Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/uo2tLEoOEXpoaMjWe-EDCKZJdK0.cer
File: uo2tLEoOEXpoaMjWe-EDCKZJdK0.cer (raw, json)
Hash identifier: PILE8S4Z7yiXRIvW6b2B8iUpggeaKwUvYQ5IHzb5CWc=
Subject key identifier: BA:8D:AD:2C:4A:0E:11:7A:68:68:C8:D6:7B:E1:03:08:A6:49:74:AD
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018FA2715B23C9A87714D170A51764E1AA9A
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/0b/f3c5d8-5ea5-482e-931f-29c023f94781/1/uo2tLEoOEXpoaMjWe-EDCKZJdK0.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/0b/f3c5d8-5ea5-482e-931f-29c023f94781/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 22 May 2024 22:34:48 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 214840
IP: 2001:67c:2eb0::/48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Sep 2024 14:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:a2:71:5b:23:c9:a8:77:14:d1:70:a5:17:64:e1:aa:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: May 22 22:34:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ba8dad2c4a0e117a6868c8d67be10308a64974ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:8c:c8:59:01:1c:17:94:3c:7a:60:75:69:77:
b3:11:1a:e7:83:24:bb:d8:f8:d3:14:37:05:3a:1e:
7c:82:b4:9d:1d:26:a5:f5:88:3c:33:6e:47:13:1b:
66:0f:88:a5:23:73:e8:bb:30:7a:b3:f9:3b:88:b3:
24:47:a0:4e:57:d4:57:97:93:10:12:1b:ec:e8:e2:
a9:c6:3e:4a:b8:91:f3:c6:bc:40:4a:83:9c:5a:f7:
6c:28:19:9a:eb:97:62:23:47:9e:77:fb:d5:ba:7c:
b9:fb:f6:ff:89:6d:65:d6:45:5c:dc:e8:fc:1a:8a:
04:c8:27:93:75:90:9a:9e:b6:31:32:cd:b6:37:a0:
b3:fe:a6:55:95:e2:ec:8e:eb:55:38:8b:9c:f5:cc:
f1:83:e5:eb:fa:34:bc:63:46:c6:19:ff:22:a8:c0:
50:26:e8:0e:22:ac:1d:90:a1:02:7f:de:58:45:bb:
21:96:f1:f5:9f:7d:87:8a:6b:d1:8b:11:f4:c2:cb:
9f:20:65:12:10:73:02:9f:4b:30:8d:41:0a:83:e6:
fa:a7:93:35:d2:10:0f:cc:22:34:86:b3:86:3c:6d:
63:b2:f2:db:1d:2e:61:31:31:01:4c:04:3d:49:0a:
66:b0:cb:c7:4c:92:92:96:2e:ea:b5:1f:47:cf:73:
8f:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:8D:AD:2C:4A:0E:11:7A:68:68:C8:D6:7B:E1:03:08:A6:49:74:AD
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/f3c5d8-5ea5-482e-931f-29c023f94781/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/f3c5d8-5ea5-482e-931f-29c023f94781/1/uo2tLEoOEXpoaMjWe-EDCKZJdK0.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:2eb0::/48
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
214840
Signature Algorithm: sha256WithRSAEncryption
18:03:90:70:3b:10:23:c4:15:7f:c0:f6:4d:7e:d9:4a:c5:d7:
e6:5c:c7:d1:9d:6c:e2:d2:3d:16:d2:d1:cf:e6:e0:2e:06:c0:
3d:f9:cd:1a:00:ac:fa:b2:8a:4e:e0:7a:b8:ff:75:ff:c5:3a:
ef:de:28:62:d8:c5:a5:3b:8f:be:fa:37:b5:97:93:76:de:94:
d3:98:f7:46:0b:19:d9:24:21:b8:de:dd:12:b8:3e:fd:03:5d:
7d:d8:fa:6a:8b:88:fc:c1:86:1f:f0:6f:52:6c:bc:7f:63:e3:
66:c6:fa:20:78:f0:6e:bd:ca:a8:03:76:61:dd:ee:d6:58:ca:
95:9b:fb:0d:55:f3:6f:53:7c:a0:05:9d:95:35:91:03:30:d4:
8c:c1:21:a1:44:16:b5:10:5b:45:46:ef:ce:f9:4a:57:54:4b:
c5:ce:71:2e:39:83:7f:86:1f:e5:76:e5:ce:cb:04:51:22:67:
28:98:95:a4:6f:12:e8:e7:5a:c9:54:41:50:b0:3f:14:49:41:
e4:31:6a:09:7c:49:15:0a:4b:16:21:19:b8:68:19:b7:9d:01:
c8:1d:51:6e:81:7c:47:b3:91:96:fd:15:7e:1e:c4:3a:23:90:
c4:4b:b8:97:af:5a:07:2a:dd:35:29:64:3c:fa:ce:b2:77:b6:
cb:b6:07:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 7 21:22:57 2024 by rpki-client on console-ams.rpki-client.org