Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1lAD4kzs-_jowV_2N90V201_rpI.cer
File: 1lAD4kzs-_jowV_2N90V201_rpI.cer (raw, json)
Hash identifier: gyyQGO/d8/91J5o6GzLu/7acfBhK7NV26ncJ/r82d0o=
Subject key identifier: D6:50:03:E2:4C:EC:FB:F8:E8:C1:5F:F6:37:DD:15:DB:4D:7F:AE:92
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC9BCA863DBEC38C62A5FD4CEA5F814C5
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/24/54910b-9a13-4ace-abf2-a2351f4e8915/1/1lAD4kzs-_jowV_2N90V201_rpI.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/24/54910b-9a13-4ace-abf2-a2351f4e8915/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 10:33:53 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 205533
IP: 193.36.240.0/20
IP: 193.37.112.0/20
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 20 Apr 2024 17:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:a8:63:db:ec:38:c6:2a:5f:d4:ce:a5:f8:14:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 10:33:53 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d65003e24cecfbf8e8c15ff637dd15db4d7fae92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:84:20:84:42:ae:c4:8e:06:16:73:06:6e:63:
47:4b:2c:36:b5:74:09:99:ea:f5:6f:7b:d9:e1:09:
e6:3b:49:bb:f5:46:60:ec:20:80:a4:0e:e5:e1:d1:
0f:48:72:71:3c:c4:92:ed:d0:50:25:3f:d5:e6:cf:
88:f7:9f:60:63:9e:8f:de:cf:ad:b1:2b:a6:7e:5a:
10:d0:23:cc:0a:02:82:12:bb:f2:45:da:bb:1e:7a:
24:05:6b:78:94:36:7d:46:93:e5:2e:bc:10:f9:7a:
aa:d7:7d:0f:f8:51:7f:a5:c9:f2:5e:b6:82:ec:74:
38:f8:ab:f6:a2:35:37:9b:9e:3f:1c:21:c8:18:31:
72:e2:d1:8f:71:fc:69:c3:63:13:e5:bb:ad:21:db:
73:90:dc:5f:57:6a:39:d5:a3:57:85:bf:22:06:4b:
b0:5d:df:c3:da:f4:00:22:f7:2b:01:d7:d6:8b:c0:
d4:0f:1f:b1:bc:c2:db:7c:19:ea:58:77:5e:21:3a:
52:30:72:d7:cb:35:55:c6:ac:53:96:9a:e1:66:3b:
b7:9a:c3:9e:2e:46:f1:ef:78:9a:92:46:a6:2a:af:
b8:f1:01:3e:77:87:3c:01:a4:30:a3:40:9a:27:b5:
26:11:18:d0:cc:28:77:23:65:27:5d:0e:df:47:85:
f3:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:50:03:E2:4C:EC:FB:F8:E8:C1:5F:F6:37:DD:15:DB:4D:7F:AE:92
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/54910b-9a13-4ace-abf2-a2351f4e8915/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/54910b-9a13-4ace-abf2-a2351f4e8915/1/1lAD4kzs-_jowV_2N90V201_rpI.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.36.240.0/20
193.37.112.0/20
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
205533
Signature Algorithm: sha256WithRSAEncryption
6d:64:ae:08:0f:de:04:f5:98:fe:7a:c9:62:f8:9a:71:57:1a:
23:7e:84:5f:6b:72:1d:2e:97:a4:b1:dd:a5:53:f5:20:fd:94:
78:41:8f:49:a9:80:46:aa:ca:80:25:ca:74:c4:02:36:80:2f:
9d:7e:a7:c6:48:1e:24:0a:68:18:39:1e:80:a7:06:c5:d3:68:
cc:fb:95:53:dd:54:7a:6b:9b:97:c2:2e:0c:c7:88:6b:82:7e:
df:40:cd:8b:c4:a3:e5:9e:5a:42:59:c1:38:1f:e4:17:9a:4e:
ab:58:41:f9:98:d4:5f:29:21:41:37:36:f7:c8:7e:b0:6a:cb:
39:32:40:ad:cd:1c:fb:10:46:9a:82:77:50:b1:02:11:82:b8:
1b:05:7a:fd:93:17:51:8d:09:12:15:df:4e:41:d5:b6:37:3d:
d9:1d:8d:bf:bf:ff:5c:6e:d7:15:a0:27:17:55:cb:21:97:20:
13:05:ba:4b:0b:f8:70:8f:eb:cb:5f:23:e7:7f:40:1b:4f:06:
0c:f9:eb:d6:f3:10:5a:63:90:51:fc:83:15:b7:d4:f6:3a:f7:
c2:1e:40:24:1f:1e:11:d5:b5:58:e0:0c:30:83:f9:87:5f:91:
17:1e:a3:17:ae:8b:80:fb:a2:f7:0d:8a:d4:9e:14:45:ef:2c:
27:4c:0a:ef
-----BEGIN CERTIFICATE-----
MIIFmjCCBIKgAwIBAgISAYzJvKhj2+w4xipf1M6l+BTFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAyMTAzMzUzWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkNjUwMDNlMjRjZWNmYmY4ZThjMTVmZjYzN2RkMTVkYjRkN2ZhZTkyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9oQghEKuxI4GFnMGbmNHSyw2tXQJ
mer1b3vZ4QnmO0m79UZg7CCApA7l4dEPSHJxPMSS7dBQJT/V5s+I959gY56P3s+t
sSumfloQ0CPMCgKCErvyRdq7HnokBWt4lDZ9RpPlLrwQ+Xqq130P+FF/pcnyXraC
7HQ4+Kv2ojU3m54/HCHIGDFy4tGPcfxpw2MT5butIdtzkNxfV2o51aNXhb8iBkuw
Xd/D2vQAIvcrAdfWi8DUDx+xvMLbfBnqWHdeITpSMHLXyzVVxqxTlprhZju3msOe
Lkbx73iakkamKq+48QE+d4c8AaQwo0CaJ7UmERjQzCh3I2UnXQ7fR4Xz4wIDAQAB
o4ICpjCCAqIwHQYDVR0OBBYEFNZQA+JM7Pv46MFf9jfdFdtNf66SMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzI0LzU0OTEw
Yi05YTEzLTRhY2UtYWJmMi1hMjM1MWY0ZTg5MTUvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjQvNTQ5MTBi
LTlhMTMtNGFjZS1hYmYyLWEyMzUxZjRlODkxNS8xLzFsQUQ0a3pzLV9qb3dWXzJO
OTBWMjAxX3JwSS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCUGCCsGAQUF
BwEHAQH/BBYwFDASBAIAATAMAwQEwSTwAwQEwSVwMBoGCCsGAQUFBwEIAQH/BAsw
CaAHMAUCAwMi3TANBgkqhkiG9w0BAQsFAAOCAQEAbWSuCA/eBPWY/nrJYviacVca
I36EX2tyHS6XpLHdpVP1IP2UeEGPSamARqrKgCXKdMQCNoAvnX6nxkgeJApoGDke
gKcGxdNozPuVU91Uemubl8IuDMeIa4J+30DNi8Sj5Z5aQlnBOB/kF5pOq1hB+ZjU
XykhQTc298h+sGrLOTJArc0c+xBGmoJ3ULECEYK4GwV6/ZMXUY0JEhXfTkHVtjc9
2R2Nv7//XG7XFaAnF1XLIZcgEwW6Swv4cI/ry18j539AG08GDPnr1vMQWmOQUfyD
FbfU9jr3wh5AJB8eEdW1WOAMMIP5h1+RFx6jF66LgPui9w2K1J4URe8sJ0wK7w==
-----END CERTIFICATE-----
Generated at Sat Apr 20 02:06:59 2024 by rpki-client on console-fra.rpki-client.org