Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11ZxzcFKN_vLnwFQzPkY2xXCMm8.cer
File: 11ZxzcFKN_vLnwFQzPkY2xXCMm8.cer (raw, json)
Hash identifier: rAwvOZO+arQ1szXxD3ntxxVRkNKDDyxSZhzXqU3keQA=
Subject key identifier: D7:56:71:CD:C1:4A:37:FB:CB:9F:01:50:CC:F9:18:DB:15:C2:32:6F
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC8DF2E3FD81A8CA1D949DF6B963AA71B
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/6d/bbd9e3-8a1f-4e06-9653-7d4673b7e185/1/11ZxzcFKN_vLnwFQzPkY2xXCMm8.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/6d/bbd9e3-8a1f-4e06-9653-7d4673b7e185/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 06:31:58 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 203413
IP: 185.135.160.0/22
IP: 2a06:f600::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:df:2e:3f:d8:1a:8c:a1:d9:49:df:6b:96:3a:a7:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 06:31:58 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d75671cdc14a37fbcb9f0150ccf918db15c2326f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:14:c9:23:aa:08:18:6c:10:40:54:74:e2:63:
f9:5b:84:c1:a3:96:a5:17:34:1b:41:b5:28:79:84:
12:33:f0:49:b3:90:22:1d:f3:ef:e9:fd:70:9b:fc:
6f:7b:1c:60:99:bd:a4:fb:55:60:88:64:8d:f9:5f:
64:c4:29:02:63:8f:15:39:f0:35:7f:13:34:bf:3d:
81:61:db:24:9b:ec:fd:66:c2:16:80:ab:f3:c6:23:
9f:a0:66:30:b6:3b:ed:53:c6:41:20:5e:39:af:4a:
d4:f9:f9:61:ba:5d:d8:bd:ff:27:27:47:82:a0:38:
86:cf:18:0a:8c:4d:45:ec:25:ef:1d:b0:09:f9:61:
98:1a:ed:9d:18:81:10:84:9c:ec:18:77:30:5e:a2:
9d:56:3e:82:ad:dd:b1:4c:ec:58:58:19:00:68:04:
c1:28:e9:5b:a1:3c:0a:23:61:ce:5b:ef:fc:89:20:
8c:f3:d8:80:34:ed:1c:a7:f4:fd:8b:75:5e:33:51:
9c:b4:99:ff:21:65:49:b4:a6:83:f9:9e:52:44:4c:
50:1b:37:67:eb:66:ea:2a:40:01:d3:d9:f6:5e:98:
72:b2:b6:e5:82:5a:c5:4f:2e:a8:56:d6:50:df:23:
98:da:97:0a:0a:91:9a:d7:09:4a:2c:e7:e6:1d:08:
34:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:56:71:CD:C1:4A:37:FB:CB:9F:01:50:CC:F9:18:DB:15:C2:32:6F
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/bbd9e3-8a1f-4e06-9653-7d4673b7e185/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/bbd9e3-8a1f-4e06-9653-7d4673b7e185/1/11ZxzcFKN_vLnwFQzPkY2xXCMm8.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.135.160.0/22
IPv6:
2a06:f600::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
203413
Signature Algorithm: sha256WithRSAEncryption
54:f0:f2:9c:69:b8:1c:29:58:4e:03:30:00:2f:3b:b0:cf:e8:
4e:d0:48:7b:cd:ac:a3:b1:ea:d9:4a:46:c0:27:77:28:d9:c2:
ef:16:b5:55:e1:ee:77:b6:9d:92:df:9f:b2:56:da:3d:68:5c:
45:c4:fd:f0:a1:7f:e7:45:ee:f6:3c:4d:d0:e4:a9:d3:82:a2:
97:88:cd:63:bd:d6:a6:db:94:14:90:96:75:0c:af:cd:22:24:
e6:b4:54:61:92:1c:a9:50:3b:49:38:1c:fb:45:dd:00:cb:e8:
e4:c4:ad:78:5a:3e:1d:eb:ff:15:81:6b:44:80:54:78:50:80:
5f:63:85:52:24:e4:1f:bd:4d:85:36:a2:97:52:e7:6d:a5:0a:
18:aa:b5:29:7f:28:5b:45:92:47:1f:c0:e7:b1:62:d2:b9:a5:
40:86:e4:f1:5d:d7:82:8a:6a:6b:53:a0:12:d7:e7:83:d6:a8:
a4:a4:55:33:70:46:6f:6f:c3:14:7e:be:dc:ce:6f:cb:f7:b5:
68:b8:ff:ca:53:c2:e0:e8:44:01:ee:46:68:bb:23:09:76:91:
6d:bc:cb:4e:62:73:79:03:0b:06:d5:b6:7c:cf:e5:b8:90:de:
c5:58:b7:29:77:0a:53:86:b2:c8:c7:4c:14:e6:a9:f6:08:c1:
de:a3:85:09
-----BEGIN CERTIFICATE-----
MIIFozCCBIugAwIBAgISAYzI3y4/2BqModlJ32uWOqcbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAyMDYzMTU4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkNzU2NzFjZGMxNGEzN2ZiY2I5ZjAxNTBjY2Y5MThkYjE1YzIzMjZmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAthTJI6oIGGwQQFR04mP5W4TBo5al
FzQbQbUoeYQSM/BJs5AiHfPv6f1wm/xvexxgmb2k+1VgiGSN+V9kxCkCY48VOfA1
fxM0vz2BYdskm+z9ZsIWgKvzxiOfoGYwtjvtU8ZBIF45r0rU+flhul3Yvf8nJ0eC
oDiGzxgKjE1F7CXvHbAJ+WGYGu2dGIEQhJzsGHcwXqKdVj6Crd2xTOxYWBkAaATB
KOlboTwKI2HOW+/8iSCM89iANO0cp/T9i3VeM1GctJn/IWVJtKaD+Z5SRExQGzdn
62bqKkAB09n2XphysrblglrFTy6oVtZQ3yOY2pcKCpGa1wlKLOfmHQg0fQIDAQAB
o4ICrzCCAqswHQYDVR0OBBYEFNdWcc3BSjf7y58BUMz5GNsVwjJvMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzZkL2JiZDll
My04YTFmLTRlMDYtOTY1My03ZDQ2NzNiN2UxODUvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNmQvYmJkOWUz
LThhMWYtNGUwNi05NjUzLTdkNDY3M2I3ZTE4NS8xLzExWnh6Y0ZLTl92TG53RlF6
UGtZMnhYQ01tOC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF
BwEHAQH/BB8wHTAMBAIAATAGAwQCuYegMA0EAgACMAcDBQMqBvYAMBoGCCsGAQUF
BwEIAQH/BAswCaAHMAUCAwMalTANBgkqhkiG9w0BAQsFAAOCAQEAVPDynGm4HClY
TgMwAC87sM/oTtBIe82so7Hq2UpGwCd3KNnC7xa1VeHud7adkt+fslbaPWhcRcT9
8KF/50Xu9jxN0OSp04Kil4jNY73WptuUFJCWdQyvzSIk5rRUYZIcqVA7STgc+0Xd
AMvo5MSteFo+Hev/FYFrRIBUeFCAX2OFUiTkH71NhTail1LnbaUKGKq1KX8oW0WS
Rx/A57Fi0rmlQIbk8V3Xgopqa1OgEtfng9aopKRVM3BGb2/DFH6+3M5vy/e1aLj/
ylPC4OhEAe5GaLsjCXaRbbzLTmJzeQMLBtW2fM/luJDexVi3KXcKU4ayyMdMFOap
9gjB3qOFCQ==
-----END CERTIFICATE-----
Generated at Sat Nov 23 09:52:36 2024 by rpki-client on console-fra.rpki-client.org