Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/l8OiXUi_gek3G3sOuGjV2i2rkZU.cer
File: l8OiXUi_gek3G3sOuGjV2i2rkZU.cer (raw, json)
Hash identifier: Ej3MAI1xwu6rev4C7WUamHpKBtUKPnR2TIXMoBC39Hs=
Subject key identifier: 97:C3:A2:5D:48:BF:81:E9:37:1B:7B:0E:B8:68:D5:DA:2D:AB:91:95
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC493581172C3ECCEC928EE58A31165AA
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/ff/6c992b-bcdd-4203-b524-81a2fc0a0687/1/l8OiXUi_gek3G3sOuGjV2i2rkZU.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/ff/6c992b-bcdd-4203-b524-81a2fc0a0687/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 10:30:39 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 216398
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:93:58:11:72:c3:ec:ce:c9:28:ee:58:a3:11:65:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 10:30:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=97c3a25d48bf81e9371b7b0eb868d5da2dab9195
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:6a:ed:5b:b7:fd:c7:7b:1c:ec:23:27:2c:c9:
4e:b2:44:0d:c9:10:c6:06:d2:bc:0b:0d:e1:24:48:
55:2a:2b:5a:6b:17:37:f0:9c:e6:10:63:df:34:36:
7f:91:3a:2e:e7:f2:4f:46:7b:50:fa:5e:d8:21:92:
2b:f5:19:56:1a:54:85:56:e3:57:6b:55:85:cd:52:
ca:7a:1f:9c:22:da:39:a3:b8:8e:f9:54:1f:14:7a:
a2:e5:f6:40:73:27:b6:b2:db:61:38:0f:70:3a:f0:
22:01:0d:f7:67:23:2a:da:54:05:10:93:fe:54:3f:
2b:0a:bc:57:d1:9a:b0:8f:99:b3:a5:7a:f3:80:30:
d0:96:f7:86:2b:52:0f:8e:2d:cf:b4:ac:50:50:d2:
b2:ad:1a:ec:13:fd:54:23:ae:6b:c7:fa:76:de:28:
3b:63:a7:3e:4c:ae:77:94:86:28:bd:04:cd:56:6f:
13:52:3e:06:17:1a:a0:d2:f3:ce:e3:c1:d9:d8:d7:
75:0e:0c:4d:82:ab:74:68:8a:30:a2:8a:3d:f9:5a:
4b:44:f6:d0:d2:47:e7:76:ff:62:39:fa:89:21:b6:
df:04:96:a3:c1:0e:b9:47:0d:d7:82:89:7b:a5:22:
d3:e9:40:f3:92:21:ef:d8:0e:ee:d1:17:f5:4f:d3:
44:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:C3:A2:5D:48:BF:81:E9:37:1B:7B:0E:B8:68:D5:DA:2D:AB:91:95
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/6c992b-bcdd-4203-b524-81a2fc0a0687/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/6c992b-bcdd-4203-b524-81a2fc0a0687/1/l8OiXUi_gek3G3sOuGjV2i2rkZU.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
216398
Signature Algorithm: sha256WithRSAEncryption
96:97:16:b5:3e:c2:cd:0b:bf:e1:f1:06:ac:bf:11:a2:4a:97:
8f:7c:71:7a:e0:91:3c:4b:ff:68:f0:a5:f5:f0:16:7f:d5:09:
98:4c:01:07:64:74:e4:fd:9e:82:62:94:bb:0c:b4:8a:44:59:
86:f7:45:cc:54:82:26:ad:25:75:c1:eb:fe:29:13:d8:1b:c4:
3f:94:01:17:2f:7b:c5:8a:bc:9e:a2:d6:55:98:d4:29:32:bf:
a5:87:b2:d8:c2:6b:78:41:5e:a3:5b:f8:1d:cc:1d:9b:a0:75:
c6:80:ad:6c:c9:1c:c8:78:9e:f2:92:56:c0:92:76:05:5f:b6:
ca:bb:a1:95:14:50:4d:9b:2a:71:ba:6a:ac:11:9d:17:99:6e:
94:35:29:db:01:37:3e:70:d1:fa:6f:49:7b:b8:06:3e:87:eb:
c0:7d:f4:5f:f5:b0:23:97:fc:82:64:b8:9a:9b:d3:bb:fa:01:
11:c4:05:82:cf:fd:f0:00:6d:4a:75:bc:dc:7d:a1:12:3b:b4:
eb:69:a3:2b:e1:64:cd:ae:46:2b:e8:eb:8e:cc:c9:91:ff:15:
6e:bc:4c:c6:34:fb:e0:d5:7c:3f:4e:fe:5f:65:2e:c8:16:fb:
a5:57:62:e9:ea:20:5a:3a:ea:79:74:86:8b:1f:e9:22:6e:eb:
0a:23:eb:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 02:12:09 2024 by rpki-client on console-ams.rpki-client.org