Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/AOezY1s9V4VgNwpYMDz81c2SkQU.cer
File: AOezY1s9V4VgNwpYMDz81c2SkQU.cer (raw, json)
Hash identifier: 7YBvoORhQ+ZKioJfFiDPV8sZQYkhWYhYdrGxsxRHW/4=
Subject key identifier: 00:E7:B3:63:5B:3D:57:85:60:37:0A:58:30:3C:FC:D5:CD:92:91:05
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC3B723BBC9400787BF6725FB12010064
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/f0/46238a-a19a-4915-8a47-a0cd141513cb/1/AOezY1s9V4VgNwpYMDz81c2SkQU.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/f0/46238a-a19a-4915-8a47-a0cd141513cb/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 06:30:08 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 204623
IP: 185.245.36.0/22
IP: 2a12:3580::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:b7:23:bb:c9:40:07:87:bf:67:25:fb:12:01:00:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 06:30:08 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=00e7b3635b3d578560370a58303cfcd5cd929105
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:db:0c:ba:c8:e9:29:b6:be:f5:51:a1:03:b2:
3b:d0:6b:e4:c7:b5:4f:6b:ec:c5:f2:fe:ab:21:cc:
4f:7b:4f:2c:cc:36:c2:69:18:9e:ad:35:ec:0f:11:
09:3d:2a:61:1c:e8:af:1e:83:26:98:ee:05:54:c5:
f0:69:9b:57:9d:62:c6:b9:27:89:f5:44:08:74:09:
f1:0a:34:21:39:b8:70:60:c8:74:7e:6e:f1:81:d1:
36:ef:ed:5c:a6:fd:e2:20:63:84:3b:01:48:e1:9f:
3d:fd:d4:54:5b:d2:a5:51:c9:24:4d:5b:b1:f1:6a:
d6:37:9c:0e:91:ec:2a:4a:f9:d4:65:f1:cc:30:ce:
bd:28:3e:c8:af:e2:0e:d1:fd:90:c4:f7:62:20:55:
a2:07:ec:c1:e0:81:6d:40:b6:fd:c1:ba:08:b2:10:
73:ef:14:76:fe:31:ed:b2:b4:04:5c:12:70:0e:40:
1e:e8:5d:28:8f:fa:1f:cf:ba:35:82:85:55:83:79:
76:59:9b:a1:fe:be:f9:97:4d:36:09:0c:98:32:a4:
e5:1b:cb:ba:20:49:0d:b6:20:46:9a:3a:3a:42:a7:
35:a9:bd:6b:51:73:2d:b6:9d:69:5f:50:e8:6e:33:
b0:8b:55:31:7c:2d:01:22:79:6b:9a:0a:db:b7:fe:
07:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:E7:B3:63:5B:3D:57:85:60:37:0A:58:30:3C:FC:D5:CD:92:91:05
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/46238a-a19a-4915-8a47-a0cd141513cb/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/46238a-a19a-4915-8a47-a0cd141513cb/1/AOezY1s9V4VgNwpYMDz81c2SkQU.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.245.36.0/22
IPv6:
2a12:3580::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
204623
Signature Algorithm: sha256WithRSAEncryption
15:17:81:58:8f:ce:c2:ba:93:c6:56:8c:b9:22:ba:e9:18:3c:
c1:2d:b1:db:56:ea:54:9c:0f:b7:83:c8:2b:53:90:60:32:ae:
df:42:ab:20:af:72:81:ac:26:b9:7d:6c:c1:2e:f1:a7:d5:a4:
f6:51:bc:c7:6c:71:1b:c8:e7:fa:c8:6b:7d:93:e6:b7:d6:1e:
85:2d:60:bd:07:e6:72:6e:0d:5d:c8:db:b2:d4:d3:78:dc:2b:
5e:d9:f0:89:94:52:2b:cd:19:7c:57:f4:d0:81:e1:78:4d:b4:
f4:ab:54:00:85:f2:04:e9:da:77:48:1c:f1:bd:50:46:9a:4a:
c1:82:8a:6a:93:ac:6e:d9:ba:73:b5:6d:c3:19:4e:01:64:00:
ce:d4:26:20:07:79:a4:4e:3c:c8:c5:28:2d:7b:eb:dd:ef:52:
10:90:b1:24:2f:ab:ff:96:fb:7e:c2:85:37:64:5d:a0:14:d4:
53:40:40:27:94:be:8f:71:3f:ee:e9:1d:88:f3:04:c8:ce:11:
f0:12:36:f8:ac:f5:41:fe:60:50:d7:90:5b:b8:fd:ee:08:7a:
d7:b0:bb:71:f7:57:61:a5:60:2d:3b:50:cd:80:66:6d:e5:38:
36:6c:76:17:47:98:ab:62:b7:a2:c9:cf:96:38:c0:2e:d3:27:
0b:ee:4b:e8
-----BEGIN CERTIFICATE-----
MIIFozCCBIugAwIBAgISAYzDtyO7yUAHh79nJfsSAQBkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAxMDYzMDA4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwMGU3YjM2MzViM2Q1Nzg1NjAzNzBhNTgzMDNjZmNkNWNkOTI5MTA1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqtsMusjpKba+9VGhA7I70Gvkx7VP
a+zF8v6rIcxPe08szDbCaRierTXsDxEJPSphHOivHoMmmO4FVMXwaZtXnWLGuSeJ
9UQIdAnxCjQhObhwYMh0fm7xgdE27+1cpv3iIGOEOwFI4Z89/dRUW9KlUckkTVux
8WrWN5wOkewqSvnUZfHMMM69KD7Ir+IO0f2QxPdiIFWiB+zB4IFtQLb9wboIshBz
7xR2/jHtsrQEXBJwDkAe6F0oj/ofz7o1goVVg3l2WZuh/r75l002CQyYMqTlG8u6
IEkNtiBGmjo6Qqc1qb1rUXMttp1pX1DobjOwi1UxfC0BInlrmgrbt/4HvwIDAQAB
o4ICrzCCAqswHQYDVR0OBBYEFADns2NbPVeFYDcKWDA8/NXNkpEFMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2YwLzQ2MjM4
YS1hMTlhLTQ5MTUtOGE0Ny1hMGNkMTQxNTEzY2IvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjAvNDYyMzhh
LWExOWEtNDkxNS04YTQ3LWEwY2QxNDE1MTNjYi8xL0FPZXpZMXM5VjRWZ053cFlN
RHo4MWMyU2tRVS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF
BwEHAQH/BB8wHTAMBAIAATAGAwQCufUkMA0EAgACMAcDBQMqEjWAMBoGCCsGAQUF
BwEIAQH/BAswCaAHMAUCAwMfTzANBgkqhkiG9w0BAQsFAAOCAQEAFReBWI/OwrqT
xlaMuSK66Rg8wS2x21bqVJwPt4PIK1OQYDKu30KrIK9ygawmuX1swS7xp9Wk9lG8
x2xxG8jn+shrfZPmt9YehS1gvQfmcm4NXcjbstTTeNwrXtnwiZRSK80ZfFf00IHh
eE209KtUAIXyBOnad0gc8b1QRppKwYKKapOsbtm6c7VtwxlOAWQAztQmIAd5pE48
yMUoLXvr3e9SEJCxJC+r/5b7fsKFN2RdoBTUU0BAJ5S+j3E/7ukdiPMEyM4R8BI2
+Kz1Qf5gUNeQW7j97gh617C7cfdXYaVgLTtQzYBmbeU4Nmx2F0eYq2K3osnPljjA
LtMnC+5L6A==
-----END CERTIFICATE-----
Generated at Sat Nov 23 10:46:11 2024 by rpki-client on console-ams.rpki-client.org