Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/qjrtkfKbLMfT4F8kDZkTdYHZtbM.cer
File: qjrtkfKbLMfT4F8kDZkTdYHZtbM.cer (raw, json)
Hash identifier: ZjGDdW9PDeaUO1RK9tdt0G3V9UhuJMLS5AhnNGhA/Yk=
Subject key identifier: AA:3A:ED:91:F2:9B:2C:C7:D3:E0:5F:24:0D:99:13:75:81:D9:B5:B3
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC726770E487D4EEA9A077FC1C16CAA43
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/73/8e0f63-ef7a-4662-b046-04e1eb2a9328/1/qjrtkfKbLMfT4F8kDZkTdYHZtbM.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/73/8e0f63-ef7a-4662-b046-04e1eb2a9328/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 22:30:36 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 15412
AS: 29664
AS: 34406
AS: 42271
IP: 62.216.128.0/19
IP: 80.77.0.0/20
IP: 80.81.64.0/19
IP: 82.196.32.0/19
IP: 85.95.0.0/19
IP: 89.17.96.0/19
IP: 193.43.25.0/24
IP: 2001:1a00::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:26:77:0e:48:7d:4e:ea:9a:07:7f:c1:c1:6c:aa:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 22:30:36 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=aa3aed91f29b2cc7d3e05f240d99137581d9b5b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:cc:20:99:26:52:dc:6f:bb:48:0d:b8:0f:1e:
c4:39:1a:4c:fe:a8:e9:ee:a1:c8:3f:c5:14:60:2f:
b1:f8:7e:47:45:08:94:36:1e:26:d0:37:f3:9f:ff:
be:5d:ae:1e:47:87:52:dc:81:ff:fb:95:58:c8:cd:
6e:91:8c:68:ab:d9:10:df:0f:71:83:69:1e:14:84:
03:65:72:ba:8b:ba:88:9b:1f:38:da:74:31:f9:17:
4d:e1:d3:d2:ce:6b:4f:94:9b:ae:61:ef:16:b6:4e:
33:a8:51:9d:4c:0a:1d:0a:ed:45:3e:13:80:52:12:
5a:00:b7:ec:82:cc:8f:66:d8:a2:93:b6:52:f9:0a:
25:1b:c3:f1:49:ed:90:a6:f5:86:15:69:a6:00:8c:
8e:1c:fa:1c:d0:09:33:78:c4:ca:37:27:a6:47:d5:
44:e2:6f:51:67:d0:e3:76:7f:5f:25:c9:4c:a3:6c:
26:0a:99:51:4f:70:7d:cd:36:f2:36:0b:9d:12:e6:
3b:cb:b8:3d:c8:12:05:08:53:e0:9b:9f:ff:7b:e6:
66:6f:f0:b1:6d:52:1b:ea:cf:93:84:ff:f3:2e:5d:
4a:0f:ce:08:a8:22:74:69:7c:be:99:8e:63:8c:7a:
86:2d:ff:38:c3:36:67:5c:41:b1:05:92:9c:ea:53:
73:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:3A:ED:91:F2:9B:2C:C7:D3:E0:5F:24:0D:99:13:75:81:D9:B5:B3
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/8e0f63-ef7a-4662-b046-04e1eb2a9328/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/8e0f63-ef7a-4662-b046-04e1eb2a9328/1/qjrtkfKbLMfT4F8kDZkTdYHZtbM.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.216.128.0/19
80.77.0.0/20
80.81.64.0/19
82.196.32.0/19
85.95.0.0/19
89.17.96.0/19
193.43.25.0/24
IPv6:
2001:1a00::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
15412
29664
34406
42271
Signature Algorithm: sha256WithRSAEncryption
7c:0f:f7:44:e5:5c:da:93:8f:87:b1:e2:25:61:ea:d1:bb:df:
e5:bb:32:ab:90:68:83:8b:1a:a8:06:32:2a:e9:43:6e:50:46:
00:05:b3:60:be:91:50:c1:28:71:c5:59:ca:d1:b4:8e:18:3a:
e2:54:23:da:80:09:f0:59:7f:4b:f9:c9:e9:3b:3b:99:01:57:
2d:f5:e6:25:22:92:71:2e:46:fb:a0:b4:06:cb:b0:f1:2f:e9:
85:4d:1d:46:b5:b5:83:83:2e:19:67:ec:39:9b:06:0c:b7:64:
0d:2b:81:80:47:8d:a0:0f:3c:39:3c:b2:2e:71:c3:25:35:33:
25:35:7c:9c:21:cb:02:9f:55:33:5c:29:f4:15:9c:23:48:26:
c8:cc:16:0c:42:5d:9a:b1:f7:78:21:11:5f:a2:8f:11:d4:0c:
74:07:22:07:c6:64:db:9b:a0:78:34:7e:6f:58:1f:9f:9e:80:
1d:3a:35:fd:94:a8:8c:00:30:0a:e4:0f:d2:15:d0:61:de:ec:
fc:e3:11:c9:64:7f:b3:bc:8d:33:c3:f5:92:61:a6:4a:f6:20:
5c:9b:68:27:ab:11:36:af:8a:71:61:39:30:1d:af:0d:30:74:
83:d7:59:0e:2c:8f:6f:e6:96:7f:52:a7:a5:45:2c:eb:27:d9:
46:d7:de:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 08:19:55 2024 by rpki-client on console-fra.rpki-client.org