Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6P5nbqUowe2zS4dkPZ42sBWgfg.cer
File: f6P5nbqUowe2zS4dkPZ42sBWgfg.cer (raw, json)
Hash identifier: Ln//HaV6lSZfrjmqetJ+Q5+e6LVKqONBogPHkCVJ2dY=
Subject key identifier: 7F:A3:F9:9D:BA:94:A3:07:B6:CD:2E:1D:90:F6:78:DA:C0:56:81:F8
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC56EDC04C7A4562A2145E12166630286
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/15/5ae3c4-4aa4-4c62-8eb5-4ea47cce0c63/1/f6P5nbqUowe2zS4dkPZ42sBWgfg.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/15/5ae3c4-4aa4-4c62-8eb5-4ea47cce0c63/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 14:30:26 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 208121
AS: 212182
IP: 45.151.140.0/22
IP: 91.209.228.0/24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:dc:04:c7:a4:56:2a:21:45:e1:21:66:63:02:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 14:30:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7fa3f99dba94a307b6cd2e1d90f678dac05681f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:b7:55:f6:92:b1:4f:ae:c6:9e:92:01:85:40:
eb:a7:29:9e:42:11:09:16:85:bf:b3:ae:21:7e:1c:
84:1b:1a:11:41:04:e9:e4:75:43:c5:81:9c:d7:6c:
77:7a:4c:ac:c6:57:0e:3c:09:32:e6:5a:e4:54:3b:
f1:b1:8f:ea:23:9f:84:47:85:2d:58:8f:5b:b8:d8:
44:c3:af:c9:3b:67:3f:ef:46:6d:fd:63:97:54:9f:
cf:92:73:0a:7b:78:22:f9:c1:b1:b1:4a:d1:7d:2f:
88:33:d8:bf:97:dc:79:69:c1:30:f5:66:56:9f:91:
99:d0:2e:3a:17:59:23:b3:3f:b9:33:7e:b3:7c:65:
f7:ae:dd:17:6b:d5:33:7d:6d:5e:5a:90:df:ab:a9:
a6:81:d2:38:0a:60:7e:51:31:5f:78:8b:71:a5:67:
0c:c7:9b:91:9b:48:44:f7:c4:88:bf:da:14:ab:fe:
86:56:79:86:04:a7:df:4f:fd:97:f1:48:2c:2b:2c:
05:97:c6:7f:39:14:01:9c:23:53:10:74:9f:90:83:
18:2f:15:d5:dd:28:87:e5:cd:c3:39:4b:cc:bd:ee:
1a:1a:9f:8b:b9:98:aa:4a:2c:e3:8c:ad:ee:40:b0:
69:61:f4:ac:08:8e:a2:78:dc:55:84:35:11:b3:8e:
5e:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:A3:F9:9D:BA:94:A3:07:B6:CD:2E:1D:90:F6:78:DA:C0:56:81:F8
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/5ae3c4-4aa4-4c62-8eb5-4ea47cce0c63/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/5ae3c4-4aa4-4c62-8eb5-4ea47cce0c63/1/f6P5nbqUowe2zS4dkPZ42sBWgfg.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.151.140.0/22
91.209.228.0/24
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
208121
212182
Signature Algorithm: sha256WithRSAEncryption
03:55:69:e1:14:35:f4:b4:9b:14:b9:7a:f3:d7:23:f8:0d:86:
6c:37:1f:03:59:93:6e:cc:4d:65:e3:0c:91:67:5f:84:16:5b:
26:fc:5c:d2:cc:9d:8d:aa:a2:ff:0e:87:da:b1:dd:4b:b3:d2:
8a:ed:d6:33:94:01:d3:6a:73:0b:6c:c8:16:1b:71:12:c8:86:
dd:5c:9e:49:fb:1d:ce:00:63:f1:b9:f6:91:f4:f8:82:80:ed:
ea:22:54:da:39:cd:7e:91:38:c0:08:6c:08:f1:ea:42:0d:09:
11:b7:19:e0:e6:97:61:fe:52:6b:05:af:ea:4f:0a:32:9d:5d:
fa:f0:d9:a6:cf:97:1d:86:f7:7a:b3:aa:72:40:9b:fc:10:7b:
02:e8:f8:36:92:5f:09:93:63:6e:83:04:7d:2d:76:64:37:d3:
26:4d:ae:6c:75:31:4a:82:cf:4d:50:1b:c7:55:4c:62:8b:9f:
26:c4:8f:22:5e:4e:78:76:9a:3c:72:7e:97:28:f5:4a:40:fc:
6b:35:99:9d:b0:54:dc:a7:d6:36:6f:56:ae:12:ec:59:54:81:
d1:59:0a:86:dd:f3:f1:5a:4d:55:2e:6a:9e:4c:ec:f8:c5:61:
2b:d6:b1:e7:bd:e5:8b:85:9a:a7:15:02:cc:87:8e:26:a0:84:
a7:7a:7b:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 09:29:42 2024 by rpki-client on console-ams.rpki-client.org