Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/nPMilEsEi3BX5F7SyzQbVg4KxsM.cer
File: nPMilEsEi3BX5F7SyzQbVg4KxsM.cer (raw, json)
Hash identifier: 3RxTp0kNgQk/i7aa67GhRlsrQ7lOlZb8M4bSrGdPNqw=
Subject key identifier: 9C:F3:22:94:4B:04:8B:70:57:E4:5E:D2:CB:34:1B:56:0E:0A:C6:C3
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC5DCF2050D9E1193618880E988851AF6
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/fd/fad06c-f368-46ab-ae79-b3c5c0933d97/1/nPMilEsEi3BX5F7SyzQbVg4KxsM.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/fd/fad06c-f368-46ab-ae79-b3c5c0933d97/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 16:30:40 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 57149
IP: 91.229.2.0/24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:dc:f2:05:0d:9e:11:93:61:88:80:e9:88:85:1a:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 16:30:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9cf322944b048b7057e45ed2cb341b560e0ac6c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:d3:a2:c9:8a:eb:f2:bb:b1:6b:9f:88:de:80:
bb:9a:60:f2:a5:b5:68:42:c4:69:f4:83:84:97:17:
04:5c:cc:bd:b4:a2:3f:dd:64:ac:f8:59:99:ed:64:
d1:69:24:a3:91:51:b0:2b:13:79:0a:4c:3f:28:16:
21:e0:ba:57:03:91:d9:34:69:7f:35:26:e2:05:14:
90:68:9a:91:f4:b2:21:3d:76:14:e5:12:5b:4f:00:
ac:f9:b6:c6:ee:ef:3e:94:3e:2d:3a:d6:26:1d:2e:
80:b3:7e:d0:9d:c7:9d:0d:77:03:89:c0:38:30:3c:
c5:27:37:1f:33:e1:2e:5e:45:19:7c:72:72:bb:c9:
45:c8:72:06:e6:5e:8a:dd:24:0a:f0:25:35:c6:b2:
07:9a:33:50:f9:21:05:df:d2:07:89:04:ef:3f:25:
79:e8:02:54:1b:fb:25:53:a6:5c:aa:e2:fa:72:67:
11:7d:b1:7d:ee:2c:1d:fd:cd:fc:4a:b9:44:e5:4b:
b5:fb:d6:a9:84:fc:42:54:ef:27:dc:9a:01:ad:ff:
be:62:93:f8:6a:54:48:af:f6:9d:66:7a:bd:55:ff:
3f:99:63:f5:39:24:b9:b2:86:34:8c:e5:b1:a6:03:
65:b2:0c:41:55:86:8d:1a:80:c9:8e:39:08:0b:a4:
bc:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:F3:22:94:4B:04:8B:70:57:E4:5E:D2:CB:34:1B:56:0E:0A:C6:C3
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/fad06c-f368-46ab-ae79-b3c5c0933d97/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/fad06c-f368-46ab-ae79-b3c5c0933d97/1/nPMilEsEi3BX5F7SyzQbVg4KxsM.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.229.2.0/24
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
57149
Signature Algorithm: sha256WithRSAEncryption
55:0b:c2:7d:06:8a:4b:2e:67:97:23:a9:ad:86:34:cb:33:b2:
67:61:30:b9:9f:39:37:d9:8e:17:92:4a:84:4f:3c:8b:b7:03:
20:64:88:2a:d0:6b:57:b5:1c:ba:5b:8c:cb:4c:85:f9:b6:db:
db:78:79:69:3a:26:87:85:4d:30:0d:d6:d8:47:03:e0:9f:52:
29:68:32:65:d5:98:c9:8b:29:57:6b:8a:45:ef:e3:36:fe:83:
dc:ad:b1:41:12:4b:de:a4:aa:43:bd:71:ce:9e:e6:9d:7a:78:
29:b8:89:b8:a2:da:d3:0d:e6:1a:9e:13:43:74:d4:24:91:20:
3e:d8:c9:63:6f:7c:36:d9:59:e3:bd:01:eb:bc:9e:df:f0:f2:
41:27:09:66:b0:f7:76:bc:07:90:22:bc:80:b1:23:d7:fa:97:
32:3a:56:c3:1b:9c:87:80:91:fb:92:ad:ac:b1:fb:90:27:ff:
93:8f:66:4b:e5:55:54:8c:6b:29:73:c8:78:97:cc:37:a9:df:
fa:6a:4b:93:7c:b9:61:23:83:92:81:cc:80:37:87:8b:da:ee:
16:9d:b2:fe:8a:bb:f9:cf:0e:20:8a:cc:b4:71:87:e3:75:4d:
eb:29:2e:99:ab:80:71:85:58:9c:60:06:49:7c:ac:c3:94:94:
af:11:58:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 07:29:01 2024 by rpki-client on console-ams.rpki-client.org