Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/raTysa0VsYmSPu0s540K6JPPZxA.cer
File: raTysa0VsYmSPu0s540K6JPPZxA.cer (raw, json)
Hash identifier: n1GjQWnYIYpcOS7vRuj223F/y4QoGuia21cbE4lajrU=
Subject key identifier: AD:A4:F2:B1:AD:15:B1:89:92:3E:ED:2C:E7:8D:0A:E8:93:CF:67:10
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC8DF85A805A1BDE9B979BB2D2EEB1BE1
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/82/907c17-6b5c-49ab-b953-e439f9e3a19e/1/raTysa0VsYmSPu0s540K6JPPZxA.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/82/907c17-6b5c-49ab-b953-e439f9e3a19e/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 06:32:21 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 31682
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:df:85:a8:05:a1:bd:e9:b9:79:bb:2d:2e:eb:1b:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 06:32:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ada4f2b1ad15b189923eed2ce78d0ae893cf6710
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:2f:9f:76:ac:91:54:5f:7f:1d:8d:aa:cc:11:
3b:1f:f4:68:8b:d0:9a:c0:fd:31:3f:87:53:2a:12:
65:d6:2e:48:ea:f2:60:a5:d8:ea:1c:77:af:c8:a8:
6c:fc:60:ba:b6:39:e7:ab:c2:f6:4d:c4:ec:f1:cf:
3b:22:85:ac:ed:a3:fd:78:40:38:8d:d2:31:46:48:
53:fb:00:94:5f:1f:cd:87:a7:9f:1b:05:6f:4a:6f:
e2:dd:94:9e:76:5e:50:82:09:46:e6:bb:7b:c7:9c:
22:67:9e:5c:a0:57:a8:8f:5a:62:65:7c:9d:7a:bf:
8d:ed:cb:98:d9:65:df:34:f2:a6:6a:de:68:dc:e2:
73:a2:71:65:5f:f6:4e:3a:8b:17:34:7f:1d:fd:b8:
5c:f7:db:11:ce:4a:23:2f:44:e5:e3:0b:84:6b:c8:
6a:c0:e6:f6:25:bc:42:0c:15:93:ca:95:7a:19:31:
e6:2d:65:b2:37:87:ff:93:d2:aa:e9:b4:c0:6c:b6:
27:2c:af:38:d8:8c:f0:3e:4b:ee:22:50:d1:c1:44:
a3:fb:96:d0:33:8f:a8:3b:94:5d:c3:5c:b6:63:92:
e1:2d:f9:e4:f2:db:4d:57:9f:05:c8:2c:02:73:09:
78:1d:a2:10:e8:42:32:46:85:50:91:24:9a:bd:1f:
f0:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:A4:F2:B1:AD:15:B1:89:92:3E:ED:2C:E7:8D:0A:E8:93:CF:67:10
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/907c17-6b5c-49ab-b953-e439f9e3a19e/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/907c17-6b5c-49ab-b953-e439f9e3a19e/1/raTysa0VsYmSPu0s540K6JPPZxA.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
31682
Signature Algorithm: sha256WithRSAEncryption
1c:2f:2b:6e:b4:be:4e:6f:1a:00:7b:95:6e:09:59:cd:98:3a:
7a:09:e7:65:3e:1a:4a:ee:97:dd:2a:0d:2a:20:c2:6f:86:03:
82:7c:ce:ea:99:40:1f:68:6b:5a:b0:b2:b8:ca:be:05:4d:ca:
89:71:9b:49:28:3b:98:ee:16:51:7c:d9:95:88:13:77:a1:60:
02:6c:27:a5:c6:69:e1:1f:d8:d3:7e:4c:18:5e:d8:18:c8:06:
1e:4b:d2:e7:53:e5:ba:94:b2:bf:ed:8f:72:b0:67:41:34:92:
89:37:d0:5f:fb:77:be:e9:34:9a:e9:7d:9b:43:15:d0:03:4c:
9f:2a:3d:7f:b8:de:6a:8a:4d:ab:a4:02:97:42:0d:1d:3b:92:
cc:10:36:97:28:c8:7a:e2:ba:5d:91:0d:34:5f:01:f7:0b:8b:
62:99:e0:c0:44:e2:0c:90:de:89:ca:21:52:d3:26:40:38:9e:
50:ef:1a:ca:08:9f:9a:87:00:95:b3:eb:23:d1:b7:e1:64:11:
dd:ab:8b:24:0d:8b:9d:77:cd:45:cf:50:bd:54:26:a7:03:10:
d9:1d:77:71:ca:2b:9b:bb:19:03:9f:0d:e1:58:ab:57:56:67:
dd:21:5d:7e:79:7d:fe:5d:0e:03:15:9f:73:83:22:bb:d6:7c:
36:64:1f:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 11:01:20 2024 by rpki-client on console-fra.rpki-client.org