Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/GWRkVJwHkby2YRd_l67c851Uw5U.cer
File: GWRkVJwHkby2YRd_l67c851Uw5U.cer (raw, json)
Hash identifier: cF2TTD5oEai+ktOInNAwF2aYYAh31ImhslCUa+cOwYI=
Subject key identifier: 19:64:64:54:9C:07:91:BC:B6:61:17:7F:97:AE:DC:F3:9D:54:C3:95
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC86F464EBAFD025B66D92223C86DE882
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/72/ff9ea6-fb6b-4113-8005-475b29d1286a/1/GWRkVJwHkby2YRd_l67c851Uw5U.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/72/ff9ea6-fb6b-4113-8005-475b29d1286a/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 04:29:44 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 29116
IP: 195.69.76.0/24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:46:4e:ba:fd:02:5b:66:d9:22:23:c8:6d:e8:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 04:29:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=196464549c0791bcb661177f97aedcf39d54c395
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:be:81:48:23:9c:02:2e:67:89:4e:25:98:f2:
7a:36:0a:2a:11:ad:bd:32:a6:3c:39:2e:23:1e:41:
1f:a6:77:7c:e4:64:a8:72:25:ca:bc:46:3a:fc:d2:
04:2a:66:56:9f:b1:b4:7c:6b:71:0e:90:91:05:b9:
77:ab:ea:c8:11:b1:1c:e3:e1:51:79:f5:bf:25:d0:
92:94:0c:4d:1c:9b:ba:92:85:ba:10:cc:ae:da:95:
6c:39:c3:b4:ef:f5:fb:dd:06:db:05:85:83:aa:dd:
ac:3f:45:2d:19:14:77:13:7a:d5:2f:1d:1c:89:44:
b0:e0:56:63:24:5c:db:dc:36:7d:63:ee:23:8b:f4:
91:10:3f:ee:98:e1:82:d6:df:77:6f:4b:c7:2a:27:
50:94:24:d6:7d:97:dc:29:6a:1e:1f:8b:28:25:5e:
f1:a5:e6:0d:4d:c7:1b:a7:81:79:fb:20:79:5e:ca:
ec:b8:d9:49:73:0c:49:74:c5:41:80:96:eb:da:bd:
ed:1a:94:e2:d1:5a:31:ff:11:1c:be:09:b6:40:41:
27:09:65:5f:a0:33:75:9a:13:1c:de:56:8e:74:ef:
fd:2d:bc:a5:07:93:14:12:98:fa:7b:25:ba:4e:38:
80:30:ad:89:b2:6b:9f:1d:70:0e:a0:07:51:7f:7c:
e3:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:64:64:54:9C:07:91:BC:B6:61:17:7F:97:AE:DC:F3:9D:54:C3:95
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/ff9ea6-fb6b-4113-8005-475b29d1286a/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/ff9ea6-fb6b-4113-8005-475b29d1286a/1/GWRkVJwHkby2YRd_l67c851Uw5U.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.69.76.0/24
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
29116
Signature Algorithm: sha256WithRSAEncryption
9b:c5:aa:6e:66:0c:5c:2f:73:c5:7f:9c:34:c9:fc:50:ae:48:
ad:34:b0:4a:65:9a:80:4b:e8:04:bc:49:f1:75:c5:fc:ab:f6:
13:c1:df:98:a5:76:89:a0:b6:8c:7b:8c:56:9e:e0:5b:8c:31:
75:03:fa:cf:b4:50:65:1a:d8:77:82:94:ba:ef:65:86:96:cc:
d0:e7:94:83:ee:4b:66:09:af:e5:70:b1:28:72:01:75:bb:e6:
e7:10:23:2a:b1:37:e7:bd:b2:36:a9:69:9c:fd:fb:3c:75:41:
db:1f:fb:1e:cb:4d:e4:28:2b:ab:48:24:fd:47:7f:73:ed:4c:
be:0d:4b:ef:6d:7c:07:ca:f1:b3:c5:d2:3d:2f:ee:44:c9:2e:
57:d0:6e:11:e8:2c:36:fb:6e:a6:29:d5:8e:17:fc:e1:6c:fb:
9c:66:10:f8:c6:18:8a:a5:d9:a1:6f:38:dd:63:4b:a6:8c:57:
61:20:17:94:93:be:f1:63:44:c1:b5:eb:2b:e7:58:b5:af:d1:
5f:1e:d2:e4:aa:c0:3b:76:e9:8f:c5:f8:00:46:67:da:3a:6f:
0e:28:1a:72:c2:a5:41:d7:75:88:82:3f:fc:94:40:a4:01:53:
f1:ba:a2:bd:7d:6b:11:41:8a:31:70:11:08:eb:f0:4d:fb:ca:
17:e4:42:af
-----BEGIN CERTIFICATE-----
MIIFkzCCBHugAwIBAgISAYzIb0ZOuv0CW2bZIiPIbeiCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAyMDQyOTQ0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxOTY0NjQ1NDljMDc5MWJjYjY2MTE3N2Y5N2FlZGNmMzlkNTRjMzk1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApb6BSCOcAi5niU4lmPJ6NgoqEa29
MqY8OS4jHkEfpnd85GSociXKvEY6/NIEKmZWn7G0fGtxDpCRBbl3q+rIEbEc4+FR
efW/JdCSlAxNHJu6koW6EMyu2pVsOcO07/X73QbbBYWDqt2sP0UtGRR3E3rVLx0c
iUSw4FZjJFzb3DZ9Y+4ji/SRED/umOGC1t93b0vHKidQlCTWfZfcKWoeH4soJV7x
peYNTccbp4F5+yB5XsrsuNlJcwxJdMVBgJbr2r3tGpTi0Vox/xEcvgm2QEEnCWVf
oDN1mhMc3laOdO/9LbylB5MUEpj6eyW6TjiAMK2JsmufHXAOoAdRf3zjQwIDAQAB
o4ICnzCCApswHQYDVR0OBBYEFBlkZFScB5G8tmEXf5eu3POdVMOVMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzcyL2ZmOWVh
Ni1mYjZiLTQxMTMtODAwNS00NzViMjlkMTI4NmEvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzIvZmY5ZWE2
LWZiNmItNDExMy04MDA1LTQ3NWIyOWQxMjg2YS8xL0dXUmtWSndIa2J5MllSZF9s
NjdjODUxVXc1VS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF
BwEHAQH/BBAwDjAMBAIAATAGAwQAw0VMMBkGCCsGAQUFBwEIAQH/BAowCKAGMAQC
AnG8MA0GCSqGSIb3DQEBCwUAA4IBAQCbxapuZgxcL3PFf5w0yfxQrkitNLBKZZqA
S+gEvEnxdcX8q/YTwd+YpXaJoLaMe4xWnuBbjDF1A/rPtFBlGth3gpS672WGlszQ
55SD7ktmCa/lcLEocgF1u+bnECMqsTfnvbI2qWmc/fs8dUHbH/sey03kKCurSCT9
R39z7Uy+DUvvbXwHyvGzxdI9L+5EyS5X0G4R6Cw2+26mKdWOF/zhbPucZhD4xhiK
pdmhbzjdY0umjFdhIBeUk77xY0TBtesr51i1r9FfHtLkqsA7dumPxfgARmfaOm8O
KBpywqVB13WIgj/8lECkAVPxuqK9fWsRQYoxcBEI6/BN+8oX5EKv
-----END CERTIFICATE-----
Generated at Wed Nov 27 00:50:30 2024 by rpki-client on console-fra.rpki-client.org