Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/sIduM6KbJvQ_QbH5rFtAJMA25Bc.cer
File: sIduM6KbJvQ_QbH5rFtAJMA25Bc.cer (raw, json)
Hash identifier: UYXCtq7RbZRApS5VPTS7mJFZNAXWvLJST3nLqruwWi0=
Subject key identifier: B0:87:6E:33:A2:9B:26:F4:3F:41:B1:F9:AC:5B:40:24:C0:36:E4:17
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC2CF043D91637F32F6395C41EA5CE098
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.nap.re/repo/pongery/2/B0876E33A29B26F43F41B1F9AC5B4024C036E417.mft
caRepository: rsync://rpki.nap.re/repo/pongery/2/
Notify URL: https://rpki.nap.re:3030/rrdp/notification.xml
Certificate not before: Mon 01 Jan 2024 02:16:36 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 213086
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:cf:04:3d:91:63:7f:32:f6:39:5c:41:ea:5c:e0:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 02:16:36 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b0876e33a29b26f43f41b1f9ac5b4024c036e417
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:4d:bd:63:e0:b6:cb:95:40:70:27:72:3d:fb:
79:20:12:39:7e:ea:74:95:ad:36:66:3c:05:3f:19:
b3:c5:08:ab:1e:e9:37:53:c8:aa:d6:6b:bd:09:09:
81:68:5a:1e:b2:5f:75:50:d9:a2:ad:5b:70:bb:cc:
9a:1d:3b:1d:92:87:33:35:6e:ae:6d:79:fa:57:33:
58:5d:a5:74:f7:18:5b:9a:21:a4:39:8e:50:52:3f:
21:4d:d0:69:a4:b0:d2:35:87:c8:f3:d6:df:6e:07:
c3:69:aa:2c:70:ad:36:46:81:38:ce:fc:65:29:4c:
c5:f4:ec:a8:50:c1:8c:a8:63:f5:a6:90:54:cc:cb:
52:b0:46:f2:9d:b1:ec:71:12:b1:b7:1c:9a:35:d9:
33:2d:ba:85:01:c4:32:e3:59:c2:2b:58:df:fd:ca:
4b:d4:61:b1:ec:94:49:83:cf:48:47:52:a3:b1:17:
c1:34:79:55:06:01:de:a3:a8:9c:01:35:ff:95:08:
4d:67:5d:d8:3a:41:90:1e:0b:d0:57:9e:81:03:a3:
6e:50:ff:52:2f:0f:62:ac:2e:3e:18:70:2e:58:4a:
4a:f9:75:57:b5:7b:5b:85:e4:86:ac:8f:c8:69:de:
15:c6:48:b3:fc:4e:11:0e:dc:5b:22:f6:22:55:93:
0b:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:87:6E:33:A2:9B:26:F4:3F:41:B1:F9:AC:5B:40:24:C0:36:E4:17
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.nap.re/repo/pongery/2/
RPKI Manifest - URI:rsync://rpki.nap.re/repo/pongery/2/B0876E33A29B26F43F41B1F9AC5B4024C036E417.mft
RPKI Notify - URI:https://rpki.nap.re:3030/rrdp/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
213086
Signature Algorithm: sha256WithRSAEncryption
48:88:5f:63:67:0c:45:67:fa:dd:7e:5e:43:88:21:2f:45:f6:
31:9a:12:c2:ef:17:c5:9c:d2:aa:74:64:a9:58:4e:a4:40:c4:
7d:a5:aa:64:ba:0e:bd:50:18:7e:10:ff:49:00:10:9a:30:db:
43:57:ca:2c:ad:ef:7c:60:af:cf:59:97:39:40:d3:b0:8e:26:
8c:d2:a1:2a:a4:6b:b9:94:42:e8:c1:92:9f:63:1e:c1:cb:d4:
7a:3d:7f:b8:38:52:34:5c:63:0c:92:78:5f:23:8f:c6:84:aa:
66:6d:a2:d0:13:e3:03:f5:81:6e:b2:7f:b1:6a:04:2f:2d:f5:
53:e7:9e:be:68:fc:78:c3:15:0c:b5:70:5e:ec:a2:4f:c2:d8:
7e:cd:fe:1f:2c:e9:ad:00:92:45:8b:c6:0b:f7:9e:f6:8b:4c:
18:52:7c:3c:1f:e8:db:61:5c:87:f0:2f:54:a7:56:72:a1:1c:
15:e5:d4:97:93:42:b5:28:be:f9:f0:a3:ed:de:9a:27:2e:87:
f5:a0:7d:99:c5:e0:f7:b2:ed:95:c9:8b:41:f7:11:fb:09:40:
4f:2c:1b:11:a0:ad:b1:ec:14:cb:2f:9f:0e:bf:7f:f2:b3:67:
62:6f:dc:f2:9c:30:a2:3f:1c:7a:c9:b0:17:87:d7:fb:94:a1:
b6:e4:e5:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 08:21:22 2024 by rpki-client on console-fra.rpki-client.org