Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/B1JlicUZTx5fu5_cUWZ9rwVi1tk.cer
File: B1JlicUZTx5fu5_cUWZ9rwVi1tk.cer (raw, json)
Hash identifier: GlmCqnVg+CbZVRE6xGWtQb21VkRNOs563BC9x61uLEU=
Subject key identifier: 07:52:65:89:C5:19:4F:1E:5F:BB:9F:DC:51:66:7D:AF:05:62:D6:D9
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018E1A5BEC9779F45F1C391E37E308E4904A
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/1c/a5a774-8553-4414-ac3c-dd170c1fd33c/1/B1JlicUZTx5fu5_cUWZ9rwVi1tk.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/1c/a5a774-8553-4414-ac3c-dd170c1fd33c/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 07 Mar 2024 19:20:15 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 206041
IP: 185.32.69.0/24
IP: 2a12:c7c0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:1a:5b:ec:97:79:f4:5f:1c:39:1e:37:e3:08:e4:90:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Mar 7 19:20:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=07526589c5194f1e5fbb9fdc51667daf0562d6d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:64:b3:e1:eb:03:85:83:ae:37:80:96:2c:8d:
7a:70:ed:f2:50:c4:20:6d:bb:1f:a0:94:a7:98:72:
5d:e7:06:0b:eb:16:c1:8d:56:5b:74:a3:5d:80:56:
e6:e2:f4:e6:1e:df:a8:a2:3b:ca:c4:88:c4:18:90:
c9:90:52:6f:92:06:2d:a1:64:d1:e3:0c:86:7a:a9:
6b:38:8d:d5:f7:a4:01:0c:77:32:1f:c2:7e:30:52:
40:fa:cf:d7:b9:7b:53:1c:ce:48:4f:80:7f:71:a9:
e6:ef:74:39:a3:53:6d:4e:3b:cd:4a:87:49:ef:03:
aa:45:fe:fc:69:6c:19:15:56:43:26:97:28:a4:09:
0c:11:fe:8b:82:0d:19:1b:ac:1a:1c:56:a4:c0:c0:
28:8f:0a:a9:ac:fd:ca:78:a2:76:d2:80:89:d9:1f:
e6:a4:55:ff:f6:38:96:f5:76:8b:7f:df:d7:93:aa:
3c:5c:05:bd:c0:07:aa:bf:4c:f1:bc:64:dc:ba:bd:
13:15:57:09:e5:9b:20:21:dc:73:e7:15:23:fc:0e:
67:00:e5:fe:3c:6e:2d:db:aa:2b:0e:74:6c:99:68:
93:e6:b5:f2:e7:cd:f9:2c:f8:f2:11:48:a2:9a:2e:
ae:b2:e6:0b:e8:7d:6c:1e:ab:83:4e:b7:65:7c:89:
0d:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:52:65:89:C5:19:4F:1E:5F:BB:9F:DC:51:66:7D:AF:05:62:D6:D9
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/a5a774-8553-4414-ac3c-dd170c1fd33c/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/a5a774-8553-4414-ac3c-dd170c1fd33c/1/B1JlicUZTx5fu5_cUWZ9rwVi1tk.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.32.69.0/24
IPv6:
2a12:c7c0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
206041
Signature Algorithm: sha256WithRSAEncryption
4d:79:3b:57:bb:0a:f3:5a:9d:ee:be:cb:be:01:c4:8d:3f:d6:
f5:90:4b:dd:41:46:74:60:96:08:fc:46:f3:a7:28:d3:a5:3b:
20:5c:68:db:a6:aa:74:af:92:8d:02:dc:bd:0f:a9:82:0e:22:
8b:b8:69:da:e4:91:08:41:ce:e5:49:5f:fb:22:2b:83:0f:43:
ac:ea:c8:73:73:45:3d:02:df:a6:e8:b6:2a:a5:59:98:72:4e:
f5:af:59:1a:d5:49:3d:87:29:59:d3:5d:86:9d:4a:51:c4:28:
f2:89:75:aa:4a:a9:38:32:ab:0d:85:d1:47:db:d1:e1:e7:a6:
10:3c:53:6f:9d:b6:fb:dd:fe:f6:b3:70:85:74:7c:50:6b:31:
b9:47:10:d5:81:02:df:b4:cf:9c:81:d9:78:af:7d:ac:21:d3:
7a:ed:b8:b0:91:1f:4d:2c:52:13:d1:b7:cb:2f:ce:a5:96:ef:
aa:da:27:f2:a6:24:47:49:fa:ab:af:c2:3a:6d:38:90:3a:7e:
9c:3e:da:c1:6f:02:a1:dc:14:75:51:74:de:66:22:02:85:54:
4d:2b:41:b5:42:19:0b:a1:51:7a:2d:77:45:da:56:a5:ad:f3:
22:df:1b:7a:21:09:60:e4:43:e8:a0:af:31:d6:90:35:7d:0e:
61:3c:b5:7f
-----BEGIN CERTIFICATE-----
MIIFozCCBIugAwIBAgISAY4aW+yXefRfHDkeN+MI5JBKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMzA3MTkyMDE1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwNzUyNjU4OWM1MTk0ZjFlNWZiYjlmZGM1MTY2N2RhZjA1NjJkNmQ5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzmSz4esDhYOuN4CWLI16cO3yUMQg
bbsfoJSnmHJd5wYL6xbBjVZbdKNdgFbm4vTmHt+oojvKxIjEGJDJkFJvkgYtoWTR
4wyGeqlrOI3V96QBDHcyH8J+MFJA+s/XuXtTHM5IT4B/canm73Q5o1NtTjvNSodJ
7wOqRf78aWwZFVZDJpcopAkMEf6Lgg0ZG6waHFakwMAojwqprP3KeKJ20oCJ2R/m
pFX/9jiW9XaLf9/Xk6o8XAW9wAeqv0zxvGTcur0TFVcJ5ZsgIdxz5xUj/A5nAOX+
PG4t26orDnRsmWiT5rXy5835LPjyEUiimi6usuYL6H1sHquDTrdlfIkNfQIDAQAB
o4ICrzCCAqswHQYDVR0OBBYEFAdSZYnFGU8eX7uf3FFmfa8FYtbZMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzFjL2E1YTc3
NC04NTUzLTQ0MTQtYWMzYy1kZDE3MGMxZmQzM2MvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMWMvYTVhNzc0
LTg1NTMtNDQxNC1hYzNjLWRkMTcwYzFmZDMzYy8xL0IxSmxpY1VaVHg1ZnU1X2NV
V1o5cndWaTF0ay5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF
BwEHAQH/BB8wHTAMBAIAATAGAwQAuSBFMA0EAgACMAcDBQMqEsfAMBoGCCsGAQUF
BwEIAQH/BAswCaAHMAUCAwMk2TANBgkqhkiG9w0BAQsFAAOCAQEATXk7V7sK81qd
7r7LvgHEjT/W9ZBL3UFGdGCWCPxG86co06U7IFxo26aqdK+SjQLcvQ+pgg4ii7hp
2uSRCEHO5Ulf+yIrgw9DrOrIc3NFPQLfpui2KqVZmHJO9a9ZGtVJPYcpWdNdhp1K
UcQo8ol1qkqpODKrDYXRR9vR4eemEDxTb522+93+9rNwhXR8UGsxuUcQ1YEC37TP
nIHZeK99rCHTeu24sJEfTSxSE9G3yy/OpZbvqton8qYkR0n6q6/COm04kDp+nD7a
wW8CodwUdVF03mYiAoVUTStBtUIZC6FRei13RdpWpa3zIt8beiEJYORD6KCvMdaQ
NX0OYTy1fw==
-----END CERTIFICATE-----
Generated at Sat Nov 23 10:04:52 2024 by rpki-client on console-fra.rpki-client.org