Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/qfCQLHsw_sPg3PXyO_7fUBgjQps.cer
File: qfCQLHsw_sPg3PXyO_7fUBgjQps.cer (raw, json)
Hash identifier: lc5lAMhm3RiVejK1hDuKJpLx7D5rFRhwb16SYwZMp0c=
Subject key identifier: A9:F0:90:2C:7B:30:FE:C3:E0:DC:F5:F2:3B:FE:DF:50:18:23:42:9B
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0194221FF47D2FBA4E5FE2A5203F7CF44A53
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/43/d66ff3-b607-476e-8d5e-8968565df63a/1/qfCQLHsw_sPg3PXyO_7fUBgjQps.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/43/d66ff3-b607-476e-8d5e-8968565df63a/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 13:48:27 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 214934
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:1f:f4:7d:2f:ba:4e:5f:e2:a5:20:3f:7c:f4:4a:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 13:48:27 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a9f0902c7b30fec3e0dcf5f23bfedf501823429b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:96:e9:da:dd:f5:a7:08:3c:2d:48:8d:e1:74:
61:e3:5a:6d:91:c9:d4:07:59:8b:59:cb:9a:1d:37:
8a:15:80:41:96:78:ca:33:5c:e9:29:10:6a:61:c2:
76:f9:ce:59:20:ae:10:4d:f1:ae:22:6b:d4:8f:12:
24:5a:25:d1:47:02:1e:23:1d:dd:2a:1f:6c:fd:9e:
4d:fc:1e:76:db:80:39:e0:54:43:77:78:04:c2:bb:
8d:b9:ad:06:e5:b6:c2:27:e4:5c:00:1c:f0:9c:f5:
a1:46:b3:93:ec:f0:87:6b:6d:70:91:17:c1:31:87:
3b:72:98:37:e4:92:ac:df:05:99:a9:cd:06:d6:5b:
8b:5c:b1:db:08:25:b7:45:74:4c:aa:ce:06:04:12:
75:a5:e0:8d:d2:84:68:9b:a2:65:8a:21:a6:d8:47:
3d:24:64:da:02:16:ed:64:5e:5f:3e:35:ea:4d:19:
96:fe:7b:36:99:2b:4c:c3:29:7f:3a:31:40:47:f0:
4a:ee:f8:a3:93:ea:0a:61:71:b3:20:9e:4e:43:2a:
b1:1b:10:2f:d0:73:b1:51:bb:32:c4:eb:42:76:59:
1a:2f:c8:69:be:77:e5:c2:28:2a:d0:81:ad:8a:81:
7c:76:2a:38:49:14:e1:29:7d:f7:cf:0e:cf:e7:8e:
05:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:F0:90:2C:7B:30:FE:C3:E0:DC:F5:F2:3B:FE:DF:50:18:23:42:9B
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/d66ff3-b607-476e-8d5e-8968565df63a/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/d66ff3-b607-476e-8d5e-8968565df63a/1/qfCQLHsw_sPg3PXyO_7fUBgjQps.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
214934
Signature Algorithm: sha256WithRSAEncryption
9c:21:19:f4:00:f3:bc:05:6b:96:97:c5:d6:06:fb:23:46:aa:
85:ea:fc:ae:17:9a:93:98:4e:f2:26:0c:16:9f:c4:37:af:db:
36:5e:35:b9:ac:e5:e7:1c:39:0a:8a:e9:a7:77:88:06:74:0f:
8e:d4:11:a8:c7:26:ed:45:e6:d1:03:76:d6:0e:f6:19:0f:e2:
79:3b:5c:60:8d:77:80:01:88:8b:04:21:d6:f3:4e:92:9f:48:
44:20:cb:c6:a7:35:52:20:62:27:e8:ed:25:eb:b6:fc:96:50:
a4:f3:f5:d4:ab:14:a4:0f:3e:ae:a7:08:87:91:ad:46:a8:4c:
76:a5:09:37:bb:89:df:ff:78:05:9d:29:fe:e3:14:13:9a:47:
31:34:11:38:47:44:15:29:f9:53:05:f7:25:66:69:c0:a2:f5:
3a:03:d0:12:ca:a5:14:bb:04:4f:78:18:9a:41:93:ab:41:8c:
b3:39:4a:66:a8:7a:a4:74:44:70:32:44:56:57:52:99:df:a3:
a1:a3:56:10:e8:40:5e:9a:27:f9:db:a8:d8:05:5b:a6:3c:11:
db:18:29:fb:0e:31:20:ac:2f:0b:a1:10:fc:8a:31:5c:34:78:
51:0a:a5:63:38:49:c4:42:e5:02:7e:60:f2:82:07:14:cc:bd:
ac:61:19:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:06:02 2025 by rpki-client