Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/CeSo1nBtnQ-cEJHKaZUfSr1Z1Cs.cer
File: CeSo1nBtnQ-cEJHKaZUfSr1Z1Cs.cer (raw, json)
Hash identifier: uZCYaOUK6YhavkVolmvA7Dg5DwySHe0asSJkxxtDBBw=
Subject key identifier: 09:E4:A8:D6:70:6D:9D:0F:9C:10:91:CA:69:95:1F:4A:BD:59:D4:2B
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC3489AD83123D19D706A5AE4EE49CC03
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/b8/47eb7b-c3ba-478a-8178-404d31280e61/1/CeSo1nBtnQ-cEJHKaZUfSr1Z1Cs.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/b8/47eb7b-c3ba-478a-8178-404d31280e61/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 04:29:24 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 203591
IP: 178.22.248.0/21
IP: 185.6.240.0/22
IP: 2a03:2340::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:48:9a:d8:31:23:d1:9d:70:6a:5a:e4:ee:49:cc:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 04:29:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=09e4a8d6706d9d0f9c1091ca69951f4abd59d42b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:63:41:e8:a9:8b:3c:bd:b7:70:4c:e1:17:f7:
7e:bf:a1:ca:86:5e:b2:b5:75:26:50:df:9f:5b:df:
0e:ff:d3:b9:b0:47:17:b9:67:b4:c1:8f:d1:4f:48:
03:2a:2d:22:bc:1d:ef:5b:78:ea:db:0d:13:65:d2:
88:7e:b5:7d:2f:a4:51:56:69:ee:08:f7:7b:1d:12:
91:fe:60:68:5d:5e:bf:e6:58:1f:42:81:dd:dc:4e:
7b:89:d9:4c:0b:be:8b:1a:bd:dd:b0:95:b1:77:93:
d1:8a:43:36:c4:21:5e:d6:a4:98:f8:4b:1f:52:9e:
87:77:24:ce:f0:f3:4d:47:f6:ee:51:ed:ef:d7:ac:
26:e1:23:b3:ff:d9:f0:31:dc:2a:e5:ec:a7:f1:49:
8b:91:d7:a2:82:fc:11:a9:dc:f6:2d:bf:f6:5f:8c:
7c:6c:3d:9e:18:6f:e1:04:68:d9:49:af:94:92:b4:
df:f2:65:2a:b7:a6:6b:f6:8b:bd:ea:69:da:e3:9c:
80:56:71:0d:16:f2:13:d8:7a:67:d6:4b:f4:6f:05:
61:ae:b5:6e:2c:d4:e7:27:1b:21:3e:48:54:18:a4:
b7:b0:57:f0:67:ca:02:65:9a:80:a4:34:e0:0e:3a:
b5:36:58:cd:7b:0f:5b:ce:07:42:f8:09:e8:c9:95:
5a:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:E4:A8:D6:70:6D:9D:0F:9C:10:91:CA:69:95:1F:4A:BD:59:D4:2B
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/47eb7b-c3ba-478a-8178-404d31280e61/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/47eb7b-c3ba-478a-8178-404d31280e61/1/CeSo1nBtnQ-cEJHKaZUfSr1Z1Cs.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.22.248.0/21
185.6.240.0/22
IPv6:
2a03:2340::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
203591
Signature Algorithm: sha256WithRSAEncryption
6a:54:1b:dc:24:29:9f:4a:b9:bc:fe:5c:81:af:21:9a:89:06:
ee:96:4c:f5:31:98:ff:5a:db:5f:49:4a:6b:7d:ce:05:f8:24:
ce:37:04:fe:7e:22:4f:9c:2a:78:74:19:1d:e7:3b:8c:00:3b:
40:6e:13:7c:1a:67:d6:4d:81:11:23:21:53:91:e5:0d:17:25:
69:af:44:6b:d0:4b:7c:7e:63:97:fc:83:30:78:3d:fe:ac:d1:
51:17:19:e1:a6:bf:c9:08:ee:d5:82:4c:37:22:83:e0:2d:a4:
75:30:c9:5f:82:6a:7a:d7:59:25:1f:c2:7f:e3:83:d9:13:05:
78:6b:42:88:ab:3d:c1:1c:17:ae:bc:0b:88:4b:89:c2:eb:2c:
02:2a:89:33:83:8c:35:05:a5:17:53:08:14:16:fe:9d:13:42:
57:64:23:b6:a6:fe:0e:b1:23:3a:34:57:97:d0:8a:b2:cb:7f:
5c:7d:f0:36:a1:58:4b:08:45:a1:83:d4:a6:fd:e6:cf:74:21:
a0:00:32:61:d7:c8:e5:14:6c:66:f6:38:c5:45:45:92:49:24:
46:dc:e5:61:c7:39:b5:51:dc:d3:d3:b6:8c:ee:cc:b0:9d:57:
60:a2:4f:48:bb:e7:8f:98:4b:a4:b1:52:92:f3:e3:87:be:8c:
2d:f8:30:a3
-----BEGIN CERTIFICATE-----
MIIFqTCCBJGgAwIBAgISAYzDSJrYMSPRnXBqWuTuScwDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAxMDQyOTI0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwOWU0YThkNjcwNmQ5ZDBmOWMxMDkxY2E2OTk1MWY0YWJkNTlkNDJiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw2NB6KmLPL23cEzhF/d+v6HKhl6y
tXUmUN+fW98O/9O5sEcXuWe0wY/RT0gDKi0ivB3vW3jq2w0TZdKIfrV9L6RRVmnu
CPd7HRKR/mBoXV6/5lgfQoHd3E57idlMC76LGr3dsJWxd5PRikM2xCFe1qSY+Esf
Up6HdyTO8PNNR/buUe3v16wm4SOz/9nwMdwq5eyn8UmLkdeigvwRqdz2Lb/2X4x8
bD2eGG/hBGjZSa+UkrTf8mUqt6Zr9ou96mna45yAVnENFvIT2Hpn1kv0bwVhrrVu
LNTnJxshPkhUGKS3sFfwZ8oCZZqApDTgDjq1NljNew9bzgdC+AnoyZVa2wIDAQAB
o4ICtTCCArEwHQYDVR0OBBYEFAnkqNZwbZ0PnBCRymmVH0q9WdQrMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2I4LzQ3ZWI3
Yi1jM2JhLTQ3OGEtODE3OC00MDRkMzEyODBlNjEvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjgvNDdlYjdi
LWMzYmEtNDc4YS04MTc4LTQwNGQzMTI4MGU2MS8xL0NlU28xbkJ0blEtY0VKSEth
WlVmU3IxWjFDcy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDQGCCsGAQUF
BwEHAQH/BCUwIzASBAIAATAMAwQDshb4AwQCuQbwMA0EAgACMAcDBQAqAyNAMBoG
CCsGAQUFBwEIAQH/BAswCaAHMAUCAwMbRzANBgkqhkiG9w0BAQsFAAOCAQEAalQb
3CQpn0q5vP5cga8hmokG7pZM9TGY/1rbX0lKa33OBfgkzjcE/n4iT5wqeHQZHec7
jAA7QG4TfBpn1k2BESMhU5HlDRclaa9Ea9BLfH5jl/yDMHg9/qzRURcZ4aa/yQju
1YJMNyKD4C2kdTDJX4JqetdZJR/Cf+OD2RMFeGtCiKs9wRwXrrwLiEuJwussAiqJ
M4OMNQWlF1MIFBb+nRNCV2Qjtqb+DrEjOjRXl9CKsst/XH3wNqFYSwhFoYPUpv3m
z3QhoAAyYdfI5RRsZvY4xUVFkkkkRtzlYcc5tVHc09O2jO7MsJ1XYKJPSLvnj5hL
pLFSkvPjh76MLfgwow==
-----END CERTIFICATE-----
Generated at Sat Nov 23 10:05:17 2024 by rpki-client on console-fra.rpki-client.org