Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/Ea1JxH4tDkDPybNqK9LFFOKmJns.cer
File: Ea1JxH4tDkDPybNqK9LFFOKmJns.cer (raw, json)
Hash identifier: bdwXl5jMqP1EXNiuMBWC5DuR8+RXxQoed1Le7WvVaJo=
Subject key identifier: 11:AD:49:C4:7E:2D:0E:40:CF:C9:B3:6A:2B:D2:C5:14:E2:A6:26:7B
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC6112FB0FF790BA9F06AD4C00266895F
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/11AD49C47E2D0E40CFC9B36A2BD2C514E2A6267B.mft
caRepository: rsync://rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/
Notify URL: https://rrdp.paas.rpki.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 17:27:44 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 202359
AS: 207960
IP: 193.3.165.0/24
IP: 2001:678:fc8::/48
IP: 2a11:f2c0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 09 May 2024 08:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:11:2f:b0:ff:79:0b:a9:f0:6a:d4:c0:02:66:89:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 17:27:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=11ad49c47e2d0e40cfc9b36a2bd2c514e2a6267b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:48:d8:c0:40:2f:55:4a:53:4f:09:80:82:8a:
f0:ce:11:a4:01:37:a2:4c:54:a8:64:8a:c3:8b:54:
64:7d:a8:48:c2:4f:1d:a1:ea:f2:e6:d8:a5:8f:05:
e8:9f:4c:b2:d0:35:c4:b4:a1:26:9d:58:59:9d:8b:
03:e3:1b:25:56:53:b4:fc:b0:97:c5:c5:41:a5:4d:
4d:13:ed:c3:34:ec:9d:33:fd:c1:39:68:07:10:27:
07:2a:7a:0c:20:35:a4:a1:7c:9e:6a:3f:e9:79:17:
12:b0:58:86:72:e7:c7:79:5a:6b:76:5d:2a:6a:40:
11:0a:4c:c2:9f:5a:e3:76:14:95:db:5c:6e:ca:9f:
43:8e:ca:c1:38:a7:a8:56:26:d1:8c:5b:87:cd:6b:
8c:2b:d6:16:e5:f7:2f:22:60:6d:f9:5e:be:13:fe:
f0:34:44:b8:ef:a6:bc:06:6d:3e:fb:83:40:2b:43:
65:3f:a5:ea:b0:3b:2f:c7:aa:93:48:2f:69:5c:4b:
dd:5a:9b:f2:f1:0d:72:7f:c7:72:28:a1:ae:c5:74:
e1:21:fd:cc:79:24:32:54:c1:cb:f2:ea:ba:77:68:
38:bb:e3:56:b2:b3:0c:d6:3e:e7:12:a5:2a:0c:0d:
09:d5:41:f3:f9:f5:06:9c:15:6d:f7:17:b7:f7:27:
34:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:AD:49:C4:7E:2D:0E:40:CF:C9:B3:6A:2B:D2:C5:14:E2:A6:26:7B
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/
RPKI Manifest - URI:rsync://rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/11AD49C47E2D0E40CFC9B36A2BD2C514E2A6267B.mft
RPKI Notify - URI:https://rrdp.paas.rpki.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.3.165.0/24
IPv6:
2001:678:fc8::/48
2a11:f2c0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
202359
207960
Signature Algorithm: sha256WithRSAEncryption
0f:8c:42:38:4d:cb:ec:66:79:e5:50:4d:d1:41:40:52:0b:44:
c8:d1:1d:28:47:c0:58:13:40:06:37:d3:d7:5b:c5:e3:a1:69:
3c:b1:39:2a:ac:27:5c:e8:f4:14:35:4f:af:99:9f:7e:8b:1b:
c6:27:10:e2:ad:62:97:2d:da:2d:e3:50:74:e3:61:06:39:19:
cc:6a:cf:ff:26:24:3d:3e:0c:36:05:ed:d1:b5:e8:00:f6:11:
ae:17:49:c6:f6:96:63:dc:e7:2b:12:40:b1:d5:c4:58:c3:66:
fa:4b:31:66:7a:e9:9b:4b:69:fb:b2:22:fa:c7:18:48:d0:92:
69:be:cf:7e:25:da:a9:de:f9:ce:99:73:6f:c3:32:30:f9:f7:
cf:1d:ce:7e:f4:c6:af:7b:b4:c1:f9:e6:23:32:8e:55:a9:05:
ff:55:23:f4:53:a1:0d:cc:06:d0:22:cf:8a:e7:db:77:2c:c6:
93:be:9b:96:36:28:0d:e8:f3:88:9d:ba:55:71:b1:2a:12:c3:
d7:6c:b5:4f:7b:e9:07:02:c0:b8:c0:f5:1b:e6:f3:12:fb:2d:
76:5a:23:29:4e:ec:83:ef:92:77:93:45:a6:2e:b2:17:b5:9b:
41:4d:eb:8f:d9:f4:97:90:fe:6c:1c:64:ae:a6:ea:55:bb:0d:
a6:e1:32:28
-----BEGIN CERTIFICATE-----
MIIFzTCCBLWgAwIBAgISAYzGES+w/3kLqfBq1MACZolfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAxMTcyNzQ0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMWFkNDljNDdlMmQwZTQwY2ZjOWIzNmEyYmQyYzUxNGUyYTYyNjdiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2EjYwEAvVUpTTwmAgorwzhGkATei
TFSoZIrDi1RkfahIwk8doery5tiljwXon0yy0DXEtKEmnVhZnYsD4xslVlO0/LCX
xcVBpU1NE+3DNOydM/3BOWgHECcHKnoMIDWkoXyeaj/peRcSsFiGcufHeVprdl0q
akARCkzCn1rjdhSV21xuyp9DjsrBOKeoVibRjFuHzWuMK9YW5fcvImBt+V6+E/7w
NES476a8Bm0++4NAK0NlP6XqsDsvx6qTSC9pXEvdWpvy8Q1yf8dyKKGuxXThIf3M
eSQyVMHL8uq6d2g4u+NWsrMM1j7nEqUqDA0J1UHz+fUGnBVt9xe39yc0QQIDAQAB
o4IC2TCCAtUwHQYDVR0OBBYEFBGtScR+LQ5Az8mzaivSxRTipiZ7MB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggE/BggrBgEFBQcBCwSCATEwggEtMF8GCCsGAQUFBzAFhlNy
c3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzdiNTc1
ZWE3LTc4NmYtNGIyZC1hNDU1LTc5ZDdmYzQzZWNlZS83LzCBiwYIKwYBBQUHMAqG
f3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvN2I1
NzVlYTctNzg2Zi00YjJkLWE0NTUtNzlkN2ZjNDNlY2VlLzcvMTFBRDQ5QzQ3RTJE
MEU0MENGQzlCMzZBMkJEMkM1MTRFMkE2MjY3Qi5tZnQwPAYIKwYBBQUHMA2GMGh0
dHBzOi8vcnJkcC5wYWFzLnJwa2kucmlwZS5uZXQvbm90aWZpY2F0aW9uLnhtbDBZ
BgNVHR8EUjBQME6gTKBKhkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9y
eS9ERUZBVUxUL0twU28zVlZLNXdFSElKbkhDMlFIVlYzZDVtay5jcmwwGAYDVR0g
AQH/BA4wDDAKBggrBgEFBQcOAjA3BggrBgEFBQcBBwEB/wQoMCYwDAQCAAEwBgME
AMEDpTAWBAIAAjAQAwcAIAEGeA/IAwUDKhHywDAfBggrBgEFBQcBCAEB/wQQMA6g
DDAKAgMDFncCAwMsWDANBgkqhkiG9w0BAQsFAAOCAQEAD4xCOE3L7GZ55VBN0UFA
UgtEyNEdKEfAWBNABjfT11vF46FpPLE5KqwnXOj0FDVPr5mffosbxicQ4q1ily3a
LeNQdONhBjkZzGrP/yYkPT4MNgXt0bXoAPYRrhdJxvaWY9znKxJAsdXEWMNm+ksx
Znrpm0tp+7Ii+scYSNCSab7PfiXaqd75zplzb8MyMPn3zx3OfvTGr3u0wfnmIzKO
VakF/1Uj9FOhDcwG0CLPiufbdyzGk76bljYoDejziJ26VXGxKhLD12y1T3vpBwLA
uMD1G+bzEvstdlojKU7sg++Sd5NFpi6yF7WbQU3rj9n0l5D+bBxkrqbqVbsNpuEy
KA==
-----END CERTIFICATE-----
Generated at Wed May 8 10:46:48 2024 by rpki-client on console-ams.rpki-client.org