Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/qagVvnVH64cOtfZB0w_mljdByOA.cer
File: qagVvnVH64cOtfZB0w_mljdByOA.cer (raw, json)
Hash identifier: e4snTzoCxAeUg5zXpDc/4DbDP3llqm3OUCowZKt3GGk=
Subject key identifier: A9:A8:15:BE:75:47:EB:87:0E:B5:F6:41:D3:0F:E6:96:37:41:C8:E0
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC3B69EAE82397AA570F3D0F2E61E3776
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/5a/fe3f3e-e187-4a12-aa9a-243c5f4e2e40/1/qagVvnVH64cOtfZB0w_mljdByOA.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/5a/fe3f3e-e187-4a12-aa9a-243c5f4e2e40/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 06:29:34 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 44156
IP: 79.99.96.0/21
IP: 2a04::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 11:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:b6:9e:ae:82:39:7a:a5:70:f3:d0:f2:e6:1e:37:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 06:29:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a9a815be7547eb870eb5f641d30fe6963741c8e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fe:19:ae:22:c8:11:e6:55:de:3b:24:69:25:f7:
29:d4:0a:ef:9b:5d:46:75:f4:99:8b:be:1a:e3:1a:
a1:68:54:c1:54:1e:be:84:12:77:d2:cf:8f:ae:c3:
a3:f1:c1:b3:3a:d9:3c:65:c9:c3:d6:1e:a1:f2:5c:
04:c9:c4:13:2a:62:e8:a7:29:4f:3d:0c:c5:d6:44:
ab:3c:d3:5f:98:54:b8:d0:c2:cb:08:24:b0:97:a9:
74:08:9e:c9:d2:87:11:01:a3:e7:12:9e:e4:c3:0a:
63:b9:03:59:34:7a:f5:6d:7e:9c:e2:03:5f:a7:5f:
b4:10:e6:44:fd:fe:9f:0e:31:d3:a5:d7:bf:95:bc:
fd:9b:a9:b3:6a:fb:e9:d7:53:4c:e5:4f:dc:7d:fd:
e1:ca:e4:27:cb:09:5a:b9:90:17:bf:19:96:be:18:
b6:76:2d:39:8e:17:d5:a8:a5:f1:71:6a:c3:24:71:
4c:46:c0:fa:5f:ce:ef:12:96:c3:40:91:54:77:c0:
c5:66:ab:9c:66:b6:4d:35:03:e3:36:fb:77:4b:c4:
a1:b7:67:bc:89:a6:f1:78:aa:04:01:a8:20:9f:9e:
85:0a:7f:31:af:5d:5e:fa:72:71:f6:cf:6f:b7:5b:
a7:89:0a:45:d0:f2:56:10:cc:62:53:fe:81:d0:5c:
f9:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:A8:15:BE:75:47:EB:87:0E:B5:F6:41:D3:0F:E6:96:37:41:C8:E0
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fe3f3e-e187-4a12-aa9a-243c5f4e2e40/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fe3f3e-e187-4a12-aa9a-243c5f4e2e40/1/qagVvnVH64cOtfZB0w_mljdByOA.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.99.96.0/21
IPv6:
2a04::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
44156
Signature Algorithm: sha256WithRSAEncryption
45:87:51:5b:5f:5e:b5:d6:ac:84:64:b1:71:40:cc:cf:3a:94:
1f:76:b4:fa:bb:d1:66:75:71:e8:6a:8f:e0:af:d5:87:a2:26:
71:33:64:8b:b5:ee:aa:1b:95:01:68:54:df:ed:f9:35:b7:92:
bf:ee:9e:37:cc:d0:5d:d6:d9:5c:8d:3d:5e:f0:4a:ae:21:b5:
ba:11:65:6b:97:5c:f2:60:fd:6d:ba:2a:0a:98:81:bd:9a:ca:
46:fb:61:0f:78:46:1f:61:95:4e:66:11:14:87:e8:bf:a4:7a:
23:6d:26:9f:ed:85:5c:39:b4:82:e1:fc:dd:cb:95:57:1a:af:
3f:5d:a1:0e:8d:38:e0:fe:2d:5c:7e:08:4a:72:2b:3f:71:7f:
e3:b4:08:c0:a1:0c:9d:8a:4b:06:79:48:05:1a:62:ac:1d:5b:
a7:8c:95:77:20:18:1e:a9:0d:d7:3b:b9:f8:45:58:7e:3f:b9:
b1:68:cf:cb:2e:26:76:9d:ba:4b:32:14:80:6b:a2:a8:db:91:
1d:a7:5c:40:4c:7c:1c:ca:93:ba:a3:c2:e0:a1:9c:89:bb:e9:
ba:b8:1d:f4:90:c5:d7:b6:af:fb:f0:08:1a:63:84:c8:35:a9:
93:5c:d3:64:0a:ad:1a:59:21:8a:76:58:97:41:da:3a:01:95:
7e:58:89:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 14:02:41 2024 by rpki-client on console-fra.rpki-client.org