Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4aIfhfm_F8AgmH6hMg09Y8Va5Ik.cer
File: 4aIfhfm_F8AgmH6hMg09Y8Va5Ik.cer (raw, json)
Hash identifier: uVB2IOzdILEOaXJA+YCwBlWWZDVNb17nYut+T2Vy6lU=
Subject key identifier: E1:A2:1F:85:F9:BF:17:C0:20:98:7E:A1:32:0D:3D:63:C5:5A:E4:89
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0192D8A8389632C938B07DD594F50CC59E78
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/e2/53208d-6c31-4e12-aa25-862684eceb46/1/4aIfhfm_F8AgmH6hMg09Y8Va5Ik.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/e2/53208d-6c31-4e12-aa25-862684eceb46/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 29 Oct 2024 14:22:36 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 202803
IP: 185.154.44.0/22
IP: 2a0b:5ac0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Dec 2024 06:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:d8:a8:38:96:32:c9:38:b0:7d:d5:94:f5:0c:c5:9e:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Oct 29 14:22:36 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e1a21f85f9bf17c020987ea1320d3d63c55ae489
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:d0:e3:13:04:8c:4b:47:56:d5:48:74:b7:35:
b6:cb:11:ea:43:3c:5d:29:89:00:9f:0d:c8:13:09:
19:b1:2d:bc:3e:81:d8:ae:49:d0:94:c0:5f:c8:c3:
c5:9d:df:8b:6b:eb:59:94:0c:b5:60:44:29:61:94:
51:b2:28:e4:e2:ff:aa:e3:81:d0:6e:32:e9:6a:47:
5c:ea:bb:41:59:dc:ff:04:c7:aa:e0:c8:fc:9c:b1:
0f:71:29:23:3e:57:37:c4:18:7c:58:92:05:22:71:
0b:17:75:6b:c2:3d:8c:da:1e:64:46:39:f0:97:38:
68:ee:94:50:99:74:e0:e4:a6:31:a0:bc:63:6b:5c:
bb:a7:1a:93:76:c6:d5:f7:94:96:a4:fa:76:42:88:
ec:a4:94:55:00:c3:f5:bb:04:0e:f7:2f:87:11:0a:
fc:1b:fe:fe:5f:fb:b0:02:0c:85:a3:c5:d8:00:ec:
a2:ea:d4:7e:d3:ea:8a:25:85:a3:b0:82:1a:4d:70:
bb:33:e0:37:69:63:38:67:34:2f:19:98:ee:17:72:
2f:eb:c2:19:93:d7:45:45:83:75:2a:51:03:99:9e:
ec:71:3f:f1:b2:6b:1b:73:d6:58:6c:4d:ae:85:b8:
99:12:97:ef:ae:bd:83:30:3d:d5:7c:e8:a9:76:0d:
bf:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:A2:1F:85:F9:BF:17:C0:20:98:7E:A1:32:0D:3D:63:C5:5A:E4:89
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/53208d-6c31-4e12-aa25-862684eceb46/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/53208d-6c31-4e12-aa25-862684eceb46/1/4aIfhfm_F8AgmH6hMg09Y8Va5Ik.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.154.44.0/22
IPv6:
2a0b:5ac0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
202803
Signature Algorithm: sha256WithRSAEncryption
89:b3:ba:75:e2:b0:1c:88:c9:e8:dd:6e:25:a2:c0:a8:24:b1:
17:34:1e:54:11:5d:a7:50:7e:51:fd:93:d7:6c:b8:df:dd:03:
fb:8c:16:6c:59:a8:14:bd:b0:4a:12:08:cc:a6:ee:aa:2c:55:
28:b9:c0:4f:01:a6:62:b9:2e:79:3d:cc:8e:20:a2:8f:0f:57:
1c:c2:b1:89:04:bc:43:c4:e7:ee:58:61:eb:ce:32:c1:9e:a5:
27:e8:67:d0:20:e4:23:86:21:a3:52:ea:0a:90:57:71:ef:c2:
73:69:ad:27:be:7a:95:63:64:cd:a4:4e:c6:2c:af:d6:71:69:
22:04:03:66:26:44:1e:41:1b:2a:58:de:a4:ab:df:fa:58:35:
2b:bf:0f:1f:b5:fb:aa:4c:21:43:71:c4:65:b7:a2:49:53:cb:
7a:69:8d:ca:a2:93:1d:9e:23:e5:60:cb:de:db:3f:ce:e9:74:
f6:e9:cd:4f:80:0a:0a:ad:54:55:b6:aa:8d:7b:3c:50:50:07:
16:a2:eb:14:28:17:09:dc:0b:d4:f5:cf:df:e2:de:04:02:d6:
18:b7:35:19:02:e9:ed:cf:77:11:67:d6:9e:de:cd:a0:56:d9:
ea:98:f7:57:da:21:09:49:68:f4:13:f2:99:f4:96:3d:87:4c:
1f:05:43:69
-----BEGIN CERTIFICATE-----
MIIFozCCBIugAwIBAgISAZLYqDiWMsk4sH3VlPUMxZ54MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQxMDI5MTQyMjM2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlMWEyMWY4NWY5YmYxN2MwMjA5ODdlYTEzMjBkM2Q2M2M1NWFlNDg5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqtDjEwSMS0dW1Uh0tzW2yxHqQzxd
KYkAnw3IEwkZsS28PoHYrknQlMBfyMPFnd+La+tZlAy1YEQpYZRRsijk4v+q44HQ
bjLpakdc6rtBWdz/BMeq4Mj8nLEPcSkjPlc3xBh8WJIFInELF3Vrwj2M2h5kRjnw
lzho7pRQmXTg5KYxoLxja1y7pxqTdsbV95SWpPp2QojspJRVAMP1uwQO9y+HEQr8
G/7+X/uwAgyFo8XYAOyi6tR+0+qKJYWjsIIaTXC7M+A3aWM4ZzQvGZjuF3Iv68IZ
k9dFRYN1KlEDmZ7scT/xsmsbc9ZYbE2uhbiZEpfvrr2DMD3VfOipdg2/fwIDAQAB
o4ICrzCCAqswHQYDVR0OBBYEFOGiH4X5vxfAIJh+oTINPWPFWuSJMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2UyLzUzMjA4
ZC02YzMxLTRlMTItYWEyNS04NjI2ODRlY2ViNDYvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZTIvNTMyMDhk
LTZjMzEtNGUxMi1hYTI1LTg2MjY4NGVjZWI0Ni8xLzRhSWZoZm1fRjhBZ21INmhN
ZzA5WThWYTVJay5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF
BwEHAQH/BB8wHTAMBAIAATAGAwQCuZosMA0EAgACMAcDBQMqC1rAMBoGCCsGAQUF
BwEIAQH/BAswCaAHMAUCAwMYMzANBgkqhkiG9w0BAQsFAAOCAQEAibO6deKwHIjJ
6N1uJaLAqCSxFzQeVBFdp1B+Uf2T12y4390D+4wWbFmoFL2wShIIzKbuqixVKLnA
TwGmYrkueT3MjiCijw9XHMKxiQS8Q8Tn7lhh684ywZ6lJ+hn0CDkI4Yho1LqCpBX
ce/Cc2mtJ756lWNkzaROxiyv1nFpIgQDZiZEHkEbKljepKvf+lg1K78PH7X7qkwh
Q3HEZbeiSVPLemmNyqKTHZ4j5WDL3ts/zul09unNT4AKCq1UVbaqjXs8UFAHFqLr
FCgXCdwL1PXP3+LeBALWGLc1GQLp7c93EWfWnt7NoFbZ6pj3V9ohCUlo9BPymfSW
PYdMHwVDaQ==
-----END CERTIFICATE-----
Generated at Thu Dec 26 17:19:45 2024 by rpki-client on console-ams.rpki-client.org