Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/kOphmXVeYwDwQCwqCO1DegpzAB4.cer
File: kOphmXVeYwDwQCwqCO1DegpzAB4.cer (raw, json)
Hash identifier: jA7FtvnonE97OetI/sfbrzfXzCcxilrMZEdlMIF8EYQ=
Subject key identifier: 90:EA:61:99:75:5E:63:00:F0:40:2C:2A:08:ED:43:7A:0A:73:00:1E
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC94AD4446F0994098622172D36248F29
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/ab/6d2a8f-cf90-46fb-8259-c39808d03a18/1/kOphmXVeYwDwQCwqCO1DegpzAB4.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/ab/6d2a8f-cf90-46fb-8259-c39808d03a18/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 08:29:33 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: IP: 94.127.16.0/21
IP: 109.68.216.0/21
IP: 2a00:1b28::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4a:d4:44:6f:09:94:09:86:22:17:2d:36:24:8f:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 08:29:33 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=90ea6199755e6300f0402c2a08ed437a0a73001e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:27:e6:c0:50:24:19:4d:fe:c9:b1:8b:8a:3f:
5f:45:69:19:f5:37:8d:2b:7c:60:e7:2a:f7:43:93:
3b:a3:02:fd:4c:2b:43:01:88:58:5c:18:78:c4:6f:
d2:f7:d9:4c:5b:b1:4d:e3:dc:ec:f2:43:91:f9:df:
b3:dd:54:9f:24:53:0c:36:5f:6a:c0:7a:91:58:52:
ac:3c:04:0f:88:63:fc:43:79:7d:a0:6d:56:a3:cd:
67:ca:e9:06:52:4e:a3:03:72:41:0f:85:b9:78:1e:
f0:b1:16:1f:6a:e6:1a:23:5c:e0:3d:70:b9:c4:94:
3f:58:ee:c1:d1:6c:54:a8:32:6c:2f:f8:05:e5:18:
fc:e4:88:73:ab:86:7b:dc:06:22:3b:01:82:a7:85:
25:0b:5c:21:eb:b5:7a:90:46:5b:11:8c:24:25:6d:
f7:1f:cf:9f:b2:36:27:fc:f5:94:28:a3:fe:7c:49:
86:47:ee:a5:9e:01:36:6f:01:a5:8c:40:39:ff:f9:
48:53:09:41:fc:d8:4a:c7:09:98:a4:81:33:ab:b4:
df:e1:12:a0:da:de:ab:97:99:88:d5:56:c3:3a:74:
ca:2f:76:58:26:c4:25:03:a9:ff:fb:38:5a:da:5e:
f7:68:bd:39:54:95:c4:1d:04:c1:bc:42:8a:48:36:
eb:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:EA:61:99:75:5E:63:00:F0:40:2C:2A:08:ED:43:7A:0A:73:00:1E
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/6d2a8f-cf90-46fb-8259-c39808d03a18/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/6d2a8f-cf90-46fb-8259-c39808d03a18/1/kOphmXVeYwDwQCwqCO1DegpzAB4.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.127.16.0/21
109.68.216.0/21
IPv6:
2a00:1b28::/32
Signature Algorithm: sha256WithRSAEncryption
6d:a6:e7:ff:4d:cb:57:20:f0:68:ae:b8:86:fe:69:ee:61:c7:
b2:68:34:d2:2e:fe:f3:68:63:7d:ae:d9:1a:eb:d2:5d:79:01:
86:f0:21:d5:b9:75:29:f7:27:0f:c1:f5:d6:4b:32:74:d3:ca:
57:a7:1c:f2:42:25:a9:d2:b4:9a:0c:46:16:0f:88:1a:97:b4:
3c:44:cd:16:dc:19:77:6e:09:8a:3e:eb:dc:e3:04:8f:be:89:
d1:2d:3f:b2:44:bc:a2:a0:65:cd:0a:c6:21:00:ce:e9:dd:2c:
41:f2:0f:e1:ae:d3:15:71:67:58:4d:ab:29:5b:0a:c6:90:2d:
b2:3b:1f:41:23:7a:2b:6c:a9:12:73:4b:a8:b4:92:68:02:3e:
be:c4:e5:33:f7:49:32:ac:d8:f3:0f:61:83:84:55:fd:74:b3:
43:ac:b2:42:1e:5d:80:e2:d1:97:ef:6a:d2:42:26:b0:26:a3:
11:6d:8b:25:ce:1b:3c:df:5d:e4:c6:b6:be:19:44:6b:47:7b:
a9:ed:35:82:5a:59:ea:aa:c9:f5:8c:48:31:70:89:5c:ee:e9:
09:92:fe:28:c7:5d:0a:b4:7a:09:cf:2a:de:9a:01:00:7f:4e:
c5:a4:d3:4b:94:c2:9f:58:70:73:b6:e3:25:18:c8:17:17:b2:
e3:78:37:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 12:00:09 2024 by rpki-client on console-ams.rpki-client.org