Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/xorAnHI17TE4Ph_ThzkY3RgzNCo.cer
File: xorAnHI17TE4Ph_ThzkY3RgzNCo.cer (raw, json)
Hash identifier: UMTcg3Mzyw4HDzUEndXUNerdpoUWZ9yRQ3s58j2BXn8=
Subject key identifier: C6:8A:C0:9C:72:35:ED:31:38:3E:1F:D3:87:39:18:DD:18:33:34:2A
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018D10FD0DE5C5703127647277B0EA9D2504
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/9a/492bd0-993b-476e-8fac-9de48d43b1db/1/xorAnHI17TE4Ph_ThzkY3RgzNCo.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/9a/492bd0-993b-476e-8fac-9de48d43b1db/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 16 Jan 2024 06:37:16 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 209515
IP: 91.132.16.0/22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:10:fd:0d:e5:c5:70:31:27:64:72:77:b0:ea:9d:25:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 16 06:37:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c68ac09c7235ed31383e1fd3873918dd1833342a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:60:d7:59:2b:7c:30:33:a1:09:54:a8:ac:32:
be:15:70:88:26:87:c4:2b:b0:49:62:8f:46:1d:78:
40:70:6c:cf:31:2f:b9:4f:4c:2f:30:af:da:ff:85:
07:b1:42:bb:2d:f4:93:be:5b:32:00:0d:99:b7:ef:
f6:ed:82:9b:5a:87:8b:1c:f2:4f:6b:2a:08:10:49:
ce:0b:b5:96:9c:71:ae:c0:f2:73:e0:b5:66:7c:1c:
57:e1:04:30:ee:3b:90:6e:98:3f:d5:68:13:af:5c:
df:3a:c6:59:6e:88:23:11:32:23:71:84:b9:4c:b2:
20:ae:fc:83:fe:8c:c1:7e:1a:9b:94:a9:c0:95:53:
72:63:16:65:4a:28:9b:dc:93:0b:1b:40:48:3a:cf:
89:9b:27:cb:b6:89:3f:ba:d7:f0:7c:b5:c6:62:b6:
be:20:70:fb:7e:fd:6d:67:8f:a6:2f:ae:23:c2:9b:
31:13:02:61:15:bc:9b:43:fb:6e:07:c5:bf:3c:db:
21:82:5d:a0:0d:6b:f0:2b:7e:90:10:82:da:14:28:
6e:21:f9:26:f7:1c:56:05:4c:13:f7:db:41:2b:6b:
41:8c:fe:bc:40:d0:b5:39:be:65:6e:ba:5c:c6:9c:
ab:87:d5:7e:b3:e3:86:56:90:22:91:47:48:ea:07:
f9:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:8A:C0:9C:72:35:ED:31:38:3E:1F:D3:87:39:18:DD:18:33:34:2A
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/492bd0-993b-476e-8fac-9de48d43b1db/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/492bd0-993b-476e-8fac-9de48d43b1db/1/xorAnHI17TE4Ph_ThzkY3RgzNCo.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.132.16.0/22
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
209515
Signature Algorithm: sha256WithRSAEncryption
9a:14:36:cf:bc:eb:d4:14:61:f0:b3:16:a0:11:ac:be:cd:cf:
f0:2f:6a:6a:6d:39:90:14:6d:97:b1:0a:20:2c:d3:a1:0b:cf:
9b:28:9c:1f:0a:79:4e:09:ef:4e:e0:4a:ed:a0:bc:6c:49:60:
e3:89:80:58:8c:5c:43:13:c1:d1:1d:29:40:75:12:b1:87:e9:
c7:58:3f:d4:4a:ec:44:1c:6d:a7:2c:2c:24:ff:cc:b8:f7:a8:
9e:14:cd:0c:2a:74:d3:1d:89:5b:4a:4b:12:58:57:63:41:9e:
05:0e:88:a1:4c:42:e2:c0:5d:73:14:48:7b:2b:78:95:7b:7e:
18:93:f4:fd:7a:c2:68:fe:36:fc:61:2f:61:95:af:e0:22:3d:
1a:a7:14:bf:5a:c5:32:b7:81:9a:ed:e2:a9:b1:32:f3:c2:a2:
20:e1:bf:e9:e6:36:f6:6c:e2:44:fa:da:4e:50:94:e9:29:2d:
44:be:3f:bd:b1:04:d9:59:44:81:b0:0f:3b:f6:2d:bb:a0:fb:
83:33:36:f0:4d:d7:f5:6a:1f:ce:7a:67:9b:1c:23:ce:2d:92:
6e:1d:68:69:ad:37:03:05:e0:96:c2:b8:fa:5e:d1:96:61:b7:
be:b8:f6:8e:f5:96:39:97:f2:ed:6f:dc:94:47:46:4e:31:9d:
11:6f:78:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 03:51:17 2024 by rpki-client on console-fra.rpki-client.org