Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/wG58T5yeENz1WfUItDiRV1zmvLU.cer
File: wG58T5yeENz1WfUItDiRV1zmvLU.cer (raw, json)
Hash identifier: sR0pdwzn2rUWNMzhzM/yy1U3T8YYlM8uuban1U97xmc=
Subject key identifier: C0:6E:7C:4F:9C:9E:10:DC:F5:59:F5:08:B4:38:91:57:5C:E6:BC:B5
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC3B6D0D52BD9A22FCAE479BD697A90AE
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/67/05d76f-dedc-4813-8fbc-bf8fb7b39bda/1/wG58T5yeENz1WfUItDiRV1zmvLU.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/67/05d76f-dedc-4813-8fbc-bf8fb7b39bda/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 06:29:47 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 48024
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:b6:d0:d5:2b:d9:a2:2f:ca:e4:79:bd:69:7a:90:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 06:29:47 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c06e7c4f9c9e10dcf559f508b43891575ce6bcb5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:da:df:1b:10:38:e9:88:93:e9:60:3b:e5:ee:
c4:b5:14:89:de:dc:20:b4:73:1f:e0:a1:20:1d:de:
46:10:49:aa:58:a1:e5:82:fd:9b:59:d8:f3:60:8a:
8a:a4:37:51:3c:b7:02:50:84:e8:07:2f:18:c8:99:
a3:28:74:e1:b5:43:98:5e:72:a9:cd:a1:79:66:50:
e3:b9:09:57:e7:b8:06:09:46:d6:df:a3:3c:84:be:
92:72:67:45:aa:fd:3c:22:af:b6:ac:bc:78:df:ae:
46:c6:86:40:5f:72:85:7e:14:bf:62:26:b6:7a:b8:
33:65:f9:76:35:39:a8:22:21:13:f5:18:86:0f:87:
0d:68:fb:db:63:75:66:ea:46:d6:03:30:ef:e8:3c:
91:6e:5d:b3:7c:7a:b9:f0:cb:4c:c9:a9:08:cb:03:
a5:28:df:0a:c0:72:b9:57:57:85:c4:d0:ee:0e:46:
cc:0e:68:8e:a0:ba:b7:a4:29:49:22:31:6e:fc:56:
cb:34:62:bf:38:c8:44:36:91:69:31:22:8c:53:b4:
b4:68:b7:95:d4:bd:91:f5:e2:54:39:f8:03:08:7c:
73:11:bb:8e:e7:5d:7b:9d:ac:6b:4a:2c:0e:66:0d:
16:e4:4d:00:a2:8d:35:f5:85:b2:70:2a:a7:b6:c3:
4b:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:6E:7C:4F:9C:9E:10:DC:F5:59:F5:08:B4:38:91:57:5C:E6:BC:B5
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/05d76f-dedc-4813-8fbc-bf8fb7b39bda/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/05d76f-dedc-4813-8fbc-bf8fb7b39bda/1/wG58T5yeENz1WfUItDiRV1zmvLU.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
48024
Signature Algorithm: sha256WithRSAEncryption
33:d6:c9:57:d6:f7:a4:7c:fe:fd:dd:76:40:fb:50:30:f8:6d:
d8:78:c6:11:19:94:67:bb:4a:ab:fc:1c:59:db:c4:95:15:90:
c6:85:b8:13:7c:33:ba:ee:79:7a:2f:56:c0:e6:cd:15:7d:b5:
af:82:e4:54:d7:20:91:71:f1:4c:aa:96:5b:84:4d:f0:13:59:
cc:4a:7a:44:cf:75:0a:72:b9:ff:28:6c:98:3b:3c:e1:9a:1c:
32:b5:fe:55:32:a4:ef:c2:79:78:8c:5e:ed:ab:7d:5e:07:37:
e1:49:43:24:d4:33:c2:16:68:31:2a:19:68:c8:78:cf:c6:96:
c1:d8:97:42:a1:d3:ce:24:bb:9a:41:33:d1:f7:4a:69:a6:d4:
00:a1:b3:4a:fe:9f:92:ab:bc:07:56:93:9a:54:be:94:fa:af:
16:10:3c:e4:8d:76:8c:3a:dc:7f:1f:5e:d3:ed:9d:8e:1a:9a:
36:f6:f0:0d:68:cd:5b:d6:3f:13:a5:fe:48:54:e2:2c:6f:9f:
4f:0b:be:de:0b:3d:36:69:76:b0:c8:d9:28:82:77:3d:9a:cd:
7b:d8:1d:24:01:3f:f7:02:0e:d4:4d:74:76:d2:34:66:5b:6d:
77:9b:93:85:5d:3e:4e:77:e7:b4:47:c5:23:5a:c5:b3:10:ac:
a4:bf:03:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:43:42 2024 by rpki-client on console-ams.rpki-client.org