Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1-DJywMMtsATwePh0uZ2poLfmOv0.cer
File: 1-DJywMMtsATwePh0uZ2poLfmOv0.cer (raw, json)
Hash identifier: Lmau+K/RuOb9bH/qJ55Gn3pyT1IOIZGg9+sZbO07D4k=
Subject key identifier: F8:32:72:C0:C3:2D:B0:04:F0:78:F8:74:B9:9D:A9:A0:B7:E6:3A:FD
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018EE681429BB93EB7C0020DC5CA2194E538
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/93/94a1e0-c180-4baf-9ea0-f67e7078878e/1/1-DJywMMtsATwePh0uZ2poLfmOv0.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/93/94a1e0-c180-4baf-9ea0-f67e7078878e/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 16 Apr 2024 10:43:34 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 215091
IP: 77.72.87.0/24
IP: 2a11:dd00::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:e6:81:42:9b:b9:3e:b7:c0:02:0d:c5:ca:21:94:e5:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Apr 16 10:43:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f83272c0c32db004f078f874b99da9a0b7e63afd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:85:7e:0b:ef:ea:93:1a:8c:fb:a4:be:9e:8a:
50:cb:d5:74:33:21:0a:38:58:b1:18:2f:35:3f:70:
30:bb:8a:3d:3f:eb:f4:05:57:04:3a:75:6e:15:e0:
01:69:91:94:9d:cc:09:79:fa:32:5b:0a:85:ec:4a:
8b:3b:8e:9a:31:dc:5d:8f:ef:b2:86:12:c6:c8:06:
f5:0e:32:46:d5:34:4c:c4:22:d4:23:67:6c:6e:51:
84:bd:3d:6e:bc:e1:d8:e1:c3:0d:f6:4d:d3:b1:fc:
e2:0f:50:27:86:05:0e:56:5a:e7:9f:29:82:6b:2b:
73:4e:22:c9:37:fa:08:f5:f8:f5:72:b5:cc:8d:07:
79:a6:5c:1c:50:0e:d8:c4:d1:a4:69:c5:78:c0:e5:
5d:f1:f2:70:31:13:9d:78:2a:80:ab:20:22:44:7c:
c7:42:9f:4e:65:d4:30:1a:1b:74:12:1a:45:92:9d:
cb:f7:fa:5c:87:28:99:03:fe:b7:e7:f1:91:91:f9:
e7:ca:a9:ad:fc:40:e2:5a:a8:c5:98:bb:4a:dd:ee:
2c:d7:7f:21:73:ca:62:54:de:c7:84:db:99:ac:55:
68:a6:b2:5a:b6:9b:34:5d:ae:93:05:b6:06:e6:5b:
f5:bd:c9:c6:8b:8f:c6:a8:58:41:ab:d1:bc:de:2c:
dc:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:32:72:C0:C3:2D:B0:04:F0:78:F8:74:B9:9D:A9:A0:B7:E6:3A:FD
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/94a1e0-c180-4baf-9ea0-f67e7078878e/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/94a1e0-c180-4baf-9ea0-f67e7078878e/1/1-DJywMMtsATwePh0uZ2poLfmOv0.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.72.87.0/24
IPv6:
2a11:dd00::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
215091
Signature Algorithm: sha256WithRSAEncryption
53:b6:5c:6d:80:7f:f3:ba:ca:4f:82:ec:1f:84:3b:31:a5:7b:
15:20:e5:b0:c8:52:aa:ab:3b:7c:e5:1e:02:55:db:72:10:c6:
38:59:81:73:d9:aa:14:36:62:bd:42:48:da:6a:dc:57:3b:a0:
08:59:ea:58:21:2e:75:1c:fd:fd:e4:fa:59:13:2c:70:c6:a4:
38:84:d3:9d:e7:c1:53:f8:b6:2e:95:11:f4:0c:69:64:f0:ea:
3a:f8:fb:56:5d:8b:ec:ba:df:66:7a:ed:11:e1:ae:41:a9:ee:
66:6e:75:8d:c0:33:3a:1b:ae:6e:8b:b9:4b:23:94:cb:f7:11:
93:f2:7c:82:de:34:1e:c4:18:a0:3f:4e:bc:41:0d:f6:2f:82:
50:87:ed:cb:1e:02:6c:c4:67:db:21:02:ca:7d:8c:a6:cb:e6:
4a:52:a1:cc:61:eb:4b:f9:48:c9:5b:ac:52:44:96:1b:15:46:
32:13:89:21:ee:a0:2c:14:b8:e8:ac:2f:07:ec:12:d9:01:d5:
73:25:21:57:a3:db:b0:e0:dc:e1:f2:90:e8:17:55:e6:b2:c7:
fd:bf:a5:46:cf:4d:22:63:6a:ea:b5:d1:e5:b0:d2:e4:ab:3c:
cf:d5:67:74:5b:3f:1e:25:09:2d:17:81:3e:95:4f:f4:ed:1d:
3b:4e:7d:d8
-----BEGIN CERTIFICATE-----
MIIFpDCCBIygAwIBAgISAY7mgUKbuT63wAINxcohlOU4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwNDE2MTA0MzM0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmODMyNzJjMGMzMmRiMDA0ZjA3OGY4NzRiOTlkYTlhMGI3ZTYzYWZkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqIV+C+/qkxqM+6S+nopQy9V0MyEK
OFixGC81P3Awu4o9P+v0BVcEOnVuFeABaZGUncwJefoyWwqF7EqLO46aMdxdj++y
hhLGyAb1DjJG1TRMxCLUI2dsblGEvT1uvOHY4cMN9k3TsfziD1AnhgUOVlrnnymC
aytzTiLJN/oI9fj1crXMjQd5plwcUA7YxNGkacV4wOVd8fJwMROdeCqAqyAiRHzH
Qp9OZdQwGht0EhpFkp3L9/pchyiZA/635/GRkfnnyqmt/EDiWqjFmLtK3e4s138h
c8piVN7HhNuZrFVoprJatps0Xa6TBbYG5lv1vcnGi4/GqFhBq9G83izc8QIDAQAB
o4ICsDCCAqwwHQYDVR0OBBYEFPgycsDDLbAE8Hj4dLmdqaC35jr9MB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEkBggrBgEFBQcBCwSCARYwggESMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzkzLzk0YTFl
MC1jMTgwLTRiYWYtOWVhMC1mNjdlNzA3ODg3OGUvMS8wfQYIKwYBBQUHMAqGcXJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTMvOTRhMWUw
LWMxODAtNGJhZi05ZWEwLWY2N2U3MDc4ODc4ZS8xLzEtREp5d01NdHNBVHdlUGgw
dVoycG9MZm1PdjAubWZ0MDIGCCsGAQUFBzANhiZodHRwczovL3JyZHAucmlwZS5u
ZXQvbm90aWZpY2F0aW9uLnhtbDBZBgNVHR8EUjBQME6gTKBKhkhyc3luYzovL3Jw
a2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0twU28zVlZLNXdFSElKbkhD
MlFIVlYzZDVtay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAuBggrBgEF
BQcBBwEB/wQfMB0wDAQCAAEwBgMEAE1IVzANBAIAAjAHAwUDKhHdADAaBggrBgEF
BQcBCAEB/wQLMAmgBzAFAgMDSDMwDQYJKoZIhvcNAQELBQADggEBAFO2XG2Af/O6
yk+C7B+EOzGlexUg5bDIUqqrO3zlHgJV23IQxjhZgXPZqhQ2Yr1CSNpq3Fc7oAhZ
6lghLnUc/f3k+lkTLHDGpDiE053nwVP4ti6VEfQMaWTw6jr4+1Zdi+y632Z67RHh
rkGp7mZudY3AMzobrm6LuUsjlMv3EZPyfILeNB7EGKA/TrxBDfYvglCH7cseAmzE
Z9shAsp9jKbL5kpSocxh60v5SMlbrFJElhsVRjITiSHuoCwUuOisLwfsEtkB1XMl
IVej27Dg3OHykOgXVeayx/2/pUbPTSJjauq10eWw0uSrPM/VZ3RbPx4lCS0XgT6V
T/TtHTtOfdg=
-----END CERTIFICATE-----
Generated at Wed Nov 27 00:13:28 2024 by rpki-client on console-ams.rpki-client.org