Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/mQRCuMDNHdU1vq5yuU3TX5JyA40.cer
File: mQRCuMDNHdU1vq5yuU3TX5JyA40.cer (raw, json)
Hash identifier: s9Zov/BKFpG30yM8lveMexmlDx6ITzl2u6QuoY3j2S0=
Subject key identifier: 99:04:42:B8:C0:CD:1D:D5:35:BE:AE:72:B9:4D:D3:5F:92:72:03:8D
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC26D58124A91F9F9C69FB533B158D778
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/ca/15ecde-4038-4b46-893c-84cad7a6e5cb/1/mQRCuMDNHdU1vq5yuU3TX5JyA40.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/ca/15ecde-4038-4b46-893c-84cad7a6e5cb/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 00:29:55 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 216191
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:6d:58:12:4a:91:f9:f9:c6:9f:b5:33:b1:58:d7:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 00:29:55 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=990442b8c0cd1dd535beae72b94dd35f9272038d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:d9:e0:8a:34:30:63:b7:7f:11:89:22:5e:bd:
d5:55:38:6b:98:70:fe:a4:30:6c:ef:5e:c8:b0:17:
a4:8b:98:b7:92:4f:7a:28:51:63:24:a0:da:a6:4b:
10:ea:9d:df:37:af:7f:94:05:c5:1b:56:c5:25:12:
3d:ad:76:09:90:2e:a0:05:2e:d7:3d:26:f9:93:33:
c1:2b:c2:98:e5:6d:c2:87:76:83:23:03:ea:2e:17:
32:86:6e:93:8b:15:d9:b5:fd:44:6e:b7:12:c6:a3:
3c:1e:90:8b:b8:d2:08:51:b2:69:80:9a:49:87:87:
91:50:1d:76:d8:8b:a9:a2:11:f0:22:82:db:57:ce:
75:7f:2c:9f:ae:f0:e3:61:8f:4f:30:16:e8:a5:71:
78:ae:58:fe:7f:f0:2e:a1:7f:81:df:88:b3:21:6c:
f2:3a:1a:c8:a0:d2:ed:f5:41:67:3a:4b:c2:9d:0f:
2d:b6:de:4b:6b:a1:35:87:33:4e:8a:0c:21:1b:fa:
ef:ff:4a:56:1b:36:05:c8:1f:4f:c2:fa:43:45:4f:
85:0a:16:15:0d:30:f3:74:59:30:56:2e:05:5b:f8:
9d:2b:fc:17:76:75:32:c7:29:8d:2f:f0:aa:39:f5:
1e:e8:8d:86:5d:c1:c9:b8:8e:fe:b2:83:7c:64:c1:
2d:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:04:42:B8:C0:CD:1D:D5:35:BE:AE:72:B9:4D:D3:5F:92:72:03:8D
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/15ecde-4038-4b46-893c-84cad7a6e5cb/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/15ecde-4038-4b46-893c-84cad7a6e5cb/1/mQRCuMDNHdU1vq5yuU3TX5JyA40.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
216191
Signature Algorithm: sha256WithRSAEncryption
a5:79:50:fd:9c:31:fc:65:08:a9:ce:bb:3e:05:06:cb:37:22:
06:bc:8f:ac:d1:c9:91:b3:7a:72:4a:0e:0e:bf:98:1d:94:fe:
13:4e:28:76:58:7f:13:da:d7:57:93:14:60:f8:29:51:5c:d9:
bc:33:c0:92:70:cc:4c:32:34:3d:1a:4b:32:b7:7b:87:34:4f:
63:96:79:de:7e:fd:87:ab:4e:6f:6c:d9:ab:5e:10:ee:99:cc:
c6:bc:75:af:3b:ce:29:77:6f:7d:8d:7f:41:3d:13:d6:47:2b:
0d:58:43:5b:14:3d:b2:f5:e9:fa:22:4c:00:61:a4:3f:8b:74:
00:c8:e7:f1:a5:fe:b1:3b:c6:18:26:64:78:bd:42:3e:ea:da:
21:f9:e9:a9:1e:35:da:13:26:2c:a7:85:c0:fc:32:2a:8f:98:
84:27:8e:c3:7e:71:f8:9f:36:0e:ef:15:02:ff:4e:d6:8f:6c:
33:25:ee:e3:0e:ef:7c:5f:4b:92:71:f2:b9:78:e7:ab:99:41:
7c:8c:ce:50:99:8e:69:93:52:a8:b6:6e:7d:78:13:fd:7d:03:
ee:51:29:34:da:02:f9:7c:27:05:7d:fd:85:39:3f:02:23:55:
36:63:eb:8e:ec:a2:1a:49:39:e6:c7:5a:d8:f6:e8:93:ac:05:
ec:0d:78:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 09:39:03 2024 by rpki-client on console-ams.rpki-client.org