Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fXBZY4QR4yMedZ50qBO_k3Ygnnc.cer
File: fXBZY4QR4yMedZ50qBO_k3Ygnnc.cer (raw, json)
Hash identifier: OSYcchxWIeaF8RM3n/e/EWoU2mFg0elm6ZUCVGJ/RSY=
Subject key identifier: 7D:70:59:63:84:11:E3:23:1E:75:9E:74:A8:13:BF:93:76:20:9E:77
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019039DA2E1A28940D6B48A0E7CB1E21E248
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rsync.paas.rpki.ripe.net/repository/9c0ed046-fa95-45c3-9146-971db8a9e8bb/6/7D7059638411E3231E759E74A813BF9376209E77.mft
caRepository: rsync://rsync.paas.rpki.ripe.net/repository/9c0ed046-fa95-45c3-9146-971db8a9e8bb/6/
Notify URL: https://rrdp.paas.rpki.ripe.net/notification.xml
Certificate not before: Fri 21 Jun 2024 08:11:58 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 215849
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:39:da:2e:1a:28:94:0d:6b:48:a0:e7:cb:1e:21:e2:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jun 21 08:11:58 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7d7059638411e3231e759e74a813bf9376209e77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:a2:6c:45:0b:5c:c5:7e:4f:4a:94:7e:f0:5a:
59:9a:f7:4b:b3:a3:3a:1f:8a:29:c4:e4:25:34:e8:
7c:8a:81:14:fb:b6:d0:ba:c1:81:4d:8d:5f:f2:2f:
f2:79:99:cc:5c:56:5d:90:d3:25:b2:ea:0a:f7:f5:
89:0f:86:9e:64:08:ee:e8:d2:56:d9:fe:1a:7e:6c:
37:4c:88:76:89:5d:9c:55:06:f2:b4:46:94:f6:c5:
79:cd:77:5a:ed:0e:db:68:30:8a:1e:41:ca:db:d0:
1b:50:ca:f5:d0:e6:ae:a8:ad:b9:4f:62:78:0a:41:
08:e1:79:a4:4a:81:c4:55:de:00:5c:9a:de:ef:0b:
8c:85:43:6d:41:56:e7:61:c3:0d:52:07:94:5c:20:
bf:32:84:23:2e:b7:6f:08:e5:d8:78:d6:1c:7e:5c:
b5:8d:3f:c0:cf:5c:a1:5c:b6:ed:9d:78:94:59:f9:
e5:8c:46:28:06:31:af:2b:7f:e5:ea:61:12:47:ee:
05:7b:76:a5:dd:7c:d9:a2:07:ad:80:75:74:e3:07:
d4:91:17:69:8d:50:8e:18:85:71:e1:d8:44:ca:7c:
e0:e9:b3:48:9a:5d:09:71:c6:a2:7b:3f:73:d2:5c:
f6:76:0c:80:62:db:67:d0:bc:ed:a8:06:39:00:f5:
1e:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:70:59:63:84:11:E3:23:1E:75:9E:74:A8:13:BF:93:76:20:9E:77
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rsync.paas.rpki.ripe.net/repository/9c0ed046-fa95-45c3-9146-971db8a9e8bb/6/
RPKI Manifest - URI:rsync://rsync.paas.rpki.ripe.net/repository/9c0ed046-fa95-45c3-9146-971db8a9e8bb/6/7D7059638411E3231E759E74A813BF9376209E77.mft
RPKI Notify - URI:https://rrdp.paas.rpki.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
215849
Signature Algorithm: sha256WithRSAEncryption
82:63:cd:dc:5e:ba:d7:f6:da:6b:d0:a8:06:61:6d:a5:0f:67:
37:70:fc:4d:59:e9:b8:87:02:26:5c:4d:35:50:69:0e:6a:d8:
48:1e:cf:3d:5b:ca:be:fe:45:30:0e:fa:71:ab:81:1e:fa:7c:
4d:5f:ba:d9:c9:0d:90:53:52:3c:e2:48:64:0d:3b:29:76:cc:
37:e4:81:3a:15:af:6d:99:fe:40:04:4d:1a:6d:e3:3b:17:90:
09:d5:54:71:f2:cd:f7:17:54:56:67:00:0e:fe:4f:16:2a:2f:
70:d5:92:31:63:80:32:f3:70:30:3c:f2:79:fa:c2:27:d7:f9:
ec:72:96:84:04:ea:c7:99:12:2a:61:a6:14:fc:52:24:11:29:
d3:38:04:51:54:57:ce:dd:84:f7:0b:6f:60:0f:c2:64:23:b1:
fc:b9:e2:88:5d:76:a3:b9:d6:c5:8c:fc:d2:b9:6e:cc:95:94:
6e:6c:fc:d4:54:82:5c:b0:27:97:d2:ef:c1:81:d3:c1:94:67:
0b:f7:45:4a:3c:9d:8f:d4:11:5e:bb:a3:06:cc:a1:8e:17:a2:
af:1b:67:0a:52:60:f1:15:15:f7:3f:ac:d6:a7:68:e9:87:6b:
2e:ee:e5:8c:11:ae:43:38:98:c1:f9:3d:0b:f3:a4:e7:e6:c3:
b6:f6:d6:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 12:13:34 2024 by rpki-client on console-ams.rpki-client.org