Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ASMR-Ap6dumuA7jBPYLYPpwPgyI.cer
File: ASMR-Ap6dumuA7jBPYLYPpwPgyI.cer (raw, json)
Hash identifier: iuqthRc2EBRHkrMQzeIFh3jj/gU72vp/B8CRhJfxp/M=
Subject key identifier: 01:23:11:F8:0A:7A:76:E9:AE:03:B8:C1:3D:82:D8:3E:9C:0F:83:22
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC26D6E8448A14E7070E5BAD4BABE871A
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/64/0396ee-0aea-47f3-b9fe-5b9ba91de33d/1/ASMR-Ap6dumuA7jBPYLYPpwPgyI.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/64/0396ee-0aea-47f3-b9fe-5b9ba91de33d/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 00:30:00 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: IP: 193.176.47.0/24
IP: 193.176.61.0/24
IP: 2001:67c:2784::/48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Dec 2024 06:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:6d:6e:84:48:a1:4e:70:70:e5:ba:d4:ba:be:87:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 00:30:00 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=012311f80a7a76e9ae03b8c13d82d83e9c0f8322
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:ff:95:12:26:fa:19:42:4f:b2:d1:5e:46:4d:
dc:65:70:86:12:36:e5:56:fc:f9:fb:a5:4e:8f:fd:
4a:54:d4:22:6c:cc:0f:22:3e:f1:5e:fb:bd:48:59:
c3:fd:a7:9e:c5:2d:37:4c:5a:50:2f:15:00:13:2f:
ab:e7:ca:52:c4:76:e9:40:f6:89:3d:f3:96:1a:7e:
f1:dc:0e:1a:ce:0d:e8:8c:27:f8:6e:03:e4:e5:6b:
bf:90:c2:60:3c:81:cc:bf:79:63:f9:79:81:87:1c:
31:09:e6:38:b5:cb:a0:e2:df:6e:c2:56:be:45:2f:
7a:c1:df:7a:22:e2:c6:6e:1f:ba:d7:d2:1d:bc:60:
07:85:39:1a:2b:59:57:1c:2b:c8:4a:0b:a7:65:a1:
e1:98:28:c9:71:e0:cb:32:7a:8f:d0:a2:f3:55:f2:
bc:bd:1c:7e:61:4f:3f:4a:85:c8:d9:47:32:a8:16:
e9:85:df:7e:41:10:30:e2:72:25:60:89:ea:c7:8b:
cd:5c:45:ea:04:1e:b4:0b:d3:de:3f:75:f4:81:4f:
90:e6:64:16:46:97:00:13:71:24:f9:87:ba:f2:c7:
72:d2:18:55:b8:3c:f6:a3:a2:fa:ad:80:5f:69:8a:
e9:b1:80:44:22:ad:70:8f:c0:9d:80:74:57:ea:ea:
b6:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:23:11:F8:0A:7A:76:E9:AE:03:B8:C1:3D:82:D8:3E:9C:0F:83:22
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/0396ee-0aea-47f3-b9fe-5b9ba91de33d/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/0396ee-0aea-47f3-b9fe-5b9ba91de33d/1/ASMR-Ap6dumuA7jBPYLYPpwPgyI.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.176.47.0/24
193.176.61.0/24
IPv6:
2001:67c:2784::/48
Signature Algorithm: sha256WithRSAEncryption
4b:7c:95:e4:8e:dc:dc:44:41:59:e7:49:68:12:32:ce:d5:ff:
12:c5:71:42:70:33:79:5e:ae:2e:98:86:af:e2:66:3e:8b:fb:
cb:76:0c:0e:40:45:5f:e5:55:50:cf:76:05:fd:2b:e1:70:64:
b6:af:b9:ac:c0:e5:e9:a5:9d:53:d8:22:57:db:3f:5b:35:6e:
b5:f9:05:8b:0d:99:62:d3:32:fd:17:36:1b:62:a0:ab:df:42:
10:79:cc:fe:89:8b:c0:3e:6b:2c:6b:a3:73:f3:07:01:4d:ac:
23:2e:23:88:84:cb:b4:7c:db:0a:ee:2b:c2:d5:72:6d:12:31:
69:4d:71:af:b4:c0:55:43:f0:4f:d1:8c:79:87:7a:e8:87:68:
3f:b5:37:78:78:c7:fc:a2:fb:04:a7:d0:10:50:52:a5:c4:22:
7c:08:1d:de:9e:c2:b5:dd:0b:b4:4e:05:e3:d5:23:39:ad:de:
a7:3e:98:b3:2d:de:73:cd:02:f8:a8:7a:d7:74:df:ce:95:a2:
fc:0a:eb:00:a3:0e:b5:df:36:4a:68:99:2b:e3:0a:a8:ce:6f:
6d:c5:f6:d7:1f:85:5c:f9:8d:17:05:2d:c9:cc:8e:f2:3c:89:
08:4a:40:33:3c:41:e7:cf:52:0f:5a:35:7f:88:7c:ea:c4:1f:
bf:9d:ef:6d
-----BEGIN CERTIFICATE-----
MIIFjzCCBHegAwIBAgISAYzCbW6ESKFOcHDlutS6vocaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAxMDAzMDAwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwMTIzMTFmODBhN2E3NmU5YWUwM2I4YzEzZDgyZDgzZTljMGY4MzIyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArv+VEib6GUJPstFeRk3cZXCGEjbl
Vvz5+6VOj/1KVNQibMwPIj7xXvu9SFnD/aeexS03TFpQLxUAEy+r58pSxHbpQPaJ
PfOWGn7x3A4azg3ojCf4bgPk5Wu/kMJgPIHMv3lj+XmBhxwxCeY4tcug4t9uwla+
RS96wd96IuLGbh+619IdvGAHhTkaK1lXHCvISgunZaHhmCjJceDLMnqP0KLzVfK8
vRx+YU8/SoXI2UcyqBbphd9+QRAw4nIlYInqx4vNXEXqBB60C9PeP3X0gU+Q5mQW
RpcAE3Ek+Ye68sdy0hhVuDz2o6L6rYBfaYrpsYBEIq1wj8CdgHRX6uq2awIDAQAB
o4ICmzCCApcwHQYDVR0OBBYEFAEjEfgKenbprgO4wT2C2D6cD4MiMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzY0LzAzOTZl
ZS0wYWVhLTQ3ZjMtYjlmZS01YjliYTkxZGUzM2QvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjQvMDM5NmVl
LTBhZWEtNDdmMy1iOWZlLTViOWJhOTFkZTMzZC8xL0FTTVItQXA2ZHVtdUE3akJQ
WUxZUHB3UGd5SS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDYGCCsGAQUF
BwEHAQH/BCcwJTASBAIAATAMAwQAwbAvAwQAwbA9MA8EAgACMAkDBwAgAQZ8J4Qw
DQYJKoZIhvcNAQELBQADggEBAEt8leSO3NxEQVnnSWgSMs7V/xLFcUJwM3leri6Y
hq/iZj6L+8t2DA5ARV/lVVDPdgX9K+FwZLavuazA5emlnVPYIlfbP1s1brX5BYsN
mWLTMv0XNhtioKvfQhB5zP6Ji8A+ayxro3PzBwFNrCMuI4iEy7R82wruK8LVcm0S
MWlNca+0wFVD8E/RjHmHeuiHaD+1N3h4x/yi+wSn0BBQUqXEInwIHd6ewrXdC7RO
BePVIzmt3qc+mLMt3nPNAvioetd0386VovwK6wCjDrXfNkpomSvjCqjOb23F9tcf
hVz5jRcFLcnMjvI8iQhKQDM8QefPUg9aNX+IfOrEH7+d720=
-----END CERTIFICATE-----
Generated at Thu Dec 26 17:29:14 2024 by rpki-client on console-ams.rpki-client.org