Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/g47DlCgT0_NTbBJ-GoIb--9tsqQ.cer
File: g47DlCgT0_NTbBJ-GoIb--9tsqQ.cer (raw, json)
Hash identifier: XY+KlNdyDApL++xjCo49XB6jHhf7XUv+ypwhda9CEqs=
Subject key identifier: 83:8E:C3:94:28:13:D3:F3:53:6C:12:7E:1A:82:1B:FB:EF:6D:B2:A4
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC8705403068D74476ECAF396B50FB27D
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/5d/0c4b16-6b94-4080-9165-b853567da0ea/1/g47DlCgT0_NTbBJ-GoIb--9tsqQ.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/5d/0c4b16-6b94-4080-9165-b853567da0ea/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 04:30:53 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 211416
IP: 193.56.134.0/24
IP: 2a10:e840::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:70:54:03:06:8d:74:47:6e:ca:f3:96:b5:0f:b2:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 04:30:53 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=838ec3942813d3f3536c127e1a821bfbef6db2a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:1a:a9:e3:3f:18:04:a7:96:90:05:28:f4:37:
28:0c:74:f4:78:63:b3:10:ed:2b:f5:55:b2:eb:d1:
1b:03:aa:27:77:d8:a1:aa:1c:62:4e:ab:96:6c:95:
cd:c0:20:38:3c:fc:68:32:51:6b:ea:ce:eb:62:1c:
61:d1:f1:5c:67:6c:e6:d5:f8:a8:5f:47:47:0a:18:
87:0f:a4:5e:8f:45:32:0e:46:62:47:2c:af:f4:46:
0f:06:c2:3e:ec:22:41:20:02:33:ac:61:78:ee:ae:
98:24:cb:d4:b3:51:b3:08:93:cd:cb:b1:ed:c8:0d:
8e:3d:c5:cd:c5:e6:cb:a3:f5:4d:5a:aa:39:02:fd:
43:18:28:da:b4:84:b1:96:88:b2:1c:3f:d9:1d:d3:
c3:b4:f3:53:23:92:0b:6f:07:30:e2:42:20:a2:f1:
89:a7:fb:5b:a1:5d:ac:05:67:7e:bb:aa:86:b4:db:
33:fc:4d:68:3f:e1:91:66:db:fd:29:90:0a:03:86:
ea:0d:57:92:ea:f2:41:ec:57:14:a4:90:87:ae:75:
74:35:40:ad:14:c5:29:c0:61:d4:9a:58:31:a8:f1:
1f:bf:5d:2b:a8:3b:6f:08:3f:8b:3c:17:bc:20:cd:
bf:ba:e6:ea:cb:4c:74:d5:d1:6b:ce:da:be:b0:30:
c0:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:8E:C3:94:28:13:D3:F3:53:6C:12:7E:1A:82:1B:FB:EF:6D:B2:A4
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/0c4b16-6b94-4080-9165-b853567da0ea/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/0c4b16-6b94-4080-9165-b853567da0ea/1/g47DlCgT0_NTbBJ-GoIb--9tsqQ.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.56.134.0/24
IPv6:
2a10:e840::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
211416
Signature Algorithm: sha256WithRSAEncryption
96:73:c4:5d:69:8c:a1:4a:81:fd:26:ff:57:38:f7:d8:ed:4f:
c7:fb:6f:e8:4b:ad:f7:c3:0f:5d:1a:d7:89:5d:74:6c:7f:3f:
e9:72:c8:9f:3c:aa:94:dc:af:51:78:ad:c3:42:6b:a7:6c:ad:
f9:aa:46:5c:b4:5c:b1:d1:a7:21:7c:4e:85:6b:f6:df:80:28:
c8:53:7b:16:41:ef:4c:b6:81:80:dd:4e:94:00:0e:55:60:8c:
94:85:c9:98:10:87:83:2d:d9:b8:df:ce:f5:6d:d2:0c:68:ac:
1f:11:e7:41:44:36:d7:cb:ff:bb:5b:9d:40:00:ae:07:2c:80:
fd:c1:08:a1:8d:68:60:8a:cf:03:31:63:67:cf:96:2f:63:9a:
84:6b:59:3a:a3:97:23:59:0e:0d:67:b4:9e:0f:1f:81:f9:c6:
ab:9d:c6:6a:38:c8:ff:b2:12:77:2d:f1:f6:af:3b:2a:0e:28:
10:24:7e:ce:9f:6e:1f:32:3e:7c:ce:44:67:e4:37:e2:34:fb:
81:24:e7:f4:ef:77:60:52:4f:fe:65:6a:84:55:65:26:1d:a0:
aa:cb:0a:ec:41:1d:3e:5b:11:51:3f:67:28:79:08:d4:29:b6:
ca:27:07:37:23:4f:73:a1:bf:2a:26:da:de:b3:ae:e2:f4:f3:
19:b0:0c:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 10:51:05 2024 by rpki-client on console-fra.rpki-client.org