1-4d0a-b9bd-189d53ae4e3e/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 08 Jul 2024 08:02:05 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 61329
IP: 194.13.120.0/22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Sep 2024 14:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:91:5d:3e:e4:e9:f4:1e:8c:c7:c2:76:47:4f:b9:17:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jul 8 08:02:05 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7713f3582f63901305530b4b1936cd6e6611a30a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:8f:e8:54:06:74:61:5b:5d:48:ac:91:69:09:
d3:30:93:06:45:b2:60:3e:af:ec:2e:d6:bb:51:c6:
96:4b:44:e6:c2:55:6f:71:72:cc:3e:18:b5:d7:d9:
3a:34:b9:cb:fc:b5:ac:32:c5:51:d9:9d:8d:4f:33:
ae:01:6f:3c:53:15:b3:fa:e2:ca:65:02:90:2a:ac:
64:b6:4d:aa:b2:8b:92:ea:41:60:5e:24:2b:16:ef:
ac:ad:0a:97:b2:49:ce:49:25:ec:e5:84:da:f5:2c:
96:c9:e9:1e:a4:38:d3:82:a9:16:f3:7f:64:93:7a:
00:7a:64:d9:1f:4c:4b:5f:cc:7d:f7:da:58:d8:c9:
f0:06:1f:20:21:cb:0e:6f:54:6f:46:13:74:3b:60:
a6:33:3a:1b:92:94:c9:e3:e4:a3:4e:e6:55:25:8e:
dd:d9:da:b7:dd:f3:52:80:0f:e2:a7:7e:36:d4:9e:
eb:ac:3e:a6:91:3b:3f:1f:89:7f:78:62:12:6c:f6:
df:62:65:b6:c0:a8:a2:e4:6f:8a:5e:51:7b:30:5a:
8f:d0:9a:08:6d:fa:4e:c6:f5:d4:cc:97:1a:fa:f3:
56:6f:d2:6e:d5:77:81:98:f2:6c:f7:bb:ab:b0:20:
88:10:83:eb:4e:31:99:03:35:49:65:07:64:3b:b0:
39:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:13:F3:58:2F:63:90:13:05:53:0B:4B:19:36:CD:6E:66:11:A3:0A
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/f4d76e-34a1-4d0a-b9bd-189d53ae4e3e/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/f4d76e-34a1-4d0a-b9bd-189d53ae4e3e/1/dxPzWC9jkBMFUwtLGTbNbmYRowo.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.13.120.0/22
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
61329
Signature Algorithm: sha256WithRSAEncryption
5d:cf:17:7b:db:8b:2d:90:f7:42:cc:e2:57:cd:4b:cd:0d:28:
62:63:e9:0b:f8:db:3d:bc:cd:be:7e:cc:c9:d1:1e:3f:9d:c6:
c0:4f:46:b2:ec:88:49:ae:bb:cb:59:59:38:cc:23:e9:01:95:
1d:e1:be:73:ca:94:59:60:59:c3:58:70:cd:7c:0c:08:9a:9b:
62:c6:72:58:77:8f:f3:51:5e:66:1a:ad:c7:29:c9:eb:14:e1:
1b:fb:72:c4:b3:4a:aa:78:71:d3:a1:d6:18:ff:02:e0:25:8f:
2b:f2:91:c5:78:01:ee:af:36:29:a2:51:16:4d:ed:a4:2f:51:
1c:b4:69:6b:87:04:bb:bf:d0:fb:3f:1d:0e:ea:0c:13:12:65:
fc:6b:69:e5:e7:28:7b:ef:2a:87:ea:17:6d:46:7e:2a:a3:e7:
00:f0:b0:15:3c:8c:07:24:56:79:4d:35:86:89:d2:0b:30:c0:
4a:32:c0:55:9d:9d:bc:db:93:8e:bc:68:60:a5:ac:50:c8:37:
df:3f:54:18:f6:39:c3:a5:03:86:16:d1:ba:07:37:c3:97:2a:
f6:6f:06:6d:c8:08:3e:49:8e:92:03:cb:19:ea:8b:ac:5b:9a:
ea:2f:ba:9e:0b:2f:c6:de:75:44:2c:b4:f1:de:d1:bb:4f:82:
94:fe:b2:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 7 21:08:21 2024 by rpki-client on console-fra.rpki-client.org