Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/sGG9PMo9M2RaJ24PMiT_ie7kSFc.cer
File: sGG9PMo9M2RaJ24PMiT_ie7kSFc.cer (raw, json)
Hash identifier: 4o/ovKwUP67UsQSgQfZbjO0z1e/cm+iRgauuNS/B500=
Subject key identifier: B0:61:BD:3C:CA:3D:33:64:5A:27:6E:0F:32:24:FF:89:EE:E4:48:57
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC2DB514B61650E5EADC06D3ED9978009
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/59/657533-11ec-484b-be6a-32fda31186ef/1/sGG9PMo9M2RaJ24PMiT_ie7kSFc.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/59/657533-11ec-484b-be6a-32fda31186ef/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 02:30:02 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 200034
IP: 2a13:ee00::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:db:51:4b:61:65:0e:5e:ad:c0:6d:3e:d9:97:80:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 02:30:02 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b061bd3cca3d33645a276e0f3224ff89eee44857
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:47:4f:c0:6e:b1:5e:3f:53:b9:09:65:23:60:
99:cc:c6:af:86:09:d1:0b:28:94:5f:95:cf:78:21:
52:cc:db:05:83:6c:43:19:90:cd:ed:8f:b8:e9:06:
23:cb:e2:9b:4c:6a:f5:2a:28:3d:fa:6d:5e:df:8e:
34:d5:00:12:ee:3a:0f:fb:cc:98:bb:fe:71:88:8e:
de:49:2f:51:4d:12:56:69:c2:32:75:b2:e1:54:91:
2b:00:f7:1d:4b:84:3c:41:09:1e:62:66:24:ac:28:
73:fb:63:53:d3:c2:88:34:10:ad:06:00:e3:ec:aa:
3f:0c:35:68:53:42:75:b6:e1:48:c6:8c:96:1e:84:
4f:13:79:84:de:71:a4:2d:f3:06:e0:69:f3:78:df:
cb:93:9b:03:76:36:0b:01:be:ea:3c:a8:11:68:af:
2b:16:0d:fb:72:d1:80:da:de:bb:99:21:2e:96:7d:
90:eb:08:b3:9b:fa:22:13:df:00:7b:0d:ad:fc:85:
d6:8a:fe:91:10:02:f0:3d:42:65:ef:00:06:5a:41:
5f:8f:33:9a:e8:aa:6e:45:72:d7:3a:e9:02:99:0f:
6d:3f:b8:a7:1f:d2:08:54:86:fe:a8:d0:f8:bd:f4:
06:39:57:0d:f0:d0:34:04:84:8c:00:11:5a:2d:fd:
11:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:61:BD:3C:CA:3D:33:64:5A:27:6E:0F:32:24:FF:89:EE:E4:48:57
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/657533-11ec-484b-be6a-32fda31186ef/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/657533-11ec-484b-be6a-32fda31186ef/1/sGG9PMo9M2RaJ24PMiT_ie7kSFc.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:ee00::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
200034
Signature Algorithm: sha256WithRSAEncryption
44:8e:87:3d:f0:9c:3a:0e:b5:8d:c7:86:12:89:23:77:ef:e7:
da:d7:9b:5b:6c:08:66:a5:1d:71:8d:3d:0f:d6:f7:d8:4c:fa:
25:ec:1a:18:9f:84:02:19:02:d9:07:fa:e8:4d:88:45:bb:c2:
df:36:ee:e1:95:e2:3c:e2:0b:3d:3a:e7:3c:33:20:73:a8:d0:
6e:43:23:73:a3:43:ae:c4:b4:bf:f8:4b:c9:df:20:64:4a:1d:
69:11:d1:fe:28:2d:ee:d2:07:f5:43:6b:c9:7f:d3:93:06:a7:
e3:a3:48:fb:6d:31:da:55:db:9a:a7:65:07:ef:78:ba:37:95:
01:a4:30:76:28:e6:3b:86:61:80:5d:48:37:2d:d2:c8:5d:06:
6a:bf:fb:66:ac:ec:f1:b8:6f:ee:4a:85:4d:c4:2b:41:26:9e:
21:6e:15:2f:a6:c6:26:9d:dc:f1:70:e1:39:7c:09:42:c0:92:
26:f5:45:ca:77:d8:f1:37:e6:10:68:23:fd:75:05:e3:b4:63:
59:56:ad:a2:63:aa:91:2f:77:78:67:3f:28:19:7f:25:41:f4:
b7:0f:f8:ac:d4:03:aa:f5:e1:ff:a9:63:67:50:51:32:6c:56:
80:cd:7d:a4:00:c8:e1:0f:69:e4:76:b9:a8:33:27:9b:22:45:
af:b1:95:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 11:01:56 2024 by rpki-client on console-fra.rpki-client.org