Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/EFW6jUmi3R6Rw6rMvPFE8EWT8bM.cer
File: EFW6jUmi3R6Rw6rMvPFE8EWT8bM.cer (raw, json)
Hash identifier: f3DsKxlhVSQPxOT3aGyWx9Rnh4x7iAQRb/OEePyQYaU=
Subject key identifier: 10:55:BA:8D:49:A2:DD:1E:91:C3:AA:CC:BC:F1:44:F0:45:93:F1:B3
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC2DB1E3D5926494482DFD5806F7D62C8
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/c4/e1d8f8-dbdd-47a3-8c68-4edaf77a0e5d/1/EFW6jUmi3R6Rw6rMvPFE8EWT8bM.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/c4/e1d8f8-dbdd-47a3-8c68-4edaf77a0e5d/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 02:29:49 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 51114
IP: 178.250.80.0/21
IP: 2a03:b400::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 25 Apr 2024 14:05:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:db:1e:3d:59:26:49:44:82:df:d5:80:6f:7d:62:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 02:29:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1055ba8d49a2dd1e91c3aaccbcf144f04593f1b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:af:10:58:27:d5:e6:21:db:51:66:dc:e5:a4:
1c:0d:91:8b:7c:21:39:a9:80:d5:38:f5:6d:43:d4:
88:21:83:b6:7c:72:21:c2:5a:e7:2d:ed:cb:f8:e6:
67:64:b8:d4:ba:4d:6b:be:6f:4d:16:70:28:ac:d0:
c9:76:09:4a:17:ec:35:da:5b:a0:16:1c:6b:2b:84:
b7:f0:1c:8c:c3:c4:a0:16:d8:dd:92:be:0b:24:21:
d5:5e:65:81:9f:78:d2:d8:be:c6:b3:df:d5:69:8d:
51:ba:4b:ed:33:0a:05:8f:d0:4b:83:34:5d:1b:c3:
bb:be:81:85:77:07:d2:58:38:13:03:b1:1a:dc:66:
75:e3:b0:53:94:79:34:7e:0f:6c:f7:6d:30:c4:bc:
10:84:6e:d4:d7:34:67:56:21:9d:f6:b9:61:b4:33:
63:7c:66:5f:25:8a:0a:6c:51:63:68:a2:c8:48:89:
c9:da:99:b3:bc:6b:3a:b9:8e:6d:14:88:3c:0f:bc:
d9:d9:56:ea:37:a5:06:ef:46:01:81:5f:3e:93:3e:
11:18:e4:4d:aa:03:dd:4c:92:fd:c5:6f:b7:32:bb:
26:e1:30:e1:57:7a:c0:f7:a5:31:94:f9:51:36:bf:
d5:04:1f:30:4f:5b:13:a1:21:28:7b:7d:2b:b9:a5:
6d:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:55:BA:8D:49:A2:DD:1E:91:C3:AA:CC:BC:F1:44:F0:45:93:F1:B3
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/e1d8f8-dbdd-47a3-8c68-4edaf77a0e5d/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/e1d8f8-dbdd-47a3-8c68-4edaf77a0e5d/1/EFW6jUmi3R6Rw6rMvPFE8EWT8bM.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.250.80.0/21
IPv6:
2a03:b400::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
51114
Signature Algorithm: sha256WithRSAEncryption
05:01:8b:da:9d:52:26:3a:54:15:bf:81:98:e7:36:be:dd:10:
0a:31:58:f3:2b:7d:41:a0:9e:16:3a:b4:b8:9d:cb:71:8f:88:
1c:9e:4d:94:5f:ed:ec:ef:86:44:0a:44:43:33:74:9d:83:c8:
cd:53:2a:e5:3a:b5:4d:f8:97:3d:08:da:f2:21:d0:f4:31:a0:
e6:a4:c1:94:61:d2:ff:11:d7:eb:d6:48:47:c6:36:89:2d:1c:
9b:86:8d:f9:a0:97:bd:5f:31:32:24:52:73:c9:2f:fd:ce:c1:
e0:29:70:d3:09:a6:b5:c0:dd:77:89:9c:1e:0b:09:36:f8:40:
93:fb:f7:aa:ab:c0:ca:77:f7:b7:2b:73:e5:8e:fc:ee:40:61:
dd:d3:ff:0d:9b:39:c4:06:b2:11:ea:c0:38:7c:82:47:57:b9:
71:a2:37:f2:24:9d:03:cc:06:32:be:ce:8a:3c:d7:da:21:64:
57:a7:e8:02:f1:dc:2c:3b:af:f4:c1:da:87:18:9a:c8:05:bf:
60:d6:72:84:21:13:71:20:9b:39:d8:67:27:d9:83:5b:bc:ec:
87:1d:99:aa:35:12:a2:a3:41:ec:8f:b9:b1:2d:00:a2:01:61:
4a:18:37:75:de:32:0f:52:2e:00:28:c1:34:66:42:d8:54:93:
ca:93:a9:22
-----BEGIN CERTIFICATE-----
MIIFozCCBIugAwIBAgISAYzC2x49WSZJRILf1YBvfWLIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAxMDIyOTQ5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMDU1YmE4ZDQ5YTJkZDFlOTFjM2FhY2NiY2YxNDRmMDQ1OTNmMWIzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5K8QWCfV5iHbUWbc5aQcDZGLfCE5
qYDVOPVtQ9SIIYO2fHIhwlrnLe3L+OZnZLjUuk1rvm9NFnAorNDJdglKF+w12lug
FhxrK4S38ByMw8SgFtjdkr4LJCHVXmWBn3jS2L7Gs9/VaY1RukvtMwoFj9BLgzRd
G8O7voGFdwfSWDgTA7Ea3GZ147BTlHk0fg9s920wxLwQhG7U1zRnViGd9rlhtDNj
fGZfJYoKbFFjaKLISInJ2pmzvGs6uY5tFIg8D7zZ2VbqN6UG70YBgV8+kz4RGORN
qgPdTJL9xW+3Mrsm4TDhV3rA96UxlPlRNr/VBB8wT1sToSEoe30ruaVtaQIDAQAB
o4ICrzCCAqswHQYDVR0OBBYEFBBVuo1Jot0ekcOqzLzxRPBFk/GzMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2M0L2UxZDhm
OC1kYmRkLTQ3YTMtOGM2OC00ZWRhZjc3YTBlNWQvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzQvZTFkOGY4
LWRiZGQtNDdhMy04YzY4LTRlZGFmNzdhMGU1ZC8xL0VGVzZqVW1pM1I2Unc2ck12
UEZFOEVXVDhiTS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF
BwEHAQH/BB8wHTAMBAIAATAGAwQDsvpQMA0EAgACMAcDBQAqA7QAMBoGCCsGAQUF
BwEIAQH/BAswCaAHMAUCAwDHqjANBgkqhkiG9w0BAQsFAAOCAQEABQGL2p1SJjpU
Fb+BmOc2vt0QCjFY8yt9QaCeFjq0uJ3LcY+IHJ5NlF/t7O+GRApEQzN0nYPIzVMq
5Tq1TfiXPQja8iHQ9DGg5qTBlGHS/xHX69ZIR8Y2iS0cm4aN+aCXvV8xMiRSc8kv
/c7B4Clw0wmmtcDdd4mcHgsJNvhAk/v3qqvAynf3tytz5Y787kBh3dP/DZs5xAay
EerAOHyCR1e5caI38iSdA8wGMr7OijzX2iFkV6foAvHcLDuv9MHahxiayAW/YNZy
hCETcSCbOdhnJ9mDW7zshx2ZqjUSoqNB7I+5sS0AogFhShg3dd4yD1IuACjBNGZC
2FSTypOpIg==
-----END CERTIFICATE-----
Generated at Wed Apr 24 22:03:57 2024 by rpki-client on console-ams.rpki-client.org