Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/lmXIEQ0N2Gp-uwk4qjLgnR2xIvY.cer
File: lmXIEQ0N2Gp-uwk4qjLgnR2xIvY.cer (raw, json)
Hash identifier: MnRbbzuWRJGojnykQc8Z+uCyxBgMFKUtblegvgxrfoU=
Subject key identifier: 96:65:C8:11:0D:0D:D8:6A:7E:BB:09:38:AA:32:E0:9D:1D:B1:22:F6
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC42512489DC6DC9D875E0AE1E8AF93D9
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/7c/fa81f4-6600-4079-93c5-4897261ba46b/1/lmXIEQ0N2Gp-uwk4qjLgnR2xIvY.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/7c/fa81f4-6600-4079-93c5-4897261ba46b/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 08:30:13 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 210466
IP: 2001:67c:2b64::/48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:25:12:48:9d:c6:dc:9d:87:5e:0a:e1:e8:af:93:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 08:30:13 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9665c8110d0dd86a7ebb0938aa32e09d1db122f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:4d:3a:16:78:cb:40:36:b3:ec:c0:fb:d7:66:
bd:3e:95:55:fc:7c:56:98:41:43:25:e4:1f:bc:71:
a6:6c:9f:97:b3:ed:ec:7e:60:2a:bb:cd:93:41:2a:
54:33:ab:4d:29:de:9a:45:0e:40:a9:01:35:a7:fc:
4d:f4:1a:ee:c5:21:29:49:9f:39:db:fb:88:91:1f:
3b:38:e6:99:04:2e:2a:67:56:6f:c7:95:ad:ae:29:
e5:0a:3d:30:64:62:49:dd:f7:35:82:e4:4c:78:3d:
b6:3c:b9:e9:6f:08:2b:06:c8:11:81:34:9e:22:b6:
cc:23:66:ab:fd:0d:a8:3b:3d:39:63:43:c6:c4:b9:
39:82:b3:6a:5d:d5:74:46:33:f6:23:fe:62:64:f2:
20:75:0e:ba:93:49:23:a3:d1:c3:e7:2a:0e:f7:3d:
65:a4:7a:7e:d6:d8:95:94:77:be:66:fb:8e:b1:48:
8d:c1:61:e3:04:5a:47:10:29:c4:5b:68:ef:0c:f6:
e7:d6:1f:d2:2a:62:ed:e1:91:ab:25:82:12:d1:67:
25:51:f1:03:7f:01:69:af:95:c1:72:cf:06:10:23:
02:9f:07:5f:e2:78:68:b5:1f:0e:fa:ee:47:10:45:
26:c3:78:24:86:e2:7b:46:16:c6:4e:dd:5f:43:1e:
e0:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:65:C8:11:0D:0D:D8:6A:7E:BB:09:38:AA:32:E0:9D:1D:B1:22:F6
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/fa81f4-6600-4079-93c5-4897261ba46b/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/fa81f4-6600-4079-93c5-4897261ba46b/1/lmXIEQ0N2Gp-uwk4qjLgnR2xIvY.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:2b64::/48
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
210466
Signature Algorithm: sha256WithRSAEncryption
80:0f:58:f7:2f:fb:8e:c8:bd:a3:b7:27:84:05:18:56:4a:23:
58:80:53:23:0a:dc:ee:c3:03:bb:b5:39:46:10:32:4b:12:c2:
d3:2d:4a:ca:f2:b1:39:68:c2:7d:93:e2:b8:06:30:70:50:cb:
ab:3e:9f:7a:c0:95:3b:60:e5:0e:48:6c:35:89:bd:7a:fa:d1:
76:21:d6:a5:1b:33:1d:1d:2b:48:99:b0:a9:3b:d2:ab:c2:ef:
70:a3:72:d5:a8:5c:2d:64:17:9d:6f:a6:78:f7:e1:7e:6b:fd:
ce:32:f5:ca:e6:03:60:ca:d5:5b:2f:28:a7:ca:7d:a4:17:04:
2f:f7:fa:08:5a:3f:6d:93:91:e0:55:1f:71:af:f4:63:a7:3c:
3b:38:48:c3:8e:ec:8b:b1:54:5d:b8:6e:36:51:df:55:56:5e:
3a:7a:9f:17:f6:38:fe:af:5d:4c:86:2b:b1:75:ae:0f:c1:52:
a6:6e:79:51:37:5c:00:fe:4a:df:5e:cd:00:eb:5f:2d:d5:5b:
3e:61:61:be:43:23:86:de:66:85:c2:68:0c:84:60:c4:17:25:
c6:e1:64:67:09:8a:2a:5c:42:42:56:ac:b3:e9:74:8c:53:72:
71:43:e3:06:5a:68:21:ef:c8:bf:1d:29:a7:22:96:90:9a:8f:
a1:3c:3f:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 18:30:21 2024 by rpki-client on console-fra.rpki-client.org