Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/l8OiXUi_gek3G3sOuGjV2i2rkZU.cer
File: l8OiXUi_gek3G3sOuGjV2i2rkZU.cer (raw, json)
Hash identifier: tshkwWjim66/wOtXRSn5m4Rf4fySAOfQs3gEmwioO18=
Subject key identifier: 97:C3:A2:5D:48:BF:81:E9:37:1B:7B:0E:B8:68:D5:DA:2D:AB:91:95
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0194221FC6C3B891D5A80734222CF99ACE8A
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/ff/6c992b-bcdd-4203-b524-81a2fc0a0687/1/l8OiXUi_gek3G3sOuGjV2i2rkZU.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/ff/6c992b-bcdd-4203-b524-81a2fc0a0687/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 13:48:15 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 216398
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 21:14:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:1f:c6:c3:b8:91:d5:a8:07:34:22:2c:f9:9a:ce:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 13:48:15 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=97c3a25d48bf81e9371b7b0eb868d5da2dab9195
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:6a:ed:5b:b7:fd:c7:7b:1c:ec:23:27:2c:c9:
4e:b2:44:0d:c9:10:c6:06:d2:bc:0b:0d:e1:24:48:
55:2a:2b:5a:6b:17:37:f0:9c:e6:10:63:df:34:36:
7f:91:3a:2e:e7:f2:4f:46:7b:50:fa:5e:d8:21:92:
2b:f5:19:56:1a:54:85:56:e3:57:6b:55:85:cd:52:
ca:7a:1f:9c:22:da:39:a3:b8:8e:f9:54:1f:14:7a:
a2:e5:f6:40:73:27:b6:b2:db:61:38:0f:70:3a:f0:
22:01:0d:f7:67:23:2a:da:54:05:10:93:fe:54:3f:
2b:0a:bc:57:d1:9a:b0:8f:99:b3:a5:7a:f3:80:30:
d0:96:f7:86:2b:52:0f:8e:2d:cf:b4:ac:50:50:d2:
b2:ad:1a:ec:13:fd:54:23:ae:6b:c7:fa:76:de:28:
3b:63:a7:3e:4c:ae:77:94:86:28:bd:04:cd:56:6f:
13:52:3e:06:17:1a:a0:d2:f3:ce:e3:c1:d9:d8:d7:
75:0e:0c:4d:82:ab:74:68:8a:30:a2:8a:3d:f9:5a:
4b:44:f6:d0:d2:47:e7:76:ff:62:39:fa:89:21:b6:
df:04:96:a3:c1:0e:b9:47:0d:d7:82:89:7b:a5:22:
d3:e9:40:f3:92:21:ef:d8:0e:ee:d1:17:f5:4f:d3:
44:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:C3:A2:5D:48:BF:81:E9:37:1B:7B:0E:B8:68:D5:DA:2D:AB:91:95
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/6c992b-bcdd-4203-b524-81a2fc0a0687/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/6c992b-bcdd-4203-b524-81a2fc0a0687/1/l8OiXUi_gek3G3sOuGjV2i2rkZU.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
216398
Signature Algorithm: sha256WithRSAEncryption
11:27:15:03:a4:6a:82:42:cb:f5:10:6d:f7:20:77:0a:64:87:
38:be:ab:e6:06:ad:45:de:3a:8c:23:97:11:17:28:24:b8:dd:
f1:33:eb:80:a8:76:7f:9f:29:68:66:3c:fc:ef:71:95:55:0a:
6f:02:aa:66:67:f8:85:5e:b1:66:c0:26:aa:02:6e:7f:03:3c:
5f:4a:7e:e0:6f:96:64:3a:cb:26:7a:e5:ea:ed:59:9f:7a:b0:
64:83:53:6d:98:4c:5d:1b:e7:92:b1:fb:6b:59:b3:fa:f5:2d:
cf:22:f5:95:55:0a:f1:fe:d1:32:66:2c:d9:34:eb:7b:4c:7b:
08:8f:12:f3:69:3f:45:4e:89:1e:cc:7e:f1:32:a0:ad:78:9f:
4d:1d:6e:cf:9e:63:1a:9e:c9:d5:6a:d5:3a:e7:49:92:9c:b6:
c9:1e:01:37:80:86:74:36:c3:60:07:4a:c1:99:31:25:4d:56:
c7:41:d2:11:0c:70:5c:37:3e:6e:4d:1c:05:c3:bf:57:6c:86:
b3:b2:c6:12:17:8b:21:88:a4:3e:71:87:b0:3d:38:ce:75:9b:
ae:1d:40:27:c9:6e:ec:03:82:0f:43:f8:c8:ce:c1:76:4f:90:
de:63:b6:26:1f:10:f3:ac:a9:ef:89:8d:ed:4e:63:41:b0:ca:
46:11:75:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 03:43:49 2025 by rpki-client