Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4MKGY5gUKldLpHsZfXF5G14jr3w.cer
File: 4MKGY5gUKldLpHsZfXF5G14jr3w.cer (raw, json)
Hash identifier: hQFpoZ79SRybgkmp1IDaJYIjlwdngkkq1hetqoR0PVI=
Subject key identifier: E0:C2:86:63:98:14:2A:57:4B:A4:7B:19:7D:71:79:1B:5E:23:AF:7C
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC72620AB9CE06F75DBFC1E40CC1E32FE
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/9c/3cd961-2dcd-4518-bfb8-a16cf7ac7dd8/1/4MKGY5gUKldLpHsZfXF5G14jr3w.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/9c/3cd961-2dcd-4518-bfb8-a16cf7ac7dd8/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 22:30:13 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 21336
IP: 80.243.192.0/20
IP: 212.27.128.0/19
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:26:20:ab:9c:e0:6f:75:db:fc:1e:40:cc:1e:32:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 22:30:13 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e0c2866398142a574ba47b197d71791b5e23af7c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:35:39:73:fa:a6:ac:e8:56:d8:b8:d9:1e:cd:
e0:e5:f0:b3:57:c4:3a:31:13:bb:02:37:17:60:97:
f7:d3:ea:fb:9b:a9:c5:ad:16:7c:63:77:f3:ec:c8:
17:67:39:ab:fd:be:bb:3a:5c:7f:07:40:e8:92:e5:
a4:68:bf:df:c9:5b:8d:4a:6b:75:d1:fa:24:00:c7:
45:7c:5e:61:00:f0:b4:bf:7a:bc:36:76:f1:28:4a:
d1:d7:a8:d4:46:63:a8:ac:19:6a:08:de:dc:52:c7:
20:02:a4:e4:df:14:e8:80:b2:5d:5d:16:c5:0e:74:
2d:4f:c1:06:fb:ac:c4:fb:65:81:33:ba:a9:c0:2f:
e0:c6:83:78:c7:9c:74:53:b6:15:83:1d:d2:91:10:
84:75:3f:f9:0c:cc:07:04:38:be:b9:48:24:41:84:
57:fb:85:b7:61:e3:bb:97:42:49:10:39:84:bf:bb:
a9:5c:e0:2a:18:85:45:2e:2c:13:93:8d:44:9f:29:
25:fb:50:de:21:02:cb:bc:ee:7b:7e:7d:a9:5e:83:
fe:35:91:a9:c1:c8:7d:31:e6:41:d0:cc:c4:fb:87:
72:93:eb:a6:cf:62:b2:8a:d7:dc:29:3c:03:81:1d:
69:ad:87:7d:f9:e0:b7:80:ad:09:5f:5d:98:ca:24:
18:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:C2:86:63:98:14:2A:57:4B:A4:7B:19:7D:71:79:1B:5E:23:AF:7C
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/3cd961-2dcd-4518-bfb8-a16cf7ac7dd8/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/3cd961-2dcd-4518-bfb8-a16cf7ac7dd8/1/4MKGY5gUKldLpHsZfXF5G14jr3w.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.243.192.0/20
212.27.128.0/19
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
21336
Signature Algorithm: sha256WithRSAEncryption
91:04:57:b8:c2:98:2d:8b:e5:01:4e:f4:68:40:ea:b6:d8:88:
a3:64:6e:33:92:11:b8:b6:e1:7b:33:5c:46:9c:e4:1d:aa:df:
c7:25:f4:34:c6:3f:ef:46:67:81:27:01:13:11:7e:a9:17:7f:
f4:d2:cf:b3:39:f3:3b:91:98:7a:e0:86:bf:a0:96:74:13:27:
0e:4a:d3:4c:5c:34:ac:5c:6e:1c:93:23:78:f0:8a:0a:a0:e8:
82:27:3f:a2:ae:95:6b:68:02:e7:43:56:de:42:5a:78:b7:48:
97:be:b7:4d:f8:08:c7:1c:7f:15:00:c7:ca:77:a1:1f:8d:89:
82:bd:b5:47:70:1d:db:c2:42:5e:99:17:07:a6:86:b4:49:11:
a0:f8:2b:19:bb:cf:87:c9:ca:19:df:f6:1c:c1:92:40:92:28:
14:8c:0a:b7:54:f0:30:1f:bf:04:69:2d:57:6d:7b:da:8c:fa:
58:03:bf:88:2f:5b:1b:1c:2a:fe:30:de:28:56:02:6b:dd:49:
8b:0f:ed:92:ba:3a:34:dd:53:ea:f6:b7:d0:7b:af:7e:85:9e:
c3:45:c3:98:f4:33:d0:92:c7:fc:b5:80:b8:89:c8:b0:38:e0:
ba:d4:4a:72:a7:26:e8:74:ad:de:05:90:a5:cd:ab:53:ce:66:
0e:bb:4c:a0
-----BEGIN CERTIFICATE-----
MIIFmTCCBIGgAwIBAgISAYzHJiCrnOBvddv8HkDMHjL+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAxMjIzMDEzWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlMGMyODY2Mzk4MTQyYTU3NGJhNDdiMTk3ZDcxNzkxYjVlMjNhZjdjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyDU5c/qmrOhW2LjZHs3g5fCzV8Q6
MRO7AjcXYJf30+r7m6nFrRZ8Y3fz7MgXZzmr/b67Olx/B0DokuWkaL/fyVuNSmt1
0fokAMdFfF5hAPC0v3q8NnbxKErR16jURmOorBlqCN7cUscgAqTk3xTogLJdXRbF
DnQtT8EG+6zE+2WBM7qpwC/gxoN4x5x0U7YVgx3SkRCEdT/5DMwHBDi+uUgkQYRX
+4W3YeO7l0JJEDmEv7upXOAqGIVFLiwTk41Enykl+1DeIQLLvO57fn2pXoP+NZGp
wch9MeZB0MzE+4dyk+umz2KyitfcKTwDgR1prYd9+eC3gK0JX12YyiQY1wIDAQAB
o4ICpTCCAqEwHQYDVR0OBBYEFODChmOYFCpXS6R7GX1xeRteI698MB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzljLzNjZDk2
MS0yZGNkLTQ1MTgtYmZiOC1hMTZjZjdhYzdkZDgvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOWMvM2NkOTYx
LTJkY2QtNDUxOC1iZmI4LWExNmNmN2FjN2RkOC8xLzRNS0dZNWdVS2xkTHBIc1pm
WEY1RzE0anIzdy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCUGCCsGAQUF
BwEHAQH/BBYwFDASBAIAATAMAwQEUPPAAwQF1BuAMBkGCCsGAQUFBwEIAQH/BAow
CKAGMAQCAlNYMA0GCSqGSIb3DQEBCwUAA4IBAQCRBFe4wpgti+UBTvRoQOq22Iij
ZG4zkhG4tuF7M1xGnOQdqt/HJfQ0xj/vRmeBJwETEX6pF3/00s+zOfM7kZh64Ia/
oJZ0EycOStNMXDSsXG4ckyN48IoKoOiCJz+irpVraALnQ1beQlp4t0iXvrdN+AjH
HH8VAMfKd6EfjYmCvbVHcB3bwkJemRcHpoa0SRGg+CsZu8+HycoZ3/YcwZJAkigU
jAq3VPAwH78EaS1XbXvajPpYA7+IL1sbHCr+MN4oVgJr3UmLD+2Sujo03VPq9rfQ
e69+hZ7DRcOY9DPQksf8tYC4iciwOOC61EpypybodK3eBZClzatTzmYOu0yg
-----END CERTIFICATE-----
Generated at Sat Nov 23 09:57:13 2024 by rpki-client on console-fra.rpki-client.org