Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/k6EPqeyo7I3dXhJUJkOOjfjIerw.cer
File: k6EPqeyo7I3dXhJUJkOOjfjIerw.cer (raw, json)
Hash identifier: lo01uT9SYpJJ9OO65VvoxjbspYO5fUf8JsSmDFpfPds=
Subject key identifier: 93:A1:0F:A9:EC:A8:EC:8D:DD:5E:12:54:26:43:8E:8D:F8:C8:7A:BC
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CCA96F81BE8E2A5E53054C59EEF3CBDC7
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/22/85e00e-d9ae-4074-9662-48790f600c64/1/k6EPqeyo7I3dXhJUJkOOjfjIerw.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/22/85e00e-d9ae-4074-9662-48790f600c64/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 14:32:20 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 57219
AS: 205995
IP: 185.1.91.0/24
IP: 185.198.16.0/22
IP: 2001:7f8:b3::/48
IP: 2a0a:8240::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 23 May 2024 14:15:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:96:f8:1b:e8:e2:a5:e5:30:54:c5:9e:ef:3c:bd:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 14:32:20 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=93a10fa9eca8ec8ddd5e125426438e8df8c87abc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:0c:e7:4e:c1:1a:d6:16:3a:e5:a1:2b:f5:1f:
24:37:fb:3f:04:21:7b:74:ef:54:81:89:46:d6:e2:
2b:3b:95:87:a7:8c:e3:44:f8:dc:d3:e6:e7:3c:5c:
95:cd:9c:25:dc:f7:a7:1c:9b:0d:25:62:65:a7:4d:
90:48:47:4a:ec:07:64:e5:eb:34:f3:48:0b:d9:e2:
6e:99:c0:bd:cd:11:a5:cf:e7:bd:1a:07:ee:d7:a9:
60:9d:c0:78:a1:81:76:88:8c:ed:df:2d:c7:00:fd:
8a:37:27:7b:83:05:88:cd:a6:49:1e:83:6d:cf:04:
87:db:79:bb:d5:79:11:e5:6f:aa:82:4a:38:60:33:
67:1d:af:1a:36:d5:a6:95:3e:36:60:de:1b:3c:61:
43:72:74:ba:a2:8b:9f:54:78:f5:c6:17:15:b5:be:
38:06:3c:17:93:dd:87:d1:ef:03:61:4a:da:6a:4e:
27:80:39:98:a9:30:01:97:ab:bb:eb:50:3a:3d:58:
3e:82:86:1a:36:fc:e2:d5:2c:52:1d:59:46:6b:d7:
a8:57:05:91:47:da:a0:20:1f:c7:6f:34:b2:1a:5e:
16:30:59:bd:b3:06:f7:3f:7e:ce:3a:93:50:f6:d2:
33:e5:37:01:d3:9c:83:6d:dc:59:6c:59:95:2b:71:
fa:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:A1:0F:A9:EC:A8:EC:8D:DD:5E:12:54:26:43:8E:8D:F8:C8:7A:BC
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/85e00e-d9ae-4074-9662-48790f600c64/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/85e00e-d9ae-4074-9662-48790f600c64/1/k6EPqeyo7I3dXhJUJkOOjfjIerw.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.1.91.0/24
185.198.16.0/22
IPv6:
2001:7f8:b3::/48
2a0a:8240::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
57219
205995
Signature Algorithm: sha256WithRSAEncryption
1f:be:c9:7d:92:f2:ad:a7:1b:20:08:8e:a1:c5:e0:2e:97:19:
a2:ce:12:4f:b4:e0:57:c7:8a:66:f8:b3:54:ae:26:0d:1a:64:
d1:d4:58:8d:0e:7a:c5:c5:cd:4d:85:66:26:b8:ae:f2:d1:63:
3a:90:a4:7d:58:b2:ad:b2:b2:b2:dd:24:5e:20:d6:f8:68:61:
80:bc:be:b6:de:56:86:67:e7:9b:45:07:02:f7:16:6a:f4:09:
9e:89:77:79:c6:9f:fc:3d:f6:02:43:a6:d8:b9:ac:44:2f:a8:
38:33:28:01:b2:c8:23:71:d3:80:87:88:80:8e:e8:77:db:e1:
79:af:eb:6c:c1:ed:5d:26:4f:a8:a1:bf:39:c0:d9:06:2f:99:
ee:f3:2d:76:c4:9a:fd:44:08:3c:0b:d7:75:cc:19:6f:08:bd:
66:9c:16:16:79:29:08:34:d1:74:5f:0d:41:11:99:03:73:b4:
a3:a3:02:bb:4d:4e:0e:c6:f5:3e:f0:11:bc:1a:99:b7:a5:26:
3a:68:d8:a4:d2:ef:83:04:fa:a1:4b:cb:09:bd:4b:4f:72:d3:
0b:70:b6:17:0c:b2:dd:3a:d2:98:d5:f3:21:ff:c3:b3:de:d3:
a6:b3:5d:3f:56:27:28:a5:af:6b:d6:c4:a8:fe:94:f4:fc:5d:
41:b7:a0:e2
-----BEGIN CERTIFICATE-----
MIIFtzCCBJ+gAwIBAgISAYzKlvgb6OKl5TBUxZ7vPL3HMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAyMTQzMjIwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5M2ExMGZhOWVjYThlYzhkZGQ1ZTEyNTQyNjQzOGU4ZGY4Yzg3YWJjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnwznTsEa1hY65aEr9R8kN/s/BCF7
dO9UgYlG1uIrO5WHp4zjRPjc0+bnPFyVzZwl3PenHJsNJWJlp02QSEdK7Adk5es0
80gL2eJumcC9zRGlz+e9Ggfu16lgncB4oYF2iIzt3y3HAP2KNyd7gwWIzaZJHoNt
zwSH23m71XkR5W+qgko4YDNnHa8aNtWmlT42YN4bPGFDcnS6ooufVHj1xhcVtb44
BjwXk92H0e8DYUraak4ngDmYqTABl6u761A6PVg+goYaNvzi1SxSHVlGa9eoVwWR
R9qgIB/HbzSyGl4WMFm9swb3P37OOpNQ9tIz5TcB05yDbdxZbFmVK3H6GQIDAQAB
o4ICwzCCAr8wHQYDVR0OBBYEFJOhD6nsqOyN3V4SVCZDjo34yHq8MB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzIyLzg1ZTAw
ZS1kOWFlLTQwNzQtOTY2Mi00ODc5MGY2MDBjNjQvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjIvODVlMDBl
LWQ5YWUtNDA3NC05NjYyLTQ4NzkwZjYwMGM2NC8xL2s2RVBxZXlvN0kzZFhoSlVK
a09PamZqSWVydy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMD0GCCsGAQUF
BwEHAQH/BC4wLDASBAIAATAMAwQAuQFbAwQCucYQMBYEAgACMBADBwAgAQf4ALMD
BQMqCoJAMB8GCCsGAQUFBwEIAQH/BBAwDqAMMAoCAwDfgwIDAySrMA0GCSqGSIb3
DQEBCwUAA4IBAQAfvsl9kvKtpxsgCI6hxeAulxmizhJPtOBXx4pm+LNUriYNGmTR
1FiNDnrFxc1NhWYmuK7y0WM6kKR9WLKtsrKy3SReINb4aGGAvL623laGZ+ebRQcC
9xZq9AmeiXd5xp/8PfYCQ6bYuaxEL6g4MygBssgjcdOAh4iAjuh32+F5r+tswe1d
Jk+oob85wNkGL5nu8y12xJr9RAg8C9d1zBlvCL1mnBYWeSkINNF0Xw1BEZkDc7Sj
owK7TU4OxvU+8BG8Gpm3pSY6aNik0u+DBPqhS8sJvUtPctMLcLYXDLLdOtKY1fMh
/8Oz3tOms10/Vicopa9r1sSo/pT0/F1Bt6Di
-----END CERTIFICATE-----
Generated at Thu May 23 01:13:08 2024 by rpki-client on console-ams.rpki-client.org