Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/tVz-dxzyhP7o0MJ7vPEd4YeczEE.cer
File: tVz-dxzyhP7o0MJ7vPEd4YeczEE.cer (raw, json)
Hash identifier: NzaDW9HRFpCWuQMKiOhIOXiXD0Mz7L/okpHEtR6tBH0=
Subject key identifier: B5:5C:FE:77:1C:F2:84:FE:E8:D0:C2:7B:BC:F1:1D:E1:87:9C:CC:41
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC56E6E679EA0D8A4F97154C1123D32E2
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/97/844405-7a8f-4232-95b8-65c928c7b0bf/1/tVz-dxzyhP7o0MJ7vPEd4YeczEE.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/97/844405-7a8f-4232-95b8-65c928c7b0bf/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 14:29:57 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 48987
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:6e:67:9e:a0:d8:a4:f9:71:54:c1:12:3d:32:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 14:29:57 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b55cfe771cf284fee8d0c27bbcf11de1879ccc41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:84:e9:a1:02:a2:8e:7c:9a:50:49:ef:22:6f:
d7:0d:b1:25:15:fe:d3:93:39:71:ac:af:ec:b0:de:
71:13:65:68:d9:d6:61:40:09:12:96:c3:60:29:1c:
24:09:07:dc:ce:2b:67:f7:23:d6:40:5a:23:c2:87:
69:38:02:0f:40:b3:1e:dd:4b:a5:f5:24:9a:24:7a:
58:bd:cd:ce:63:7b:c1:a0:aa:1a:a8:1c:a6:18:61:
b5:b1:45:20:65:9e:6d:47:ca:98:26:fe:10:09:c3:
11:a5:d9:00:56:a7:75:44:77:69:3f:82:51:c2:dd:
56:20:15:d2:ac:75:49:29:f0:ed:55:de:41:1f:00:
74:2b:f5:1c:9e:c8:5a:89:c8:f3:ea:20:7f:da:c4:
e2:e5:18:d1:1d:56:88:a2:0b:76:18:98:9f:3b:d1:
68:8c:e6:6b:25:47:a0:6d:0c:2a:5f:c5:a9:3c:d4:
d1:35:99:5a:76:7e:fd:93:8c:6d:fc:69:84:02:5d:
01:27:75:d0:b7:26:aa:f2:4c:0c:cb:b4:6b:60:70:
6c:36:f8:da:c7:1a:25:fa:a9:e9:53:d8:95:41:4d:
a7:6b:2a:49:ad:d8:51:80:8d:06:f6:f7:58:e2:49:
61:aa:f9:cb:6b:65:f6:d2:f2:c5:c6:a2:e9:b6:66:
17:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:5C:FE:77:1C:F2:84:FE:E8:D0:C2:7B:BC:F1:1D:E1:87:9C:CC:41
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/844405-7a8f-4232-95b8-65c928c7b0bf/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/844405-7a8f-4232-95b8-65c928c7b0bf/1/tVz-dxzyhP7o0MJ7vPEd4YeczEE.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
48987
Signature Algorithm: sha256WithRSAEncryption
07:39:fa:b2:13:d1:76:fa:5c:71:6c:6e:3a:52:da:e5:fc:d5:
bd:15:e8:86:31:05:0b:15:31:4e:ef:c5:d7:aa:64:84:d7:d9:
a7:ad:81:b7:0b:5e:1f:59:c9:13:57:a6:a2:90:79:41:37:d2:
2d:54:50:ff:ce:fa:cd:61:e0:57:ee:99:a2:c5:16:9f:f6:f7:
14:0b:18:08:8c:29:b6:bf:f5:0e:6e:0a:a4:38:0a:cb:3b:2d:
d4:97:40:0c:25:38:de:54:73:51:67:78:bf:47:83:93:a2:75:
20:e6:2d:87:2d:e6:29:ba:03:99:22:3e:49:bc:2e:fc:8e:01:
3c:91:51:ac:e9:a1:e6:a2:ac:7f:99:83:85:1f:80:22:e3:86:
f4:c4:25:8c:23:75:ce:b5:b7:41:37:7e:4c:70:1f:bf:b2:ca:
dc:bc:80:f5:c2:25:0f:fd:09:38:66:3e:86:31:7f:da:ae:9a:
49:79:fd:e3:40:fa:0d:0f:c9:89:3a:eb:b2:61:ac:b2:47:2d:
bd:1b:ea:56:a7:14:e0:54:de:37:2b:18:52:8e:c5:fe:24:5b:
be:51:21:91:0b:4d:39:5c:96:99:22:e8:7b:a3:b7:47:47:65:
d5:c9:1f:83:71:e6:fe:79:f0:fc:74:a5:d4:59:1c:82:21:21:
14:8a:a1:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:43:21 2024 by rpki-client on console-ams.rpki-client.org