Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ACyIZbwqB-Ss_rJjtNnPYkYP1SM.cer
File: ACyIZbwqB-Ss_rJjtNnPYkYP1SM.cer (raw, json)
Hash identifier: MZE+Ahg1FWZWQr341Es3Re14AQ//d5jnyFp/gUSQ3Io=
Subject key identifier: 00:2C:88:65:BC:2A:07:E4:AC:FE:B2:63:B4:D9:CF:62:46:0F:D5:23
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC5003B91EC3A56FD09579FE386FB811B
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/b6/d7fadc-1ebf-42da-9b22-a60c20c8f717/1/ACyIZbwqB-Ss_rJjtNnPYkYP1SM.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/b6/d7fadc-1ebf-42da-9b22-a60c20c8f717/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 12:29:36 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 50257
IP: 185.10.172.0/22
IP: 185.99.4.0/22
IP: 195.191.4.0/23
IP: 2a03:4ec0::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 25 Apr 2024 23:00:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:00:3b:91:ec:3a:56:fd:09:57:9f:e3:86:fb:81:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 12:29:36 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=002c8865bc2a07e4acfeb263b4d9cf62460fd523
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:94:32:77:aa:a2:a3:f6:e3:91:56:32:4c:d1:
be:70:a4:86:e3:80:4a:b0:88:ec:a4:16:de:9c:6b:
32:c6:35:13:4d:51:0a:68:30:40:42:da:de:13:3b:
bc:57:4e:28:6d:e8:1e:f5:8d:a9:80:d6:8c:d7:53:
8d:ab:a9:dc:2e:c9:78:7c:6a:cb:09:98:37:37:e4:
b9:2f:ee:09:1d:ab:e5:0e:60:04:37:55:96:fb:33:
ca:8f:54:6b:31:45:29:29:25:1e:9b:28:3c:42:25:
ab:e6:69:f2:49:08:b5:07:ec:22:51:2e:cf:d2:ee:
81:16:3f:07:61:4c:b7:a0:27:89:bc:8a:ff:64:38:
af:83:6e:2d:0f:65:73:37:64:98:3e:71:18:68:0b:
76:d9:4c:74:a8:d3:8f:fc:6b:4a:69:4e:03:a3:0b:
27:a3:99:46:74:c8:11:70:14:43:f5:98:12:7c:dd:
2c:54:b0:3e:ea:1e:4a:67:b0:c6:d9:8a:82:3e:75:
bc:e1:70:f1:ff:79:ce:ea:ec:cc:10:58:91:84:70:
ba:28:eb:4d:2e:22:3d:61:a4:11:81:05:bf:d9:22:
09:a4:23:54:a8:21:26:f2:fb:6e:40:22:9c:a8:b9:
b6:01:26:4c:50:75:57:a9:4c:f7:92:46:84:f4:3a:
47:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:2C:88:65:BC:2A:07:E4:AC:FE:B2:63:B4:D9:CF:62:46:0F:D5:23
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/d7fadc-1ebf-42da-9b22-a60c20c8f717/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/d7fadc-1ebf-42da-9b22-a60c20c8f717/1/ACyIZbwqB-Ss_rJjtNnPYkYP1SM.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.10.172.0/22
185.99.4.0/22
195.191.4.0/23
IPv6:
2a03:4ec0::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
50257
Signature Algorithm: sha256WithRSAEncryption
af:11:71:33:a8:a5:47:67:03:e1:1f:9d:e8:8b:16:2e:19:e2:
64:9f:9b:5c:43:73:9e:e1:3c:4c:cc:1b:96:9c:88:9f:30:47:
3b:47:37:fd:13:e2:ca:0e:ed:9b:8d:e1:fb:ef:b3:1d:d5:92:
44:19:c3:34:e5:2f:df:fd:4e:2b:05:ae:2c:45:96:16:0a:80:
ad:78:e4:fc:18:9c:22:32:75:ad:c4:68:ff:a0:29:53:28:65:
a3:f5:3f:9c:6b:a3:d2:c3:80:dc:53:b0:d1:91:24:d7:15:48:
e3:1d:bf:47:8e:82:0b:c2:55:cd:13:44:7b:4d:40:f3:e8:4d:
ac:cd:75:47:d6:1a:1b:42:48:68:e2:be:94:f7:54:af:4a:7c:
36:47:44:a8:5d:ca:96:57:7a:0a:08:89:93:35:1e:6b:b8:d7:
fc:7a:91:24:e6:98:81:f2:c1:31:9a:4c:b9:97:0a:65:fc:6d:
ff:ac:46:f2:44:ba:30:20:89:e7:c0:56:04:b3:d0:bc:4e:59:
64:3f:49:99:d5:1d:5d:1f:7f:a9:9e:64:e8:66:69:05:e8:51:
b7:9b:a1:43:8d:e0:3d:94:af:20:09:89:ec:8f:b8:97:bc:b2:
ee:9e:2c:c6:95:0d:64:20:74:73:9f:6c:a9:20:f8:4e:7a:03:
d6:c7:d6:72
-----BEGIN CERTIFICATE-----
MIIFrzCCBJegAwIBAgISAYzFADuR7DpW/QlXn+OG+4EbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAxMTIyOTM2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwMDJjODg2NWJjMmEwN2U0YWNmZWIyNjNiNGQ5Y2Y2MjQ2MGZkNTIzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxJQyd6qio/bjkVYyTNG+cKSG44BK
sIjspBbenGsyxjUTTVEKaDBAQtreEzu8V04obege9Y2pgNaM11ONq6ncLsl4fGrL
CZg3N+S5L+4JHavlDmAEN1WW+zPKj1RrMUUpKSUemyg8QiWr5mnySQi1B+wiUS7P
0u6BFj8HYUy3oCeJvIr/ZDivg24tD2VzN2SYPnEYaAt22Ux0qNOP/GtKaU4Dowsn
o5lGdMgRcBRD9ZgSfN0sVLA+6h5KZ7DG2YqCPnW84XDx/3nO6uzMEFiRhHC6KOtN
LiI9YaQRgQW/2SIJpCNUqCEm8vtuQCKcqLm2ASZMUHVXqUz3kkaE9DpHFwIDAQAB
o4ICuzCCArcwHQYDVR0OBBYEFAAsiGW8KgfkrP6yY7TZz2JGD9UjMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2I2L2Q3ZmFk
Yy0xZWJmLTQyZGEtOWIyMi1hNjBjMjBjOGY3MTcvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjYvZDdmYWRj
LTFlYmYtNDJkYS05YjIyLWE2MGMyMGM4ZjcxNy8xL0FDeUlaYndxQi1Tc19ySmp0
Tm5QWWtZUDFTTS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDoGCCsGAQUF
BwEHAQH/BCswKTAYBAIAATASAwQCuQqsAwQCuWMEAwQBw78EMA0EAgACMAcDBQAq
A07AMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwDEUTANBgkqhkiG9w0BAQsFAAOC
AQEArxFxM6ilR2cD4R+d6IsWLhniZJ+bXENznuE8TMwblpyInzBHO0c3/RPiyg7t
m43h+++zHdWSRBnDNOUv3/1OKwWuLEWWFgqArXjk/BicIjJ1rcRo/6ApUyhlo/U/
nGuj0sOA3FOw0ZEk1xVI4x2/R46CC8JVzRNEe01A8+hNrM11R9YaG0JIaOK+lPdU
r0p8NkdEqF3Klld6CgiJkzUea7jX/HqRJOaYgfLBMZpMuZcKZfxt/6xG8kS6MCCJ
58BWBLPQvE5ZZD9JmdUdXR9/qZ5k6GZpBehRt5uhQ43gPZSvIAmJ7I+4l7yy7p4s
xpUNZCB0c59sqSD4TnoD1sfWcg==
-----END CERTIFICATE-----
Generated at Thu Apr 25 04:39:07 2024 by rpki-client on console-ams.rpki-client.org