Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/q1PsDpoFPLvg6aBxvK2eaKmcz6g.cer
File: q1PsDpoFPLvg6aBxvK2eaKmcz6g.cer (raw, json)
Hash identifier: XZbLHiNFTXEHvHSb0iRVYRV8bcCHSN4zZigGfi09o+E=
Subject key identifier: AB:53:EC:0E:9A:05:3C:BB:E0:E9:A0:71:BC:AD:9E:68:A9:9C:CF:A8
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC9BC627F3250FA5A63456158DF1860AC
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/d7/61f398-94f6-4468-85f3-63fcaac31ca3/1/q1PsDpoFPLvg6aBxvK2eaKmcz6g.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/d7/61f398-94f6-4468-85f3-63fcaac31ca3/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 10:33:35 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 34731
IP: 80.76.16.0/20
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:62:7f:32:50:fa:5a:63:45:61:58:df:18:60:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 10:33:35 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ab53ec0e9a053cbbe0e9a071bcad9e68a99ccfa8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:a0:e7:57:a6:03:2b:70:bc:c1:e7:14:4c:11:
55:e4:bc:4b:be:2f:a4:ed:6f:39:0f:62:5e:08:05:
62:76:d0:ca:37:ca:ad:29:40:1b:39:46:f9:ce:0d:
81:d1:a8:30:6e:34:6d:53:22:27:a1:28:15:57:40:
c0:7f:48:5b:84:0e:c0:2f:23:e5:58:78:e3:d0:56:
5b:85:06:cb:b7:a6:c6:84:d5:de:e7:1c:45:78:84:
65:40:94:91:08:c9:90:19:64:7a:62:ab:05:87:65:
10:fd:c8:c3:df:41:e0:80:dd:45:78:c6:60:d0:4f:
da:14:86:07:e1:32:41:b3:cf:c9:55:23:7f:b9:9f:
df:3f:66:51:5c:ec:b9:b7:b1:2d:d6:13:16:3e:25:
72:af:40:05:fd:22:f4:00:40:73:f3:d2:bb:51:74:
75:51:a1:af:0f:5f:64:c9:05:3b:86:c9:39:7b:25:
7b:e6:57:7b:52:9e:11:4e:e6:78:e0:5d:01:42:42:
34:cb:89:92:2f:49:38:1d:bc:53:c4:51:f6:c5:53:
08:d9:ea:6c:dc:08:64:fb:43:4b:b6:b5:1d:fe:c5:
8a:52:a8:f9:99:af:f6:cc:f3:ef:23:17:07:da:67:
eb:d9:0b:91:36:cf:a0:bf:ab:a2:c8:eb:90:88:20:
ff:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:53:EC:0E:9A:05:3C:BB:E0:E9:A0:71:BC:AD:9E:68:A9:9C:CF:A8
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/61f398-94f6-4468-85f3-63fcaac31ca3/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/61f398-94f6-4468-85f3-63fcaac31ca3/1/q1PsDpoFPLvg6aBxvK2eaKmcz6g.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.76.16.0/20
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
34731
Signature Algorithm: sha256WithRSAEncryption
36:1a:7e:25:b6:6f:37:99:ce:2b:e8:d1:f2:ad:ba:d5:3a:3d:
93:b8:09:e1:a7:d5:87:6c:32:96:ad:86:66:b1:bd:56:b5:5e:
5b:16:35:08:14:43:dc:a3:ea:2a:8e:e1:35:62:12:3b:1f:e6:
d6:dd:34:31:42:26:d2:a0:8a:c7:72:0c:9c:11:7a:44:3b:a7:
3e:82:3b:a1:06:d1:c1:07:1d:f0:65:17:3e:48:cb:ea:27:54:
9b:1b:30:f3:2d:3a:87:a3:bb:59:a5:99:2c:aa:82:53:da:d4:
8c:84:fb:68:ff:f6:81:c7:9c:f2:d8:2c:26:77:ca:21:68:a9:
5f:d6:6c:73:4d:6e:c7:47:98:7f:3e:8d:ad:92:9b:80:26:e2:
e9:65:22:31:75:46:24:e6:4f:c7:a4:e6:93:d7:14:81:f9:eb:
e8:f4:fa:25:d0:04:4f:9e:5b:49:5d:b5:d2:b3:9c:55:8f:a4:
94:4d:ce:68:24:f7:40:42:e0:b7:3b:bc:91:25:db:e4:ed:27:
cb:78:40:38:b8:23:a9:6b:e0:4d:d0:0c:fd:1e:08:9c:27:00:
94:86:14:d8:11:97:8b:42:e9:02:33:c3:dc:a5:ad:9b:e5:a5:
23:fe:ad:f3:2d:33:fe:ec:56:5a:31:99:01:38:44:ce:e8:b4:
2c:67:21:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 03:44:18 2024 by rpki-client on console-fra.rpki-client.org