Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/vUh_IQcgLRkC1QvMJylDHZmTVUM.cer
File: vUh_IQcgLRkC1QvMJylDHZmTVUM.cer (raw, json)
Hash identifier: WJ8WcYS6viPG9+bvFwq+yUykACc1XYJecNlhXCINylQ=
Subject key identifier: BD:48:7F:21:07:20:2D:19:02:D5:0B:CC:27:29:43:1D:99:93:55:43
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC348ABDA0371AB6AC0D83DD4C0026433
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/86/517d29-f736-4fbc-9d13-6fdda61b50d7/1/vUh_IQcgLRkC1QvMJylDHZmTVUM.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/86/517d29-f736-4fbc-9d13-6fdda61b50d7/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 04:29:28 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 209267
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:48:ab:da:03:71:ab:6a:c0:d8:3d:d4:c0:02:64:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 04:29:28 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bd487f2107202d1902d50bcc2729431d99935543
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:45:43:23:b5:d2:09:53:8c:cd:42:d7:d4:9a:
65:74:f9:b2:57:21:35:51:55:a4:89:6f:80:29:5a:
66:68:a9:f4:03:f8:fa:40:ec:4d:44:9a:f4:6c:ff:
bf:f3:53:b8:c8:23:50:72:08:47:38:6d:75:1e:f0:
05:5f:b4:22:b5:27:d7:0e:1c:23:47:2f:0a:ec:ef:
d1:f3:d4:b3:a1:fe:2c:a5:83:8f:db:9d:26:11:da:
aa:1a:2c:7b:b0:b4:d1:76:5f:95:77:15:d2:5b:62:
04:7d:24:3a:2f:7e:ab:c1:6c:74:9d:ba:bf:ab:6a:
c4:6e:05:8c:15:4a:81:5a:f5:9c:dc:95:af:85:2d:
8e:ba:d5:b3:76:bd:4b:39:ea:40:21:28:cd:5f:4a:
8a:e6:bb:68:ae:a0:be:e6:c4:43:6e:a4:e1:40:e9:
c7:76:4c:b6:6f:db:e8:96:cf:92:66:90:e9:59:77:
3b:cc:66:98:4d:9e:e7:f8:36:f5:7f:77:f3:ab:94:
c0:61:72:cc:7a:04:5d:97:5a:31:ce:6a:51:29:70:
e9:b6:b4:32:41:c5:67:95:37:36:9d:0b:f1:df:80:
49:a0:4a:c1:6b:1f:fc:d5:9e:cb:8b:f3:a5:86:cb:
4a:28:f2:bd:42:f2:b9:99:65:b9:43:ab:e2:db:c6:
b4:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:48:7F:21:07:20:2D:19:02:D5:0B:CC:27:29:43:1D:99:93:55:43
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/517d29-f736-4fbc-9d13-6fdda61b50d7/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/517d29-f736-4fbc-9d13-6fdda61b50d7/1/vUh_IQcgLRkC1QvMJylDHZmTVUM.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
209267
Signature Algorithm: sha256WithRSAEncryption
47:48:b5:71:55:e2:55:6d:37:83:5f:78:48:78:ba:44:91:5a:
8e:1d:a3:69:b4:d3:82:98:dd:3f:82:92:b4:c0:98:a3:17:e7:
9b:ff:b2:c8:04:bb:d8:ac:78:f2:73:02:60:66:ff:79:96:26:
da:db:e7:22:19:db:f9:41:57:d8:d8:0a:5e:05:6e:64:b4:42:
94:49:29:f7:8a:a6:a2:33:dd:9e:ed:c4:c0:78:03:58:c9:0f:
3d:a7:83:aa:7e:dc:83:31:15:d5:e7:e6:56:24:c1:80:6e:91:
d8:f6:74:e2:57:71:48:45:28:95:ff:bf:38:bc:69:9d:92:8c:
25:5d:70:6d:25:79:ad:a3:07:82:79:4d:d7:95:4b:e1:10:f8:
6d:dd:d0:bd:2c:f5:45:ad:32:f2:e3:63:c4:bb:e7:f4:fc:29:
cd:f4:b7:30:2f:f3:df:f7:51:67:96:7d:8c:4c:c6:29:31:d6:
de:66:bc:f9:e1:df:df:d2:c0:df:7a:7f:48:97:c1:b4:d4:37:
95:f6:ef:64:aa:d8:8d:8a:a6:0a:24:fd:2e:51:59:92:bf:cb:
98:ec:4b:7a:4c:d2:df:7b:3b:03:09:b1:e0:ff:3c:fb:d6:90:
81:6b:67:95:51:0d:6e:45:5a:33:5b:0d:ca:b3:f0:e9:03:99:
36:db:9c:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 07:33:56 2024 by rpki-client on console-ams.rpki-client.org