Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/odmzW8Pp8kk8ZNBvWy1KmcXyUek.cer
File: odmzW8Pp8kk8ZNBvWy1KmcXyUek.cer (raw, json)
Hash identifier: 8YQSvy0iEQJ0r2OL447ampAmYGazDBADYsqfWLh55Q4=
Subject key identifier: A1:D9:B3:5B:C3:E9:F2:49:3C:64:D0:6F:5B:2D:4A:99:C5:F2:51:E9
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC2DAFEA73389C1A20634EA9BB9A3C895
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/cc/4656f7-0054-48d4-961a-6dbdec51168d/1/odmzW8Pp8kk8ZNBvWy1KmcXyUek.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/cc/4656f7-0054-48d4-961a-6dbdec51168d/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 02:29:41 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 39934
IP: 185.224.4.0/22
IP: 2a0c:b400::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:da:fe:a7:33:89:c1:a2:06:34:ea:9b:b9:a3:c8:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 02:29:41 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a1d9b35bc3e9f2493c64d06f5b2d4a99c5f251e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:ed:4c:1b:a7:df:09:a5:b0:8d:55:fa:54:f3:
24:3f:07:28:67:03:a9:95:c3:d0:03:7d:f2:5d:3b:
8f:99:08:c0:f7:de:88:45:21:64:f0:1f:7c:0e:56:
78:2a:04:a2:b6:b2:b1:07:d0:b5:26:43:3f:5f:e7:
31:0b:7a:4e:46:5b:dd:ef:d9:8c:e1:5f:73:cf:24:
16:da:c5:29:54:18:cb:84:39:73:c7:ac:06:77:3b:
ff:c3:d5:79:91:84:3b:81:10:f2:ec:b4:e7:ac:3a:
86:76:76:82:8a:2b:fe:de:2d:83:f8:e9:80:20:58:
16:16:fa:be:7c:83:8c:1e:80:06:ab:cb:bb:24:4d:
8a:e8:7a:46:a6:3b:a8:ae:45:10:47:3d:c2:fb:0b:
f1:8f:bb:30:fd:bb:b8:fe:d9:1a:6b:c0:a4:af:6a:
f6:f3:d5:ae:f0:f7:3b:57:e0:f4:c1:49:e0:5a:97:
3b:b8:d8:28:28:e8:ce:36:4a:91:d0:56:36:ab:92:
05:0f:60:21:0b:58:22:8b:ce:bb:6d:f4:be:42:ba:
e3:68:f2:f6:9a:10:57:cc:11:2e:ec:1b:4e:22:45:
cc:b4:85:2d:2c:98:ff:78:94:25:91:55:f4:a7:21:
36:35:0b:ff:32:cd:ca:c3:9c:81:03:53:d7:53:f5:
6e:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:D9:B3:5B:C3:E9:F2:49:3C:64:D0:6F:5B:2D:4A:99:C5:F2:51:E9
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/4656f7-0054-48d4-961a-6dbdec51168d/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/4656f7-0054-48d4-961a-6dbdec51168d/1/odmzW8Pp8kk8ZNBvWy1KmcXyUek.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.224.4.0/22
IPv6:
2a0c:b400::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
39934
Signature Algorithm: sha256WithRSAEncryption
63:1a:0c:cc:d0:af:b5:cb:b3:89:95:47:cb:86:12:5d:15:b9:
c0:b3:c0:0e:95:2a:67:81:90:42:b8:b2:6f:5f:10:df:53:0d:
f7:05:fd:39:b9:87:8a:a3:12:d2:af:d3:8d:e8:e6:e4:f8:4a:
7f:b4:8c:58:b7:fb:82:b6:ce:43:e3:18:5d:5c:2d:11:83:ec:
a5:d9:c4:57:14:97:24:cd:7f:2c:ad:97:b2:8f:82:0c:98:72:
57:8d:86:6a:c1:24:11:a8:40:f1:ac:a2:06:8b:06:a9:35:09:
9c:f7:c3:f3:b6:e0:d2:92:ba:ec:67:fd:2e:8d:25:d5:bb:1d:
9c:8e:7d:57:17:a3:f8:a2:58:43:7b:e5:5d:de:2b:94:cb:e4:
25:95:1e:52:a4:81:76:73:af:23:b4:6d:31:48:9b:06:16:cf:
b5:25:b5:30:49:d4:0f:83:2b:22:40:d7:c1:85:c5:04:35:db:
ad:53:8b:40:1d:42:27:33:bc:ec:a6:16:df:0b:dd:c3:52:aa:
7a:3b:67:1d:93:66:76:94:25:0c:d3:8e:a5:d7:11:76:4f:55:
8e:da:22:b9:22:a1:30:02:99:b4:67:87:83:9f:5e:22:05:66:
cc:c3:26:65:e8:7d:3f:52:a8:8c:9e:16:14:40:8d:6b:07:20:
5b:d0:d0:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 09:36:52 2024 by rpki-client on console-ams.rpki-client.org