Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/yc3rMo4xh9v_I3KaSLRwVMHVGdo.cer
File: yc3rMo4xh9v_I3KaSLRwVMHVGdo.cer (raw, json)
Hash identifier: IXpLMKvWuwW0DwmqE2I9MlNIiISxvmZlbxPWAPbeyk4=
Subject key identifier: C9:CD:EB:32:8E:31:87:DB:FF:23:72:9A:48:B4:70:54:C1:D5:19:DA
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC8013FBE6FF7CF381739145E2ADEB24A
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/fd/4e8642-8889-47ad-90c0-b89aa01edc80/1/yc3rMo4xh9v_I3KaSLRwVMHVGdo.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/fd/4e8642-8889-47ad-90c0-b89aa01edc80/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 02:29:34 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 34996
IP: 193.202.18.0/24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:3f:be:6f:f7:cf:38:17:39:14:5e:2a:de:b2:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 02:29:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c9cdeb328e3187dbff23729a48b47054c1d519da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:46:41:11:3f:01:df:0b:ff:30:c9:54:51:ef:
59:2d:f1:2f:7d:bc:45:72:c3:b7:14:6f:74:ea:40:
8a:0e:ab:6a:49:44:38:cb:0f:bc:3b:e0:56:bf:a0:
89:87:87:46:3b:17:41:6a:b6:70:09:61:68:ee:30:
f7:77:a7:61:63:2b:f9:aa:5c:bb:e0:27:63:e3:4a:
9b:dd:54:2f:23:41:92:8c:41:15:4e:0b:2a:4c:d1:
a9:f9:f0:3f:8b:13:81:db:b1:48:72:82:44:11:99:
89:06:4c:bd:34:d9:1d:93:67:54:09:a3:83:8f:c0:
79:7a:62:18:27:f3:7a:10:9b:13:88:9f:28:2e:a6:
e8:77:6e:29:45:76:5a:b0:d8:59:cf:14:11:34:2b:
63:d8:9c:e7:50:a8:ea:e2:01:24:d1:c5:3f:32:c3:
8d:d6:d6:6d:73:28:ca:ab:00:1d:49:ae:9a:72:db:
af:3f:2e:bb:03:df:2e:90:eb:ea:46:9a:8d:ba:8b:
ef:7b:8a:16:99:76:01:43:4c:2d:09:bb:27:62:9d:
12:07:e0:dc:91:29:94:91:32:be:d8:2b:0d:36:b4:
18:bd:fc:74:38:2b:aa:05:4a:56:40:6d:db:44:65:
d3:7d:0b:05:17:da:b4:52:cb:d5:f0:36:b3:cb:9d:
53:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:CD:EB:32:8E:31:87:DB:FF:23:72:9A:48:B4:70:54:C1:D5:19:DA
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/4e8642-8889-47ad-90c0-b89aa01edc80/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/4e8642-8889-47ad-90c0-b89aa01edc80/1/yc3rMo4xh9v_I3KaSLRwVMHVGdo.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.202.18.0/24
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
34996
Signature Algorithm: sha256WithRSAEncryption
02:75:90:0a:bf:60:57:68:19:f7:86:f0:b4:27:ed:34:a1:4e:
61:99:57:bc:06:a6:9b:00:29:47:83:df:c6:68:d3:a7:de:0e:
eb:3c:eb:0a:45:32:81:46:98:b0:71:8d:44:36:0f:fd:80:01:
96:6a:b7:bc:9c:e5:03:9c:23:91:0c:06:e9:d9:13:9a:87:29:
3f:30:cf:92:ef:e6:56:a3:d4:cf:47:b5:43:0a:df:6b:58:41:
93:54:9d:b5:b9:ae:35:49:59:e6:ac:c2:0f:a2:2a:3a:fd:f8:
d3:47:9f:39:3d:d4:af:7c:ce:d8:2b:a3:17:d9:19:b9:f1:ed:
17:fc:5c:c4:1c:58:b9:c3:cc:33:1c:3a:78:c7:99:01:82:1f:
b6:e7:c8:6a:5b:91:04:31:97:73:1e:29:6b:79:e4:fc:41:48:
f8:b0:f0:80:2a:bc:e6:73:3c:59:b7:57:31:ba:a7:3d:44:58:
d6:d9:13:59:d0:17:35:58:e6:85:03:cb:4b:4a:1a:1b:d1:fa:
f3:30:d0:b5:eb:27:41:94:53:44:b9:03:11:fe:b7:ac:85:dd:
ce:30:8c:dd:5f:1a:4c:0c:5b:68:c7:41:1c:71:34:37:93:1a:
9a:44:37:52:9d:6b:db:27:fd:6f:c8:97:e7:8f:02:5c:5f:2e:
c3:7f:d0:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 02:32:22 2024 by rpki-client on console-ams.rpki-client.org