Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/qTS43sEoG8VDF8f-0OmsvHuXysc.cer
File: qTS43sEoG8VDF8f-0OmsvHuXysc.cer (raw, json)
Hash identifier: 4xXdfbO8Qr04fmxR07ZoJyHgb/UpjVps8r+O9qiP76Y=
Subject key identifier: A9:34:B8:DE:C1:28:1B:C5:43:17:C7:FE:D0:E9:AC:BC:7B:97:CA:C7
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC2DB416ED25D02A96828ABDA9C86E169
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/04/87b562-cb7d-4a93-bd43-27ee42d925ad/1/qTS43sEoG8VDF8f-0OmsvHuXysc.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/04/87b562-cb7d-4a93-bd43-27ee42d925ad/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 02:29:58 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 57761
IP: 185.27.216.0/22
IP: 2a00:8ac0::/32
IP: 2a04:3c40::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:db:41:6e:d2:5d:02:a9:68:28:ab:da:9c:86:e1:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 02:29:58 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a934b8dec1281bc54317c7fed0e9acbc7b97cac7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:e7:a3:28:e0:69:98:b9:0a:9b:bd:ad:79:f4:
99:4b:b8:f9:6d:c9:e9:9c:cd:06:c2:dd:72:30:34:
f2:a3:9b:c9:e3:85:b1:83:63:4e:7e:6b:5d:4a:80:
9e:d9:96:85:df:aa:89:3f:8a:49:f6:99:d9:c2:cd:
02:47:7d:26:1c:dc:af:71:da:ae:a9:8f:bd:b2:ee:
88:64:ab:c0:ec:4d:4c:a5:79:43:c8:ce:51:d7:9c:
1d:4e:54:46:9b:15:e5:4b:c9:77:00:4e:d0:38:ac:
25:34:b2:f5:20:8c:f2:83:af:f1:2e:2a:78:b1:b9:
cf:40:07:f8:9c:f6:2f:9b:31:02:fa:19:61:fa:bd:
b6:86:51:d9:b6:4c:b5:7a:2f:50:ef:6f:d0:a0:b0:
c0:6e:92:a1:81:0e:39:96:d4:9d:91:42:cc:fd:b4:
f5:20:b7:87:f5:55:24:18:06:18:c5:02:84:92:f8:
28:83:6a:ce:20:bf:12:9e:ce:47:6f:f5:ab:a7:e4:
37:5f:b1:bc:16:09:95:f4:4a:e4:25:e9:11:e7:81:
f4:3e:4b:be:b3:a0:08:55:29:18:cc:ea:01:9e:21:
69:8d:be:16:bc:34:bc:9e:0f:13:54:a3:0c:63:56:
3d:71:1d:17:53:be:c3:4b:f4:d2:2a:b8:c4:ad:2b:
bd:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:34:B8:DE:C1:28:1B:C5:43:17:C7:FE:D0:E9:AC:BC:7B:97:CA:C7
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/87b562-cb7d-4a93-bd43-27ee42d925ad/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/87b562-cb7d-4a93-bd43-27ee42d925ad/1/qTS43sEoG8VDF8f-0OmsvHuXysc.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.27.216.0/22
IPv6:
2a00:8ac0::/32
2a04:3c40::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
57761
Signature Algorithm: sha256WithRSAEncryption
82:90:a2:c1:32:04:35:5e:9f:de:a6:0f:36:f8:46:33:c6:79:
f3:ad:82:8e:a0:04:cd:8c:28:00:51:9a:e2:25:a3:d7:84:84:
8e:d9:b5:c0:13:51:db:00:0e:6d:9a:c2:b3:87:c1:0c:5c:92:
b3:e9:cf:7a:1c:ef:e1:57:6d:d9:ae:d4:44:0f:a8:ad:a9:5b:
ee:c2:50:fd:47:ba:d1:08:d8:c6:d4:8a:26:bf:57:12:ec:e1:
3a:7c:ef:32:a4:70:75:c5:df:8d:3c:08:96:2f:a1:b0:91:e0:
a1:38:ec:d0:b4:99:f5:b1:59:4c:1a:21:d0:a7:5e:36:74:94:
be:34:0f:78:53:f6:19:23:b0:2d:1e:62:bc:de:dc:8d:30:b6:
85:b1:47:6f:ce:85:78:8b:6b:9e:de:3d:1f:c9:2b:bc:14:35:
d4:1e:d5:eb:71:66:37:bd:f3:87:07:c4:05:5b:1a:1c:6e:59:
4f:14:d7:63:ae:72:53:05:ba:fc:b3:ce:e5:87:be:04:14:4a:
0c:ba:1a:75:fc:ed:0a:48:49:ab:c6:37:50:46:8c:03:cb:e2:
2b:c0:1c:15:65:09:52:6f:09:bb:a3:9b:8b:e3:cb:f9:74:47:
85:fd:95:c3:88:cc:85:cd:d8:cc:2f:0e:53:2f:28:c7:ec:e8:
b5:ba:ff:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 11:00:19 2024 by rpki-client on console-fra.rpki-client.org