Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/uqp7TAHpKcOJI5gatRyXJ6H58H4.cer
File: uqp7TAHpKcOJI5gatRyXJ6H58H4.cer (raw, json)
Hash identifier: oy1mpLCU0GWcn5p/5W6MP4y+KqUIwcerTHnI3hbnRbg=
Subject key identifier: BA:AA:7B:4C:01:E9:29:C3:89:23:98:1A:B5:1C:97:27:A1:F9:F0:7E
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC3B72C415D516CB194A7890FAA9ACA21
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/0c/ab9e70-489a-4088-b28e-e68f6cf2c0d2/1/uqp7TAHpKcOJI5gatRyXJ6H58H4.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/0c/ab9e70-489a-4088-b28e-e68f6cf2c0d2/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 06:30:10 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: IP: 45.129.88.0/22
IP: 45.132.224.0/22
IP: 45.135.168.0/22
IP: 45.141.212.0/22
IP: 45.151.252.0/22
IP: 79.143.136.0/22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:b7:2c:41:5d:51:6c:b1:94:a7:89:0f:aa:9a:ca:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 06:30:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=baaa7b4c01e929c38923981ab51c9727a1f9f07e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:0c:05:53:06:29:a7:cd:6d:5a:41:93:77:a6:
3b:21:dc:97:9c:3f:08:78:b8:86:94:35:b3:89:41:
f7:06:b2:ae:88:7f:db:6a:1d:4b:6b:85:b3:f6:ee:
c5:9a:e1:b5:fe:68:42:74:f1:e8:72:ee:9d:ce:6e:
a5:b2:3a:e9:90:84:82:9e:6a:b1:e4:34:5b:8f:29:
f9:9e:7e:98:d3:28:e0:da:04:bb:80:fd:98:18:fd:
94:65:9b:c1:2c:6e:44:c4:b8:90:f5:58:31:b8:57:
a3:04:5e:cb:23:d4:e3:93:6d:1f:34:a4:8c:62:43:
43:b9:e7:84:ca:1f:c7:0e:59:c9:99:e0:6e:d4:31:
ad:30:b8:82:c1:61:59:bf:29:27:14:9d:91:33:64:
b4:32:2e:f2:ea:b9:1c:25:72:d7:58:b7:f0:8b:1f:
27:84:5a:62:f2:03:2d:0b:60:25:c4:62:bb:4d:e6:
6c:82:5c:f0:2e:2a:36:fb:a6:ba:12:45:c3:b7:15:
fc:7f:e6:d4:7e:41:5e:6a:75:a4:ba:5e:af:3f:5c:
a9:cf:7f:c4:b0:dc:c4:65:0e:1b:70:47:b3:45:40:
ab:b3:d4:0a:36:94:23:54:e5:84:c0:30:02:c8:0b:
24:58:c5:94:32:79:63:df:bf:af:b2:4b:b4:fa:28:
d4:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:AA:7B:4C:01:E9:29:C3:89:23:98:1A:B5:1C:97:27:A1:F9:F0:7E
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ab9e70-489a-4088-b28e-e68f6cf2c0d2/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ab9e70-489a-4088-b28e-e68f6cf2c0d2/1/uqp7TAHpKcOJI5gatRyXJ6H58H4.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.88.0/22
45.132.224.0/22
45.135.168.0/22
45.141.212.0/22
45.151.252.0/22
79.143.136.0/22
Signature Algorithm: sha256WithRSAEncryption
9f:b7:47:77:48:e7:0c:a9:48:95:c3:95:87:16:77:1e:6d:f7:
da:c9:39:ad:af:d7:25:c3:c3:9f:02:48:06:9b:cf:bf:f5:39:
47:ca:cf:42:e4:35:53:eb:5b:c6:bd:7d:33:b9:0d:13:8a:ca:
e3:f8:21:6d:4d:71:49:fe:7a:5d:f5:0c:d2:12:f8:02:99:6e:
39:1e:06:c0:f6:bc:31:d4:93:2b:64:80:8f:00:1d:e8:9a:39:
ae:fc:15:a9:22:42:b6:81:88:de:7e:b3:d4:06:00:98:87:a0:
79:75:23:f6:26:69:40:b3:be:81:06:8b:6f:7a:2f:47:a7:f7:
b6:75:ed:f4:dd:57:0e:2e:38:70:b3:b3:ef:43:34:3b:6a:0b:
29:0f:4a:61:8b:e2:ee:17:79:ef:78:9e:c5:ef:6b:be:52:9c:
27:6a:52:f0:64:f4:25:69:20:ab:cb:64:93:bf:8b:9e:15:1f:
99:be:0c:8a:fb:26:12:c8:12:d1:f9:00:1a:76:aa:40:ed:4a:
a0:e5:b2:0a:a9:54:ac:c7:be:69:60:6b:af:fa:fd:f1:40:05:
fd:97:33:16:76:62:87:0c:c0:be:dc:78:6d:ab:18:ce:97:86:
ac:bc:a7:01:ec:a2:ad:b1:7d:22:22:be:d4:1b:99:a0:23:28:
0f:0f:23:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 10:14:45 2024 by rpki-client on console-ams.rpki-client.org