Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/p6U4qsM3eEYOGXAaq1lSx6ol8Fw.cer
File: p6U4qsM3eEYOGXAaq1lSx6ol8Fw.cer (raw, json)
Hash identifier: 45Y8rM2AGN9uXLafuxYvTbcWflZ0BZLJJK4HIiTFoTs=
Subject key identifier: A7:A5:38:AA:C3:37:78:46:0E:19:70:1A:AB:59:52:C7:AA:25:F0:5C
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC492FF9F1203C76ACA4A6DED55EE9690
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/07/a83337-6e16-4cd9-921a-87b010ea6235/1/p6U4qsM3eEYOGXAaq1lSx6ol8Fw.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/07/a83337-6e16-4cd9-921a-87b010ea6235/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 10:30:17 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 207718
IP: 194.147.32.0/22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:92:ff:9f:12:03:c7:6a:ca:4a:6d:ed:55:ee:96:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 10:30:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a7a538aac33778460e19701aab5952c7aa25f05c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:fd:88:1e:e3:37:aa:75:73:6b:ca:ae:6e:23:
3f:3b:37:b0:4b:46:c7:09:77:f7:59:0f:19:4e:20:
89:bd:02:c2:a6:92:cd:61:84:78:37:14:bc:c8:11:
7b:64:db:be:69:e3:d2:c4:e1:ca:fa:b9:10:0e:a5:
c6:f8:ff:79:aa:cd:03:15:89:f3:c4:6f:44:19:81:
d2:5d:3f:93:a6:e4:4c:c3:77:e6:ed:02:6a:fd:db:
d8:d6:0a:13:0d:6e:5c:92:7d:35:63:c7:2d:a0:b3:
55:5b:d0:72:53:b5:20:5b:8f:2b:da:7c:56:5c:04:
19:b7:76:7a:42:ef:1d:dd:cd:de:43:2b:df:db:87:
d2:42:0b:ca:29:e5:15:6d:e8:4b:fe:26:92:34:e5:
3f:38:df:f3:9f:a1:38:a5:31:02:a2:7d:73:7a:c5:
46:54:91:4b:55:ee:81:dc:96:c8:ba:79:f6:af:d9:
b8:a2:fb:9e:44:b5:fa:59:14:df:0a:53:57:de:7f:
e3:9c:ec:89:48:4a:3d:71:d0:e4:4b:ac:26:5d:14:
51:f2:7e:44:20:57:b8:a9:00:72:4a:30:92:87:a5:
f9:d9:af:e6:95:76:7e:16:55:48:47:1a:7f:19:ac:
13:1a:f4:b0:f0:11:88:66:c4:69:8b:56:4f:fc:47:
59:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:A5:38:AA:C3:37:78:46:0E:19:70:1A:AB:59:52:C7:AA:25:F0:5C
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/a83337-6e16-4cd9-921a-87b010ea6235/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/a83337-6e16-4cd9-921a-87b010ea6235/1/p6U4qsM3eEYOGXAaq1lSx6ol8Fw.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.147.32.0/22
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
207718
Signature Algorithm: sha256WithRSAEncryption
35:25:f5:ed:bb:6e:85:66:fe:1a:f3:93:b1:c9:98:45:e5:f0:
ee:ee:32:e5:97:c2:d7:df:71:bc:96:1d:fe:03:a0:26:16:fb:
a2:ba:a8:7d:ae:c8:15:dd:4a:9b:97:c3:6b:55:5d:88:52:00:
5d:b6:c5:c2:97:45:1f:c9:fe:d5:6c:22:70:21:8f:fd:31:4d:
2d:09:9d:b0:c7:8d:7e:c6:94:d2:f4:7c:4b:a9:0b:cc:21:59:
d0:42:20:89:a0:85:b7:ef:26:1e:85:e1:cf:37:c8:e8:da:87:
1e:eb:46:5c:7c:96:74:0c:92:de:51:6e:d1:61:8b:ea:e1:1f:
f3:9e:f4:a9:4d:94:54:d5:f4:f6:85:4f:06:01:38:95:cf:88:
e7:af:a6:e2:39:9e:30:f9:12:a7:00:08:75:95:98:29:e9:ea:
37:7e:25:50:51:bd:23:e8:ea:65:8e:23:33:14:9f:78:b3:25:
f9:b2:94:49:31:c3:b6:05:3d:95:36:16:99:1a:49:20:08:fd:
33:df:d6:f3:ed:84:c1:b6:bc:8a:a3:9d:89:8e:72:1e:1f:7b:
cc:0e:04:a6:a9:29:c5:bf:ee:b5:ee:ca:b1:c7:c8:e2:2b:df:
cd:02:56:e4:50:32:33:af:86:93:12:8e:58:e6:b6:69:8f:11:
fd:74:ce:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 10:13:59 2024 by rpki-client on console-ams.rpki-client.org