Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/HzjUsMuomcJPTjQHOE1tP6jVGl8.cer
File: HzjUsMuomcJPTjQHOE1tP6jVGl8.cer (raw, json)
Hash identifier: st4r36/q54Hdu9GGwzKpu1Hvgu+zj2UI0abIKVLi+4k=
Subject key identifier: 1F:38:D4:B0:CB:A8:99:C2:4F:4E:34:07:38:4D:6D:3F:A8:D5:1A:5F
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0190F8BAAE5BB652C94A743452C30EE1997C
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/99/16cf7d-a151-49ec-8d8a-3a288c2c852c/1/HzjUsMuomcJPTjQHOE1tP6jVGl8.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/99/16cf7d-a151-49ec-8d8a-3a288c2c852c/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Sun 28 Jul 2024 09:45:02 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 214590
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Dec 2024 06:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:f8:ba:ae:5b:b6:52:c9:4a:74:34:52:c3:0e:e1:99:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jul 28 09:45:02 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1f38d4b0cba899c24f4e3407384d6d3fa8d51a5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:fc:4f:72:19:8b:b7:10:53:4c:a4:f6:22:99:
c8:48:aa:f7:c9:95:34:68:c4:08:41:db:4c:30:fc:
ba:26:33:fe:99:d2:19:41:a9:c3:a6:ed:15:fb:70:
25:1b:f1:75:08:a3:a4:35:21:82:0f:e6:e2:7f:1a:
bd:13:05:2b:a5:d6:6f:c6:4d:f5:24:7c:ca:9f:d4:
84:01:51:0e:8d:d9:c5:64:18:35:63:f9:b4:11:5e:
3f:11:55:ea:4c:dc:97:cd:75:6c:5f:8b:60:b0:0f:
4a:a2:26:5a:14:ea:a8:9e:eb:28:51:71:d4:ca:dc:
30:9b:6e:14:aa:a8:18:e7:19:1f:19:f4:03:52:9b:
31:c2:89:da:23:85:9b:5a:ca:95:fe:0e:03:67:b4:
b4:db:e4:9a:23:45:c4:19:75:10:9e:1c:1e:08:4f:
ce:6d:b2:d5:6a:32:0d:77:e1:fc:98:a5:6b:fb:aa:
a6:c2:7a:41:66:a2:ff:15:9e:27:d2:3b:84:31:cf:
06:f5:ca:8d:67:cd:5e:c8:3a:40:42:08:0e:4a:7c:
4e:84:e8:c6:90:1a:11:6a:07:ed:7e:9e:7e:1f:31:
c8:7d:80:a8:38:07:2a:98:f3:6a:97:d4:c3:e8:2f:
6d:19:3f:13:7f:12:b6:18:fe:c1:ff:e5:dd:39:b7:
55:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:38:D4:B0:CB:A8:99:C2:4F:4E:34:07:38:4D:6D:3F:A8:D5:1A:5F
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/16cf7d-a151-49ec-8d8a-3a288c2c852c/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/16cf7d-a151-49ec-8d8a-3a288c2c852c/1/HzjUsMuomcJPTjQHOE1tP6jVGl8.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
214590
Signature Algorithm: sha256WithRSAEncryption
58:e5:7e:31:81:e8:69:99:e2:04:0a:8e:fd:c3:0a:df:b0:1a:
89:61:dc:e1:fe:e3:7c:97:1e:a7:42:80:dd:5c:0a:ec:5b:ec:
29:87:07:aa:1e:ff:a9:47:7c:55:87:c0:7e:da:45:a5:eb:46:
84:22:82:4f:fe:b1:4d:9e:68:b6:16:64:e0:c8:97:6b:de:9a:
5f:54:c8:ea:89:d5:5b:18:7d:c2:53:00:de:b0:cb:c9:20:fc:
14:63:0d:a3:3b:b5:83:ba:99:0c:0e:f8:3e:db:16:2f:6c:4a:
ed:41:a5:00:87:c0:97:63:05:7f:74:99:01:15:b9:cc:6a:2a:
77:15:27:77:0d:f7:40:a8:fd:49:d3:41:6e:5a:d6:6a:75:90:
77:e9:2b:8f:13:de:fd:24:4a:56:95:f2:83:1d:a6:db:5e:ba:
0f:5e:e5:8a:fe:71:e7:fc:0a:71:f3:31:e8:ce:61:74:5c:54:
e0:35:e4:d7:56:be:3c:65:d6:c0:15:f5:c0:c0:42:47:25:ca:
7c:95:5e:cd:bc:b1:8f:6a:c7:8e:c2:cb:b0:6b:06:d8:21:b8:
58:92:86:f3:e7:26:be:28:64:cf:81:b5:4a:05:d3:43:01:6e:
ab:aa:fe:43:4f:01:31:b0:91:5c:44:2a:9d:b3:7c:f4:e3:8f:
b9:83:a0:a6
-----BEGIN CERTIFICATE-----
MIIFczCCBFugAwIBAgISAZD4uq5btlLJSnQ0UsMO4Zl8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwNzI4MDk0NTAyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxZjM4ZDRiMGNiYTg5OWMyNGY0ZTM0MDczODRkNmQzZmE4ZDUxYTVmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvfxPchmLtxBTTKT2IpnISKr3yZU0
aMQIQdtMMPy6JjP+mdIZQanDpu0V+3AlG/F1CKOkNSGCD+bifxq9EwUrpdZvxk31
JHzKn9SEAVEOjdnFZBg1Y/m0EV4/EVXqTNyXzXVsX4tgsA9KoiZaFOqonusoUXHU
ytwwm24UqqgY5xkfGfQDUpsxwonaI4WbWsqV/g4DZ7S02+SaI0XEGXUQnhweCE/O
bbLVajINd+H8mKVr+6qmwnpBZqL/FZ4n0juEMc8G9cqNZ81eyDpAQggOSnxOhOjG
kBoRagftfp5+HzHIfYCoOAcqmPNql9TD6C9tGT8TfxK2GP7B/+XdObdVhQIDAQAB
o4ICfzCCAnswHQYDVR0OBBYEFB841LDLqJnCT040BzhNbT+o1RpfMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzk5LzE2Y2Y3
ZC1hMTUxLTQ5ZWMtOGQ4YS0zYTI4OGMyYzg1MmMvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTkvMTZjZjdk
LWExNTEtNDllYy04ZDhhLTNhMjg4YzJjODUyYy8xL0h6alVzTXVvbWNKUFRqUUhP
RTF0UDZqVkdsOC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMBoGCCsGAQUF
BwEIAQH/BAswCaAHMAUCAwNGPjANBgkqhkiG9w0BAQsFAAOCAQEAWOV+MYHoaZni
BAqO/cMK37AaiWHc4f7jfJcep0KA3VwK7FvsKYcHqh7/qUd8VYfAftpFpetGhCKC
T/6xTZ5othZk4MiXa96aX1TI6onVWxh9wlMA3rDLySD8FGMNozu1g7qZDA74PtsW
L2xK7UGlAIfAl2MFf3SZARW5zGoqdxUndw33QKj9SdNBblrWanWQd+krjxPe/SRK
VpXygx2m2166D17liv5x5/wKcfMx6M5hdFxU4DXk11a+PGXWwBX1wMBCRyXKfJVe
zbyxj2rHjsLLsGsG2CG4WJKG8+cmvihkz4G1SgXTQwFuq6r+Q08BMbCRXEQqnbN8
9OOPuYOgpg==
-----END CERTIFICATE-----
Generated at Thu Dec 26 17:03:45 2024 by rpki-client on console-fra.rpki-client.org