Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/BV1ugjSUcsyv0KBp9Xj2R8MKmEY.cer
File: BV1ugjSUcsyv0KBp9Xj2R8MKmEY.cer (raw, json)
Hash identifier: pKk919eI5mLqPTkTTpJ1U2GT1ui8fhJRzzdZvmk2V04=
Subject key identifier: 05:5D:6E:82:34:94:72:CC:AF:D0:A0:69:F5:78:F6:47:C3:0A:98:46
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC3B6ECB7DA86BDDC98120DA948DF2AB9
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/d5/880a54-d301-492d-acba-5aae3ab78995/1/BV1ugjSUcsyv0KBp9Xj2R8MKmEY.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/d5/880a54-d301-492d-acba-5aae3ab78995/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 06:29:54 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 202043
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Dec 2024 06:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:b6:ec:b7:da:86:bd:dc:98:12:0d:a9:48:df:2a:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 06:29:54 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=055d6e82349472ccafd0a069f578f647c30a9846
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:9f:af:65:04:fb:d8:77:d3:38:d4:4c:a1:60:
d8:c1:d1:53:f7:27:ec:3f:29:f8:a3:b2:3a:20:15:
7a:e7:c8:be:ba:dd:73:7c:19:a7:a3:1a:f6:12:14:
e4:ad:6f:06:f3:fb:7a:b1:44:a7:a0:f1:ba:af:0f:
b0:e6:f2:c1:6e:36:69:00:be:52:24:b6:ee:c1:84:
ca:3b:00:70:74:77:fb:c1:85:83:3a:e2:f9:95:31:
3d:f6:f8:bb:4c:5f:ad:92:2c:92:7d:af:6a:56:0f:
af:a3:92:34:58:01:a1:76:4a:91:11:93:a8:cf:26:
7a:a0:7b:94:9a:93:da:ac:1b:1e:dd:d6:17:5d:90:
89:51:e6:98:38:2f:48:85:f4:c2:65:5f:34:53:ae:
15:ac:58:86:9f:aa:85:0c:68:d1:d0:d0:5b:2e:f9:
28:f4:c8:96:36:08:e5:44:ff:19:42:34:b9:ca:d5:
e1:3d:3f:3d:98:f0:ac:0a:6c:0e:91:a3:b0:cd:86:
fd:73:8c:d9:66:03:c3:49:24:78:e3:0f:8b:76:e5:
2d:c5:15:eb:96:b1:41:5e:64:6f:a3:5c:f9:a4:de:
20:27:84:2b:2e:e2:fd:36:6a:77:5a:0e:13:de:5f:
ec:a7:86:b2:bd:7d:f3:64:7d:9b:d3:4d:20:a5:7e:
54:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:5D:6E:82:34:94:72:CC:AF:D0:A0:69:F5:78:F6:47:C3:0A:98:46
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/880a54-d301-492d-acba-5aae3ab78995/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/880a54-d301-492d-acba-5aae3ab78995/1/BV1ugjSUcsyv0KBp9Xj2R8MKmEY.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
202043
Signature Algorithm: sha256WithRSAEncryption
0a:94:35:64:ff:fc:d3:50:25:ec:ab:aa:df:8a:c8:08:45:97:
cf:5c:c8:67:93:03:ec:a0:41:dd:e4:ba:54:8f:da:df:3b:13:
60:77:c1:f4:40:ac:8b:6f:9f:9f:26:36:b7:30:d7:71:b3:83:
07:8d:f9:9c:6e:cf:6d:75:21:83:0c:3f:ae:5f:49:9e:0b:c6:
ca:74:65:96:81:d7:b8:98:e5:43:83:86:c9:67:5a:88:e1:8a:
7a:5b:f2:c3:0a:23:6c:a9:f3:dd:43:fc:36:52:86:8e:da:18:
34:02:f7:47:9a:25:d0:bf:20:30:50:f1:08:ee:a3:15:fb:5d:
c9:4d:d3:4a:29:9e:f5:f6:a9:2c:0b:26:af:98:5d:0f:82:16:
28:2b:d1:67:6e:9d:89:84:57:19:47:85:09:e9:a5:21:08:fe:
c8:f9:a3:84:ec:df:15:2d:ff:e4:6f:7e:eb:61:c6:4f:97:56:
a0:e8:93:33:93:63:c6:1a:ba:3e:45:a0:94:46:5c:09:d2:40:
12:e5:04:39:0a:6e:9d:ad:6c:1b:b6:5d:53:f9:2b:56:b3:1b:
96:6b:3f:b3:15:d2:65:72:dd:b0:3c:c1:19:33:e7:13:64:49:
25:82:af:e3:f8:8f:bd:81:be:67:42:6e:1c:b7:24:09:43:bd:
33:b2:33:54
-----BEGIN CERTIFICATE-----
MIIFczCCBFugAwIBAgISAYzDtuy32oa93JgSDalI3yq5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAxMDYyOTU0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwNTVkNmU4MjM0OTQ3MmNjYWZkMGEwNjlmNTc4ZjY0N2MzMGE5ODQ2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwJ+vZQT72HfTONRMoWDYwdFT9yfs
Pyn4o7I6IBV658i+ut1zfBmnoxr2EhTkrW8G8/t6sUSnoPG6rw+w5vLBbjZpAL5S
JLbuwYTKOwBwdHf7wYWDOuL5lTE99vi7TF+tkiySfa9qVg+vo5I0WAGhdkqREZOo
zyZ6oHuUmpParBse3dYXXZCJUeaYOC9IhfTCZV80U64VrFiGn6qFDGjR0NBbLvko
9MiWNgjlRP8ZQjS5ytXhPT89mPCsCmwOkaOwzYb9c4zZZgPDSSR44w+LduUtxRXr
lrFBXmRvo1z5pN4gJ4QrLuL9Nmp3Wg4T3l/sp4ayvX3zZH2b000gpX5U0QIDAQAB
o4ICfzCCAnswHQYDVR0OBBYEFAVdboI0lHLMr9CgafV49kfDCphGMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2Q1Lzg4MGE1
NC1kMzAxLTQ5MmQtYWNiYS01YWFlM2FiNzg5OTUvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDUvODgwYTU0
LWQzMDEtNDkyZC1hY2JhLTVhYWUzYWI3ODk5NS8xL0JWMXVnalNVY3N5djBLQnA5
WGoyUjhNS21FWS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMBoGCCsGAQUF
BwEIAQH/BAswCaAHMAUCAwMVOzANBgkqhkiG9w0BAQsFAAOCAQEACpQ1ZP/801Al
7Kuq34rICEWXz1zIZ5MD7KBB3eS6VI/a3zsTYHfB9ECsi2+fnyY2tzDXcbODB435
nG7PbXUhgww/rl9JngvGynRlloHXuJjlQ4OGyWdaiOGKelvywwojbKnz3UP8NlKG
jtoYNAL3R5ol0L8gMFDxCO6jFftdyU3TSime9fapLAsmr5hdD4IWKCvRZ26diYRX
GUeFCemlIQj+yPmjhOzfFS3/5G9+62HGT5dWoOiTM5Njxhq6PkWglEZcCdJAEuUE
OQpuna1sG7ZdU/krVrMblms/sxXSZXLdsDzBGTPnE2RJJYKv4/iPvYG+Z0JuHLck
CUO9M7IzVA==
-----END CERTIFICATE-----
Generated at Thu Dec 26 17:01:58 2024 by rpki-client on console-fra.rpki-client.org