Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/tLB5uhPORqvsf1vD893Ni7hnWQU.cer
File: tLB5uhPORqvsf1vD893Ni7hnWQU.cer (raw, json)
Hash identifier: 6PD1LR9rmnyX23JlPzweTMk8ucFew5oxdTUR0rn5F4Y=
Subject key identifier: B4:B0:79:BA:13:CE:46:AB:EC:7F:5B:C3:F3:DD:CD:8B:B8:67:59:05
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC794AE166CDB6C9B9952BFC89B66D978
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/fd/d46a81-3735-42c6-9bbb-1d1799b59c99/1/tLB5uhPORqvsf1vD893Ni7hnWQU.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/fd/d46a81-3735-42c6-9bbb-1d1799b59c99/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 00:30:59 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 56670
IP: 91.194.220.0/23
IP: 194.165.12.0/23
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:94:ae:16:6c:db:6c:9b:99:52:bf:c8:9b:66:d9:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 00:30:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b4b079ba13ce46abec7f5bc3f3ddcd8bb8675905
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:55:29:90:a3:42:dc:69:83:48:c2:8e:d8:c9:
22:1c:5e:71:55:f4:bb:c5:c0:de:38:26:7f:e9:db:
01:66:63:37:9d:a1:e6:4f:e0:c7:61:99:aa:17:6d:
ba:2f:ad:68:0d:d7:f5:8e:d9:cf:da:82:52:bd:73:
11:23:eb:e4:d1:64:7e:3b:f9:0a:9f:4c:ac:31:a3:
14:88:a0:e4:20:62:9c:ed:0f:f7:91:23:4d:6c:81:
40:18:15:ee:3c:12:73:e1:e1:66:ce:99:cc:67:cb:
47:73:2a:61:0a:21:05:c1:67:73:84:75:e2:ff:d2:
42:ba:e2:a6:4c:b1:aa:a6:61:a3:55:89:93:bc:b2:
48:c0:fc:5d:91:a2:be:a3:cf:06:3e:1c:b8:55:3f:
b7:8f:27:5b:90:b4:e2:61:6e:3e:12:32:af:2e:b7:
00:5e:6f:31:67:9d:f8:49:bd:6a:c2:b1:a6:3c:8f:
93:7c:4e:63:ef:6d:32:b7:6b:9a:dd:a7:70:67:f5:
31:28:8d:bb:78:1f:85:94:fe:30:4f:72:da:58:2e:
82:dd:d9:c6:7b:69:87:ad:e9:51:99:fd:e7:66:05:
ec:a7:ec:a0:d7:df:a9:5b:24:82:39:98:ce:61:53:
38:8a:d6:43:f3:68:d0:af:92:77:49:a0:d1:6c:f2:
3b:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:B0:79:BA:13:CE:46:AB:EC:7F:5B:C3:F3:DD:CD:8B:B8:67:59:05
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/d46a81-3735-42c6-9bbb-1d1799b59c99/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/d46a81-3735-42c6-9bbb-1d1799b59c99/1/tLB5uhPORqvsf1vD893Ni7hnWQU.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.194.220.0/23
194.165.12.0/23
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
56670
Signature Algorithm: sha256WithRSAEncryption
72:9e:dc:b1:ef:20:66:a6:3d:3a:bc:9e:6d:0f:8c:e7:fb:b7:
a9:37:09:ff:12:5a:db:2f:a9:eb:c1:0a:d5:38:3f:3c:78:43:
dc:0c:7c:14:82:8c:cf:1d:8e:16:07:d6:14:b9:ef:0b:65:a4:
63:4b:e0:53:d4:aa:90:ff:bc:31:0f:a2:76:fd:bf:d2:e9:0c:
09:17:73:d0:dc:a9:d7:0c:7f:93:08:a0:a0:be:00:68:2a:de:
dc:fe:4c:c8:67:20:c7:82:61:a6:c0:8c:69:7c:4b:08:39:d1:
90:a6:e5:50:4c:91:76:3d:0e:68:82:4e:b8:48:e8:d9:69:55:
6e:12:72:a8:aa:69:40:c8:8a:f5:cb:d4:f0:06:5c:7b:d1:a2:
c9:48:22:30:af:6b:de:53:9e:6e:c4:fc:70:dc:ef:19:86:10:
0c:7c:ba:55:f2:8f:41:8b:dc:73:8a:ee:18:58:83:42:45:50:
66:9d:42:3a:cd:4b:c6:2f:c3:2f:94:20:b1:79:7e:50:ed:b7:
be:01:8d:9f:28:44:79:a0:bb:65:69:8e:58:6e:0a:e7:3a:4a:
29:4b:47:0a:57:61:78:b7:9b:c8:73:c9:a6:bc:99:61:38:47:
64:47:ee:61:d1:44:01:8a:9a:94:d4:6b:18:ba:78:1b:91:e5:
3b:e7:b5:f2
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Fri May 3 02:17:13 2024 by rpki-client on console-ams.rpki-client.org