Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/spK68_TAei7dR9iMKxW2Wir33q0.cer
File: spK68_TAei7dR9iMKxW2Wir33q0.cer (raw, json)
Hash identifier: zGK2OyfeBQEVQ3y7rxw7hRo9pvyqEYmgcoOHKLrr96k=
Subject key identifier: B2:92:BA:F3:F4:C0:7A:2E:DD:47:D8:8C:2B:15:B6:5A:2A:F7:DE:AD
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC86F4302458FF4504B8CC58893874515
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/24/c1f83a-dfc7-494d-9a4b-2a72c2858bac/1/spK68_TAei7dR9iMKxW2Wir33q0.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/24/c1f83a-dfc7-494d-9a4b-2a72c2858bac/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 04:29:44 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 44884
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:43:02:45:8f:f4:50:4b:8c:c5:88:93:87:45:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 04:29:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b292baf3f4c07a2edd47d88c2b15b65a2af7dead
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:d3:36:04:89:fa:0c:69:17:7b:e1:e0:e7:c1:
df:0f:64:57:c3:99:67:c1:12:2c:49:22:ae:17:d1:
8a:dd:9e:c5:b5:eb:4c:2a:8e:b8:bd:c0:ad:6e:84:
4b:b6:1f:ed:bb:1e:2e:83:ab:17:96:26:04:ae:d8:
cb:dd:60:14:84:6f:5d:4e:b5:34:cf:cd:48:eb:ef:
7a:6a:02:74:d7:dd:24:87:69:8d:22:bc:b8:2e:9a:
ce:7f:25:3b:0a:f5:f3:06:4c:18:07:38:83:77:97:
0d:19:2a:24:7b:15:5d:a6:cc:ba:4c:50:3e:3e:4f:
b8:28:0b:c5:e1:ea:15:f6:8f:a7:f9:3a:ed:ed:c1:
20:9e:1e:d3:66:51:02:2b:68:d7:14:88:ad:b5:31:
e0:f8:5c:b0:7d:28:87:3c:97:df:ee:bb:b5:88:b8:
7b:e3:f0:40:f4:67:42:cd:18:1d:c6:9a:10:df:fe:
78:9c:07:7a:bc:8f:d5:35:ab:04:57:ea:22:3e:bb:
9a:03:63:ce:ce:c1:e3:8e:f5:77:56:5c:68:da:5f:
8b:3c:5f:1e:cc:b9:2a:83:ee:8d:42:52:bd:55:c1:
7a:80:ec:a3:44:06:67:ae:f9:db:7e:0d:df:18:a2:
e8:ee:65:70:ff:bb:64:b1:21:06:60:fb:d5:cb:36:
a1:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:92:BA:F3:F4:C0:7A:2E:DD:47:D8:8C:2B:15:B6:5A:2A:F7:DE:AD
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/c1f83a-dfc7-494d-9a4b-2a72c2858bac/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/c1f83a-dfc7-494d-9a4b-2a72c2858bac/1/spK68_TAei7dR9iMKxW2Wir33q0.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
44884
Signature Algorithm: sha256WithRSAEncryption
6d:f3:ec:b9:df:d8:7e:cc:f9:ed:70:ba:8d:59:0c:f5:dd:73:
c9:d1:9e:b8:44:12:56:95:6e:ad:08:94:3b:c8:d6:35:1f:42:
7e:23:d7:e9:5c:79:4b:63:a6:84:08:29:68:4b:30:f6:c2:ef:
03:a2:e9:86:a5:c9:cc:5e:98:59:92:be:70:52:8c:e4:3a:fc:
3a:ec:c1:b5:0d:bf:42:65:5b:0d:15:bf:fc:9f:0c:8c:32:c3:
e6:cb:12:6b:56:b3:8c:a9:43:be:fa:83:0e:d1:5b:c6:9d:c4:
6f:0e:f8:e6:e9:9d:5b:01:c3:f5:47:b5:14:d9:1a:74:36:23:
21:60:de:17:c5:dc:3c:bb:26:19:e6:39:cb:4e:0c:76:04:97:
fa:46:ba:01:94:a2:fa:87:05:c9:f7:50:33:27:86:80:8d:a0:
2e:97:72:bb:ae:46:cf:2e:ee:81:36:a4:67:05:b1:65:1b:27:
b6:7d:2b:8e:b9:42:77:f4:de:c0:5b:5e:ce:8a:4a:36:b5:0e:
47:93:7e:64:ce:99:d4:26:9e:82:24:8c:a0:aa:fa:6f:c8:27:
bd:23:4d:a8:b0:95:5d:b8:b4:d5:3e:69:ea:ea:71:3c:5d:43:
36:34:d7:58:90:df:08:ae:81:fc:24:63:f7:f9:f3:0a:6a:4f:
f1:39:87:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:22:52 2024 by rpki-client on console-fra.rpki-client.org