Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/lJQumzXZGQbREkXXO9WM3Y7KSdE.cer
File: lJQumzXZGQbREkXXO9WM3Y7KSdE.cer (raw, json)
Hash identifier: s/TRF/z6sD9btB4puOF3Bb0R2mmoreaT+G92YCxNyQ4=
Subject key identifier: 94:94:2E:9B:35:D9:19:06:D1:12:45:D7:3B:D5:8C:DD:8E:CA:49:D1
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC87127B6F4EB2951C2D70B5E46816B8C
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/d1/c60980-a1de-4390-a0a3-32c20caf08ed/1/lJQumzXZGQbREkXXO9WM3Y7KSdE.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/d1/c60980-a1de-4390-a0a3-32c20caf08ed/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 04:31:48 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 47469
IP: 194.50.45.0/24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:71:27:b6:f4:eb:29:51:c2:d7:0b:5e:46:81:6b:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 04:31:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=94942e9b35d91906d11245d73bd58cdd8eca49d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:29:c3:0b:24:88:d2:bd:01:0b:e0:81:4b:21:
07:ec:5c:07:be:76:5b:5b:7a:5f:6e:35:90:d0:3a:
65:09:40:17:5a:0c:1c:d9:72:a3:99:a0:f6:74:f4:
60:e5:f7:d3:f5:6d:21:3e:ba:ab:51:17:73:e4:ec:
6c:d9:78:59:9f:b2:79:fd:83:76:a8:74:8f:2c:a4:
d8:7d:cc:b4:aa:2f:57:5d:92:52:04:b0:0b:c1:be:
5f:29:01:2c:f3:7f:8f:8a:7a:e2:19:b5:3d:89:f5:
f1:72:00:5d:19:26:9e:34:a8:7d:f9:98:76:a6:a8:
75:79:15:38:7d:59:7c:b4:88:48:28:e5:e7:2d:ba:
a9:80:82:71:db:88:33:54:52:f3:3c:b4:00:12:3f:
d3:6f:65:d6:1d:ff:bf:85:8b:ce:9c:b1:35:a4:9a:
b9:1a:34:6f:cf:fd:2b:ce:49:03:8a:aa:78:af:e5:
97:24:f3:90:b3:43:8a:06:2e:1e:71:06:06:ab:1b:
7f:8a:f3:42:63:8a:da:77:62:b6:6c:9f:c2:24:f3:
c2:16:11:51:92:5e:b9:46:de:0a:5d:49:61:6c:e4:
fc:d7:29:0d:6c:47:a5:fd:32:39:e6:0d:58:99:f1:
b0:77:2d:ae:82:f5:4c:02:65:b3:b5:17:b6:d6:c7:
ba:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:94:2E:9B:35:D9:19:06:D1:12:45:D7:3B:D5:8C:DD:8E:CA:49:D1
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/c60980-a1de-4390-a0a3-32c20caf08ed/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/c60980-a1de-4390-a0a3-32c20caf08ed/1/lJQumzXZGQbREkXXO9WM3Y7KSdE.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.50.45.0/24
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
47469
Signature Algorithm: sha256WithRSAEncryption
13:9e:fa:1d:85:57:44:3e:89:4e:7e:62:93:15:5e:46:88:12:
7a:6a:f0:3c:d4:f8:c8:8e:01:36:07:12:c1:3d:8c:47:dd:e5:
72:84:51:d0:05:80:c6:64:23:ac:df:6e:98:c7:d2:10:fc:8a:
dc:a6:9f:3b:34:09:83:71:96:b2:c9:ad:ad:fa:d7:19:52:7a:
fb:12:7f:48:5f:b2:15:20:6d:05:d2:94:2f:0d:a7:e6:d5:33:
03:dc:b2:a4:be:29:b4:17:69:e8:fc:eb:ff:d8:90:1e:08:12:
94:f8:8a:3e:b4:a2:dd:2e:97:c4:7a:53:4e:bc:2f:98:9d:79:
8e:39:57:1d:7c:12:03:d7:21:84:d9:8a:3b:29:db:0e:87:b1:
fb:0c:12:b3:e7:d1:9e:04:21:49:50:8a:36:ef:93:1a:c2:01:
d5:3b:7b:de:07:61:8d:85:ab:10:73:93:bd:50:31:d2:08:cb:
54:37:e5:ca:d0:72:20:c3:55:f2:6a:11:e2:01:49:7a:6c:42:
38:5c:a5:21:af:1a:ed:86:b4:ea:32:25:62:cb:58:03:ef:75:
10:c4:00:0b:f4:f3:5c:ea:20:19:d9:8a:14:78:ab:ae:dc:e0:
43:32:44:a0:d1:63:59:6c:58:d5:7b:10:8a:f7:82:ea:cb:f8:
1c:f6:ed:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 11:03:30 2024 by rpki-client on console-ams.rpki-client.org