Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/l49B4pAoVHPCoeK-f2b2NFLtRkQ.cer
File: l49B4pAoVHPCoeK-f2b2NFLtRkQ.cer (raw, json)
Hash identifier: GR62Bsi1/8/VmPpUaIwd8tkzPxFuAAxxZHzwwd0NeE8=
Subject key identifier: 97:8F:41:E2:90:28:54:73:C2:A1:E2:BE:7F:66:F6:34:52:ED:46:44
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC3495182C40C461BB8E65DD751CC2AF7
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/79/f1480f-76e9-4c8e-ac32-3577b1efdc78/1/l49B4pAoVHPCoeK-f2b2NFLtRkQ.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/79/f1480f-76e9-4c8e-ac32-3577b1efdc78/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 04:30:11 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 39452
IP: 89.150.0.0/23
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:49:51:82:c4:0c:46:1b:b8:e6:5d:d7:51:cc:2a:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 04:30:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=978f41e290285473c2a1e2be7f66f63452ed4644
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:91:fc:5b:14:65:cb:d2:73:65:e5:ca:e0:6b:
e8:e1:a4:32:5c:d0:54:c1:27:cf:5e:1e:11:98:10:
a0:99:6d:9e:84:ec:92:20:d1:c9:7a:d8:eb:b7:90:
db:73:50:b1:4d:3b:29:4e:6a:48:fc:3a:96:5f:7f:
85:8d:0d:8f:ca:67:02:c0:df:44:ec:37:bf:bd:3e:
61:8c:1f:80:e4:2b:ac:3f:83:a4:64:ee:c2:08:c7:
4d:cf:00:45:68:20:2e:0e:68:87:89:d3:0c:66:47:
d8:a1:ab:76:56:6e:bb:e3:3a:3b:65:cc:3e:a4:f8:
ac:64:6d:81:a4:01:97:82:ed:54:f7:81:1f:6e:8c:
87:cd:e7:2f:07:66:6c:91:a8:5b:7d:d1:c7:70:88:
e5:74:1d:db:aa:ce:c3:bf:35:17:f1:58:a4:1d:5e:
77:00:be:d2:5d:e8:04:9a:8b:c8:50:82:a3:17:f0:
0c:36:ab:96:78:bc:0d:f1:6d:82:f0:1b:44:20:f1:
30:54:e9:06:bc:22:ff:51:10:96:8a:8d:6c:2e:93:
c5:41:7e:b9:31:16:58:6a:b6:e5:f9:8d:98:23:68:
02:0b:a1:9c:fb:13:e6:2c:28:a5:e1:ab:31:d3:ed:
26:6e:83:bc:6c:ff:0f:06:5c:f5:47:fe:fb:c3:2f:
0f:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:8F:41:E2:90:28:54:73:C2:A1:E2:BE:7F:66:F6:34:52:ED:46:44
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/f1480f-76e9-4c8e-ac32-3577b1efdc78/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/f1480f-76e9-4c8e-ac32-3577b1efdc78/1/l49B4pAoVHPCoeK-f2b2NFLtRkQ.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.150.0.0/23
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
39452
Signature Algorithm: sha256WithRSAEncryption
8c:a6:7b:98:79:43:d2:ef:d3:a1:25:00:52:1b:50:77:2f:94:
10:3f:41:b1:17:65:99:5c:c9:0b:2c:e9:05:bd:33:95:50:84:
49:2e:3d:0f:75:d5:cd:f3:24:83:6a:e2:6d:4d:0e:ed:80:73:
ee:05:48:ce:c4:07:ae:60:83:2f:cd:92:ac:58:c3:52:08:f4:
7a:cd:a2:1f:0d:02:93:46:88:ad:78:b2:36:85:63:f4:d9:9b:
f8:ce:22:1d:9f:df:a5:8d:c9:c3:db:67:86:42:1e:d5:3f:1c:
a9:c1:48:27:e5:e5:56:11:63:b9:43:c9:ec:ae:43:b9:83:dd:
96:84:4d:36:b8:27:80:b8:dc:6c:e9:62:45:7d:4a:a2:79:33:
53:d5:9f:b2:9f:bf:a1:2f:f8:f9:72:4c:aa:59:50:14:db:c5:
5f:1a:e1:a4:c5:c9:97:84:90:60:89:a9:dc:56:05:bc:a1:e2:
f7:f4:75:03:cd:b5:88:e7:42:25:89:36:4f:15:a5:c2:a9:8e:
ec:3b:85:54:5b:e8:2f:3b:cf:88:2a:10:26:66:9a:6d:fa:79:
e6:96:b9:33:7c:75:3e:55:04:4f:b9:1e:49:73:2b:62:59:af:
8c:b9:b7:e6:6d:7f:ee:d3:88:b4:1c:dc:52:f2:3d:df:38:42:
86:42:f4:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 10:55:34 2024 by rpki-client on console-fra.rpki-client.org