Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/nQp0muJcHLtlhx1BanmrSohKxGg.cer
File: nQp0muJcHLtlhx1BanmrSohKxGg.cer (raw, json)
Hash identifier: ovb/xWj2KW3VVoLZYkwmYOzPfL9yo6biirTrFhdUZ1A=
Subject key identifier: 9D:0A:74:9A:E2:5C:1C:BB:65:87:1D:41:6A:79:AB:4A:88:4A:C4:68
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC424558AD42763E1E047EA5E77FE5566
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/d5/85d0a7-d802-41c4-81af-1a6d3c99dc48/1/nQp0muJcHLtlhx1BanmrSohKxGg.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/d5/85d0a7-d802-41c4-81af-1a6d3c99dc48/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 08:29:24 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 35266
IP: 46.30.8.0/21
IP: 185.81.188.0/22
IP: 2a01:b000::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:24:55:8a:d4:27:63:e1:e0:47:ea:5e:77:fe:55:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 08:29:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9d0a749ae25c1cbb65871d416a79ab4a884ac468
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:9e:20:a6:d2:a4:f5:54:27:c3:b3:f3:e3:e5:
59:6a:8c:4f:c6:e0:00:4f:d5:17:e5:fb:81:f7:33:
b9:e9:32:00:8c:c7:07:56:07:fb:e1:6e:0b:80:e4:
42:ea:b9:00:23:41:05:ee:66:a1:dd:38:fd:db:d9:
ce:22:20:a8:ab:58:64:56:05:dc:51:49:19:f4:16:
ea:3d:01:bd:92:60:91:46:8e:b7:b4:2d:c5:3b:94:
a1:de:87:17:65:af:46:26:8d:6a:b4:c7:6a:13:2d:
10:18:e9:8c:68:4d:a9:83:8e:c8:06:fa:bc:6e:c4:
e8:b4:73:b1:25:43:b1:32:fc:6d:9f:1e:66:d5:de:
90:f2:f1:1f:7a:4b:37:12:52:c5:8d:86:3f:06:00:
2a:c4:62:bd:f6:d5:95:ae:e7:60:d4:52:18:39:05:
55:5d:59:ce:39:04:99:46:f5:ce:97:ed:0d:43:2a:
bc:47:d9:a4:15:6f:ca:b2:3d:bb:c4:e8:28:dd:f3:
6e:60:0f:af:c3:6b:7e:ff:09:96:2f:84:c2:36:40:
d8:7e:b3:c7:9c:df:41:6b:5c:ae:ae:2a:4e:6b:5d:
ea:7e:d5:dc:7f:c8:5f:84:7c:28:dd:4a:28:19:7a:
c9:6c:91:b3:f5:cc:6a:87:ef:3c:33:cf:85:4c:55:
c4:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:0A:74:9A:E2:5C:1C:BB:65:87:1D:41:6A:79:AB:4A:88:4A:C4:68
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/85d0a7-d802-41c4-81af-1a6d3c99dc48/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/85d0a7-d802-41c4-81af-1a6d3c99dc48/1/nQp0muJcHLtlhx1BanmrSohKxGg.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.30.8.0/21
185.81.188.0/22
IPv6:
2a01:b000::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
35266
Signature Algorithm: sha256WithRSAEncryption
81:22:f1:2e:fd:e5:81:0b:1f:08:f6:23:88:12:05:0d:36:ea:
4f:b7:96:92:28:f6:cb:18:71:2d:45:0d:b5:01:eb:b5:1e:93:
04:3b:3c:4f:66:fd:22:1f:8f:de:67:75:33:33:54:44:f2:dd:
c7:90:f4:f7:ef:10:c1:d2:58:46:3c:78:3a:4a:1a:33:28:82:
ec:77:56:dc:bb:f0:e5:f2:64:57:e7:03:13:38:1a:37:11:15:
f5:67:28:50:99:02:b0:3a:f7:1d:fc:31:44:0d:5d:ee:ad:d1:
b3:c2:4d:4e:2a:ed:5d:49:43:f6:92:e3:3a:f9:86:66:da:97:
b6:37:b9:26:3d:c2:19:d2:46:ab:3e:0d:b0:66:80:cc:76:03:
0f:9d:8c:cb:a2:97:d0:15:6c:ad:06:c4:d4:62:d8:9b:b1:b9:
fe:23:5d:5f:43:90:6c:52:ee:2e:5d:82:5a:ba:7e:83:07:12:
7a:27:f6:ab:55:0c:07:1b:3f:d5:39:b2:2d:11:05:cf:55:1e:
e5:0a:e0:f0:f4:99:a5:c4:cb:ac:62:1a:32:7e:8c:7d:b1:a3:
bd:99:fb:62:9d:5f:e8:db:39:94:0f:25:a4:1e:e0:8d:a7:fa:
fd:ab:11:e3:dc:ae:b1:18:be:7a:5c:90:11:a3:9c:9e:71:0e:
ab:50:83:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 03:41:48 2024 by rpki-client on console-fra.rpki-client.org