Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8zk0PMbVHduONjgpmhu0lfRYCSE.cer
File: 8zk0PMbVHduONjgpmhu0lfRYCSE.cer (raw, json)
Hash identifier: IHzLs6bzJzdLlTtagFh0vSsqI2sxeK9UL73KlyRw1jM=
Subject key identifier: F3:39:34:3C:C6:D5:1D:DB:8E:36:38:29:9A:1B:B4:95:F4:58:09:21
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC727474CB93354B178B7E898DDD705EC
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 22:31:29 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 205241
IP: 185.219.56.0/22
IP: 2a0b:e140::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 04 Jun 2024 23:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:27:47:4c:b9:33:54:b1:78:b7:e8:98:dd:d7:05:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 22:31:29 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f339343cc6d51ddb8e3638299a1bb495f4580921
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:25:60:5f:d2:49:fc:5e:f5:ba:05:8f:d5:47:
7d:e9:da:42:6b:e3:a0:73:10:7e:65:e6:b3:24:be:
94:62:47:af:37:44:47:01:26:a6:e5:35:39:33:fa:
24:6f:7e:73:83:59:d3:83:f1:5d:d1:66:62:63:cd:
55:a5:8b:57:c8:f5:72:31:54:2b:4c:33:7f:cc:1e:
e7:b9:29:f9:22:34:8d:52:19:22:b7:fc:9a:54:58:
12:87:fe:05:ee:cd:01:d0:e3:04:04:43:84:ef:37:
bd:74:4c:51:8a:4c:1a:5f:01:fe:68:b3:e1:cd:b4:
70:61:fa:8b:b5:56:d9:97:ea:9d:35:2a:e3:d2:b4:
c5:b1:9c:74:ab:64:98:48:1e:6e:42:13:47:aa:08:
a6:80:80:e9:1f:1c:69:3a:48:42:7d:5e:11:f5:d4:
8b:03:13:fa:f2:bc:b5:87:91:9b:4e:1f:ee:af:05:
0f:f3:9c:de:fd:2b:2a:6e:36:f9:d6:d0:dd:46:13:
fb:d3:41:e9:42:47:7c:54:e4:48:6a:91:db:4c:36:
eb:40:13:99:6d:f1:dd:6a:0f:c2:4d:e7:9f:b2:96:
40:0f:58:bc:44:a1:99:15:f3:fc:3d:12:11:17:23:
f1:ba:72:4a:c4:76:14:e3:fb:99:e6:31:11:54:69:
8a:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:39:34:3C:C6:D5:1D:DB:8E:36:38:29:9A:1B:B4:95:F4:58:09:21
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.219.56.0/22
IPv6:
2a0b:e140::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
205241
Signature Algorithm: sha256WithRSAEncryption
2a:93:2f:1d:e4:2a:8a:29:57:d6:06:7f:f7:f2:51:31:f6:04:
8d:18:5d:51:2f:bf:75:19:94:22:b0:5b:db:ab:ee:e1:23:5a:
a7:b1:d0:a4:cf:63:c4:d1:c2:be:6d:14:fd:8e:67:ff:3c:dc:
cd:13:41:f9:34:75:26:31:e2:12:eb:d9:ea:32:09:a6:bd:85:
e9:e2:a1:57:79:b4:50:0e:8e:39:45:46:d5:db:a2:f1:46:c2:
15:41:35:66:38:d2:b5:b6:5c:16:75:a6:d5:b6:fc:81:ca:e3:
4d:da:fa:76:e5:52:5c:2c:25:45:a2:7e:15:37:69:2b:86:43:
30:c9:93:be:d9:94:45:c3:9d:03:05:32:3c:69:6e:7a:9b:f2:
b4:60:22:41:9f:79:92:4b:6f:fd:7c:23:e4:51:84:7d:be:d2:
e0:ae:db:d6:d5:44:1c:76:14:19:6d:a8:b8:ef:4a:da:46:94:
92:bb:fe:16:65:0d:d9:73:98:6d:48:c3:41:d8:3d:fa:95:94:
d5:d4:2a:1e:db:19:5b:47:13:32:d7:6e:33:ad:63:03:21:ef:
08:a6:4e:f8:7a:14:a7:5c:91:e5:a9:bd:50:75:b1:6d:6a:58:
80:dc:3b:bf:4e:12:a2:cf:12:ae:d5:22:db:bf:10:1a:3b:e0:
c1:29:8a:cb
-----BEGIN CERTIFICATE-----
MIIFozCCBIugAwIBAgISAYzHJ0dMuTNUsXi36Jjd1wXsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAxMjIzMTI5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmMzM5MzQzY2M2ZDUxZGRiOGUzNjM4Mjk5YTFiYjQ5NWY0NTgwOTIxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsiVgX9JJ/F71ugWP1Ud96dpCa+Og
cxB+ZeazJL6UYkevN0RHASam5TU5M/okb35zg1nTg/Fd0WZiY81VpYtXyPVyMVQr
TDN/zB7nuSn5IjSNUhkit/yaVFgSh/4F7s0B0OMEBEOE7ze9dExRikwaXwH+aLPh
zbRwYfqLtVbZl+qdNSrj0rTFsZx0q2SYSB5uQhNHqgimgIDpHxxpOkhCfV4R9dSL
AxP68ry1h5GbTh/urwUP85ze/Ssqbjb51tDdRhP700HpQkd8VORIapHbTDbrQBOZ
bfHdag/CTeefspZAD1i8RKGZFfP8PRIRFyPxunJKxHYU4/uZ5jERVGmKAQIDAQAB
o4ICrzCCAqswHQYDVR0OBBYEFPM5NDzG1R3bjjY4KZobtJX0WAkhMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzVkLzVkZTZk
Zi1jZTRmLTRiMDktODJkMi0zNzdkMjViZTU5NGQvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNWQvNWRlNmRm
LWNlNGYtNGIwOS04MmQyLTM3N2QyNWJlNTk0ZC8xLzh6azBQTWJWSGR1T05qZ3Bt
aHUwbGZSWUNTRS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF
BwEHAQH/BB8wHTAMBAIAATAGAwQCuds4MA0EAgACMAcDBQMqC+FAMBoGCCsGAQUF
BwEIAQH/BAswCaAHMAUCAwMhuTANBgkqhkiG9w0BAQsFAAOCAQEAKpMvHeQqiilX
1gZ/9/JRMfYEjRhdUS+/dRmUIrBb26vu4SNap7HQpM9jxNHCvm0U/Y5n/zzczRNB
+TR1JjHiEuvZ6jIJpr2F6eKhV3m0UA6OOUVG1dui8UbCFUE1ZjjStbZcFnWm1bb8
gcrjTdr6duVSXCwlRaJ+FTdpK4ZDMMmTvtmURcOdAwUyPGluepvytGAiQZ95kktv
/Xwj5FGEfb7S4K7b1tVEHHYUGW2ouO9K2kaUkrv+FmUN2XOYbUjDQdg9+pWU1dQq
HtsZW0cTMtduM61jAyHvCKZO+HoUp1yR5am9UHWxbWpYgNw7v04Sos8SrtUi278Q
GjvgwSmKyw==
-----END CERTIFICATE-----
Generated at Tue Jun 4 07:53:41 2024 by rpki-client on console-ams.rpki-client.org