Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/gbZaIw1pJ9usIBCX-Uni6qJzEiA.cer
File: gbZaIw1pJ9usIBCX-Uni6qJzEiA.cer (raw, json)
Hash identifier: fnCNf4BsjH3NIoxqIxSF83Wx2WRDBLg9E9fby9JgDk4=
Subject key identifier: 81:B6:5A:23:0D:69:27:DB:AC:20:10:97:F9:49:E2:EA:A2:73:12:20
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC4939B2F7160635F7A997F5A05FC558D
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/27/cdecd2-38d6-40cf-ab02-dab9dc6dc4c9/1/gbZaIw1pJ9usIBCX-Uni6qJzEiA.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/27/cdecd2-38d6-40cf-ab02-dab9dc6dc4c9/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 10:30:57 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 203218
IP: 2001:67c:2d80::/48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:93:9b:2f:71:60:63:5f:7a:99:7f:5a:05:fc:55:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 10:30:57 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=81b65a230d6927dbac201097f949e2eaa2731220
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:19:3a:41:50:d5:0e:8a:18:9f:79:12:75:ce:
0b:11:58:ef:48:5e:cc:5a:b9:ad:e0:63:09:81:75:
36:39:fa:0c:87:e1:cd:e9:09:9c:6d:1a:83:ac:0e:
cb:43:2e:45:57:ed:a9:d8:8e:cf:b0:ea:10:54:19:
c4:6d:bf:c2:d3:a5:df:35:bf:6b:a6:64:b6:54:87:
61:ee:d2:ec:69:b8:8e:63:35:33:92:ea:a6:9d:d1:
5b:89:19:e4:1a:8b:5e:33:18:97:08:43:1e:92:92:
39:49:55:9f:4a:ef:86:13:57:1c:94:0f:1f:79:85:
43:1f:47:43:e6:04:b9:69:92:34:d9:0d:b8:d8:0e:
bc:d6:2a:c9:4a:8f:47:ce:7b:ee:82:0e:9a:46:02:
31:8a:11:5a:a4:04:9d:2d:8f:5e:e9:d5:8b:56:f0:
7f:b5:a2:dd:22:68:af:af:e4:43:75:b2:db:b6:65:
36:df:6c:d4:b5:cb:80:1b:5d:2e:31:f2:9a:f1:4e:
2e:b5:4f:ae:08:5c:12:67:c0:19:df:27:db:57:5e:
45:84:5c:a7:ef:43:24:c8:98:9a:a0:4d:1e:7e:71:
77:73:80:2a:17:4d:60:eb:65:f9:bb:74:9a:9a:e1:
e9:ff:00:e1:13:b3:ab:1e:1b:ce:ea:01:66:3e:37:
8f:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:B6:5A:23:0D:69:27:DB:AC:20:10:97:F9:49:E2:EA:A2:73:12:20
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/cdecd2-38d6-40cf-ab02-dab9dc6dc4c9/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/cdecd2-38d6-40cf-ab02-dab9dc6dc4c9/1/gbZaIw1pJ9usIBCX-Uni6qJzEiA.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:2d80::/48
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
203218
Signature Algorithm: sha256WithRSAEncryption
62:c2:6f:ee:8b:83:0f:fc:32:98:53:2a:21:a7:bf:5f:ed:74:
2d:9f:e1:2b:17:7a:10:dc:f3:93:81:cb:9c:ca:9e:23:fa:16:
b4:8a:c8:b7:2c:a0:53:b9:3d:de:82:e0:92:b9:93:67:e8:02:
a0:8b:39:6e:a6:20:0c:79:cb:e9:0d:bc:14:5b:1f:c7:36:2f:
91:d2:3d:ba:61:bf:41:63:15:01:99:14:dd:0d:f6:55:71:af:
6a:0e:9d:f8:3b:1b:19:c4:6a:b8:7f:61:11:c0:4b:4a:f0:3c:
f8:38:30:0a:d9:e1:23:04:a6:43:ae:d1:87:15:ed:64:8a:1c:
94:a1:0e:e8:4f:cf:b9:14:f5:0f:d1:a9:ea:6b:01:cd:1e:07:
2d:00:d2:b2:0c:2a:b5:c4:ec:67:d2:dd:25:84:03:cb:11:b2:
a1:aa:e3:85:23:32:34:c1:3e:8e:dc:d8:0b:7a:e5:34:ac:85:
0c:99:8d:f7:61:a9:19:44:3b:45:e8:87:6c:59:c5:9b:3a:1d:
ec:4a:77:ba:9e:d5:95:29:0d:d1:fd:9b:d0:65:be:5d:71:96:
dc:9b:4e:76:f7:7e:92:1c:1f:b9:f6:21:2c:6c:fd:54:c7:34:
d9:c7:50:55:f1:3a:3b:57:b0:7a:88:0a:5c:4b:ab:be:04:23:
65:04:18:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 03:35:28 2024 by rpki-client on console-fra.rpki-client.org