Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/jw6u_3Y07o3-gFSthfihXoR1kRQ.cer
File: jw6u_3Y07o3-gFSthfihXoR1kRQ.cer (raw, json)
Hash identifier: Th+Lfx0HYTXdAwrz1IZBvCOGw1hDuERXV1oaTHvqemI=
Subject key identifier: 8F:0E:AE:FF:76:34:EE:8D:FE:80:54:AD:85:F8:A1:5E:84:75:91:14
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018E362110F783CE15352798BA337A263153
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/b9/cfa855-f0c7-4458-a3de-b3b4eefe70a5/1/jw6u_3Y07o3-gFSthfihXoR1kRQ.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/b9/cfa855-f0c7-4458-a3de-b3b4eefe70a5/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 13 Mar 2024 04:45:20 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 50291
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:36:21:10:f7:83:ce:15:35:27:98:ba:33:7a:26:31:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Mar 13 04:45:20 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8f0eaeff7634ee8dfe8054ad85f8a15e84759114
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:43:fa:9e:19:61:98:1b:cc:20:fc:5b:68:0b:
38:13:4d:3a:24:f5:c1:e7:f5:0a:69:4d:e9:fa:b4:
12:b1:73:f2:a1:5b:c6:b3:f4:26:e0:ee:50:1a:95:
bd:8b:16:48:74:92:46:2f:63:cd:62:50:7d:cb:9a:
87:6c:7b:a5:d5:ce:97:96:89:15:66:56:17:71:16:
51:56:85:32:e8:ae:cc:69:da:97:08:5f:d7:7d:b8:
26:98:a9:2a:7f:06:ef:7e:95:30:21:ba:80:19:b4:
5c:73:ba:07:52:53:a5:13:7d:55:4f:f6:b1:fa:b8:
be:92:08:73:22:1e:22:19:b4:5c:3e:f7:62:0d:79:
31:ec:4a:1d:b0:60:be:77:2d:39:75:1b:59:2f:21:
c3:7b:85:6e:9e:2a:c3:61:ef:2b:f8:0b:9a:dd:f3:
f6:ce:a4:98:1a:4a:64:4a:e6:6a:0f:28:41:15:14:
05:38:e6:bd:58:b9:9b:25:97:77:87:37:84:f0:8f:
5d:8f:55:67:ca:f9:5b:f3:7d:81:00:a8:19:f2:79:
d0:75:db:be:9a:a1:25:a6:84:71:d7:7e:1e:c0:b2:
81:3d:1a:f4:54:61:73:41:a3:3e:72:da:b6:bd:88:
1b:df:2c:74:d7:7a:5f:52:46:94:24:bc:be:92:81:
93:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:0E:AE:FF:76:34:EE:8D:FE:80:54:AD:85:F8:A1:5E:84:75:91:14
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/cfa855-f0c7-4458-a3de-b3b4eefe70a5/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/cfa855-f0c7-4458-a3de-b3b4eefe70a5/1/jw6u_3Y07o3-gFSthfihXoR1kRQ.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
50291
Signature Algorithm: sha256WithRSAEncryption
0e:75:cb:9e:16:4b:a7:43:f7:25:a3:80:5b:fd:2d:53:34:af:
11:5c:6b:03:42:eb:96:aa:d4:1c:af:42:d3:27:64:b5:fa:a2:
fb:85:39:81:1e:d4:d4:43:23:64:b6:50:75:7f:7b:41:4b:4d:
2a:fc:ee:d2:6a:91:8b:0d:64:de:08:49:81:92:69:7b:d2:56:
27:1c:3d:bb:91:cd:a6:96:47:90:a7:51:15:bb:42:41:12:54:
22:68:76:2f:c9:c5:1c:93:22:f7:d3:c0:44:2c:75:09:17:7e:
4e:54:fe:b4:13:59:a4:22:0a:4b:93:38:68:26:11:1d:0a:bb:
2c:18:87:80:3a:06:9e:ec:4b:8f:f3:2f:7b:2f:ad:30:b5:31:
48:3c:7d:be:0a:ba:ec:7a:d6:07:00:f3:fc:19:d6:60:7f:d1:
40:8d:f7:c4:db:f3:d8:cd:6f:72:84:e4:fd:4d:b1:24:29:15:
c6:57:63:a6:39:21:9d:d5:e4:8e:a0:40:4a:5a:a1:2e:dc:63:
17:64:bb:2e:04:53:ec:07:9c:cd:3d:61:44:81:bd:be:8a:65:
3d:07:ae:dc:a8:0f:58:e2:d8:8c:dd:55:47:59:a2:d2:45:c3:
1d:89:cf:eb:73:b5:a5:1a:56:db:9a:0d:ce:54:52:84:f2:47:
71:c0:a1:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 03:38:32 2024 by rpki-client on console-fra.rpki-client.org