Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/vPI0wEREFriFL7NHh4rTdtCBjWQ.cer
File: vPI0wEREFriFL7NHh4rTdtCBjWQ.cer (raw, json)
Hash identifier: RUtWaAMXY7XTeQZhY3GDiMevwY4h+mVhUdhdgGrnuHQ=
Subject key identifier: BC:F2:34:C0:44:44:16:B8:85:2F:B3:47:87:8A:D3:76:D0:81:8D:64
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC64B8CF9A9CD0D2D114E07AA391CBE1D
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/64/bb7a7a-303f-4234-82a1-9aca7bd8ec0f/1/vPI0wEREFriFL7NHh4rTdtCBjWQ.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/64/bb7a7a-303f-4234-82a1-9aca7bd8ec0f/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 18:31:29 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 199925
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4b:8c:f9:a9:cd:0d:2d:11:4e:07:aa:39:1c:be:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 18:31:29 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bcf234c0444416b8852fb347878ad376d0818d64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:6b:0b:63:ba:fe:4f:b8:7e:f0:3a:9b:39:50:
29:98:06:0f:49:b0:80:8a:57:31:4f:ca:1a:98:1c:
5e:a2:ce:23:fc:92:b4:f2:57:84:86:f6:40:8d:1f:
7b:45:88:da:cd:d1:c2:d7:3b:49:56:9e:d5:dc:b5:
55:7b:82:7a:9b:4f:18:7e:44:72:2d:1d:fb:e4:4d:
c8:1e:f5:d6:9a:06:99:0d:94:ea:15:4c:5e:01:fd:
41:d4:6f:78:78:f0:b0:31:64:e0:c2:ac:fc:bb:10:
c1:73:61:a3:a2:a3:67:62:93:f2:d9:41:31:4c:58:
f4:9d:c4:18:51:e9:65:2b:80:a7:47:55:44:69:c8:
27:97:56:c9:5c:c1:00:61:8d:b3:11:c4:05:f6:f9:
79:71:31:f1:88:50:51:e8:e9:98:ae:a0:e0:7b:ce:
dc:41:aa:0c:7a:86:9e:29:d1:77:ae:5f:20:6d:49:
57:03:59:a1:28:b5:f3:cb:85:0f:a0:f3:46:e1:98:
52:54:65:b9:25:7a:5e:b0:de:63:88:dd:49:9e:15:
4b:03:e9:7e:bf:ee:bd:f2:b3:51:35:1e:fa:9c:30:
47:ab:24:98:38:9d:24:31:ad:c3:24:d0:2d:bd:39:
52:ec:2d:3d:1a:67:3e:54:c8:5f:7b:28:05:3c:a8:
aa:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:F2:34:C0:44:44:16:B8:85:2F:B3:47:87:8A:D3:76:D0:81:8D:64
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/bb7a7a-303f-4234-82a1-9aca7bd8ec0f/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/bb7a7a-303f-4234-82a1-9aca7bd8ec0f/1/vPI0wEREFriFL7NHh4rTdtCBjWQ.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
199925
Signature Algorithm: sha256WithRSAEncryption
3b:11:02:12:d1:20:93:f3:94:25:15:01:f4:80:89:85:a6:1e:
82:d0:a4:13:7d:77:a7:ed:7e:bc:bc:b0:e2:aa:7e:32:9b:e0:
bb:b8:34:aa:56:e2:53:50:04:38:79:ba:70:13:d4:e8:74:fe:
05:0b:bb:dd:8e:9c:d8:f3:fe:96:9a:0d:95:be:97:10:75:3a:
7c:8c:34:27:55:49:ab:f5:e6:2f:10:a5:34:fb:17:61:a1:1f:
72:56:50:0a:d9:fd:d1:3d:22:92:61:56:55:fd:f0:d3:bd:d8:
c8:cd:4d:1e:ae:05:a9:dc:d8:ac:72:ce:0b:88:80:8e:44:c1:
07:1a:a0:21:01:e3:2f:6e:e3:96:dc:11:8d:3c:b7:e4:39:d5:
a2:ee:39:1e:b4:34:22:d5:ab:15:9a:dd:42:c8:16:7e:65:83:
59:59:5d:5e:a9:7a:9c:08:02:11:29:1c:0c:34:bf:b5:46:2b:
4a:46:f3:9a:25:14:66:72:cc:0c:ee:12:d0:22:8d:12:3b:fb:
e0:aa:97:1b:d8:1e:d0:2e:f6:03:c8:e2:fd:d3:9c:e8:6e:c3:
33:61:8a:6e:ca:6d:10:4d:55:eb:ea:0b:40:e2:19:bc:99:7e:
76:0d:59:51:94:f5:c9:a2:70:d2:62:ba:57:8c:2e:5a:0f:86:
65:0a:50:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 02:18:31 2024 by rpki-client on console-ams.rpki-client.org