Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/k4EH0RRkaaEaY-X10tfbj28717M.cer
File: k4EH0RRkaaEaY-X10tfbj28717M.cer (raw, json)
Hash identifier: zS/pbmk2xO0oG5WnGT6GWRmagDFeoe70vKAB3NjeV7A=
Subject key identifier: 93:81:07:D1:14:64:69:A1:1A:63:E5:F5:D2:D7:DB:8F:6F:3B:D7:B3
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC8DCC8E1E381E52A27D10B68F6018185
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/71/aff4a9-3c5e-4a71-b524-cbc6ccc08932/1/k4EH0RRkaaEaY-X10tfbj28717M.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/71/aff4a9-3c5e-4a71-b524-cbc6ccc08932/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 06:29:21 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 212099
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:dc:c8:e1:e3:81:e5:2a:27:d1:0b:68:f6:01:81:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 06:29:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=938107d1146469a11a63e5f5d2d7db8f6f3bd7b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:e9:9f:b5:4c:c7:cd:05:66:85:69:59:92:87:
94:9b:a3:f8:80:fe:ed:3d:c9:20:7b:34:96:b8:3f:
17:5d:e4:30:1d:d8:1d:7a:2f:84:23:c4:da:06:e2:
6c:e2:c8:28:b5:83:5b:8d:da:38:70:d6:b1:51:51:
78:86:70:0e:64:e7:a2:00:9e:2c:cb:d7:93:f5:06:
b9:4b:a0:57:95:20:ba:60:80:b1:b0:42:5d:cd:b1:
eb:1f:46:21:5f:99:94:81:26:eb:8d:6b:29:cd:b2:
32:db:49:03:b0:17:14:d7:ec:bb:66:f1:cc:c3:cc:
81:21:c2:9c:59:b2:d9:4c:17:a0:ea:8f:c6:1e:e5:
65:4f:dd:11:81:30:11:8b:ca:4c:48:82:f1:1e:1d:
68:07:16:fb:4a:12:6a:96:0d:f2:b0:b1:4a:1d:4c:
32:6d:66:f6:a8:02:35:29:71:84:e4:5e:9a:0e:49:
33:5a:11:96:bf:7c:e6:18:62:85:f1:6a:54:c0:79:
4b:00:06:4e:ad:27:3b:3a:25:8b:25:f4:2a:b2:2a:
f6:d2:86:ee:ca:f0:6c:5f:a9:5c:04:8e:79:8b:e4:
82:0f:9a:07:17:53:a5:16:2f:19:c3:1c:c6:54:61:
8f:a3:ec:e6:94:d8:ee:50:99:90:55:31:fa:20:db:
ad:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:81:07:D1:14:64:69:A1:1A:63:E5:F5:D2:D7:DB:8F:6F:3B:D7:B3
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/aff4a9-3c5e-4a71-b524-cbc6ccc08932/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/aff4a9-3c5e-4a71-b524-cbc6ccc08932/1/k4EH0RRkaaEaY-X10tfbj28717M.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
212099
Signature Algorithm: sha256WithRSAEncryption
78:23:0a:00:b3:e9:9a:46:fa:f2:3b:1a:f7:4d:7b:e4:08:8e:
83:75:a0:d2:4a:5a:cb:25:c9:08:07:b0:ad:a6:cb:f6:40:04:
3e:25:a2:bd:f3:13:1a:3f:c9:dc:6d:97:d6:21:ca:58:7f:87:
26:67:22:7a:10:5e:18:39:e6:b4:4d:9e:ab:fa:79:b2:74:36:
e8:3a:78:f8:a9:6d:a8:d9:b6:27:3e:9c:fe:3d:59:dd:27:bf:
be:aa:dd:78:11:a9:a8:5d:e9:35:69:01:21:e7:f4:4e:c9:82:
34:0f:a8:d7:99:1b:10:aa:34:9d:32:71:ec:4a:16:47:9c:63:
94:89:42:e3:85:18:6a:2d:24:0b:71:97:e7:e3:47:ff:bf:da:
22:3f:29:d9:e1:63:77:7e:f8:1c:d5:88:e0:10:1e:fa:ac:7b:
bd:62:f7:b5:2b:68:88:b7:9d:31:9f:a1:ef:07:1d:90:ea:52:
f8:96:e8:1a:6d:76:77:73:f2:0a:2a:93:3e:e4:3f:3f:9d:86:
a6:e4:de:f6:cf:c1:e5:5e:9b:15:7a:8a:67:93:7d:a4:b7:9d:
be:b4:11:9d:4b:b9:b8:2c:0c:83:d2:04:25:1f:07:4d:dd:de:
4b:e7:b4:50:e4:43:04:df:6b:28:f3:b4:23:7e:21:54:05:f3:
e6:21:a2:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:41:32 2024 by rpki-client on console-ams.rpki-client.org