Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/I--d4hUq7xsqYqMfsvNehZCzrYQ.cer
File: I--d4hUq7xsqYqMfsvNehZCzrYQ.cer (raw, json)
Hash identifier: mt7ZT9XmjMCo1EIvB+hhTXRuI0mzrs299E5KMn9P3b8=
Subject key identifier: 23:EF:9D:E2:15:2A:EF:1B:2A:62:A3:1F:B2:F3:5E:85:90:B3:AD:84
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC8010CFABCCBB93D2B953FAE9047E5E4
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/21/c3f3cc-c56b-4d35-b77f-3bc6eb0a347f/1/I--d4hUq7xsqYqMfsvNehZCzrYQ.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/21/c3f3cc-c56b-4d35-b77f-3bc6eb0a347f/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 02:29:21 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 208244
IP: 5.180.115.0/24
IP: 83.171.196.0/22
IP: 146.19.219.0/24
IP: 2a0f:2b00::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:0c:fa:bc:cb:b9:3d:2b:95:3f:ae:90:47:e5:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 02:29:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=23ef9de2152aef1b2a62a31fb2f35e8590b3ad84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:09:ae:46:95:7c:e8:d3:d6:b7:9e:36:90:38:
9d:4f:b3:8b:0d:48:aa:1b:e1:81:bb:65:2f:06:99:
10:a5:c1:94:1e:3c:15:03:07:92:3c:c2:4f:14:9d:
35:2d:da:18:6b:b2:f2:ac:03:1b:43:dd:af:83:a9:
20:2c:3c:99:a0:ac:bb:02:0a:70:7f:0a:a5:e1:1a:
ae:27:d8:4f:d1:2d:95:59:b4:25:e5:5a:4a:72:2e:
fa:5a:1b:98:35:62:74:29:8b:98:e5:53:f3:43:ef:
84:3b:0c:d8:8a:dd:67:e9:1f:68:33:fd:06:f0:9b:
50:44:03:60:02:ae:2f:7e:f2:fd:46:a7:9b:82:3a:
a2:f2:ef:27:f2:25:e8:67:ae:ca:d8:2b:8c:71:02:
f6:8b:59:63:9a:4f:18:4e:ab:53:21:28:b4:60:c5:
42:61:42:af:24:b3:9c:5d:09:76:b9:e0:1a:03:47:
96:67:8e:f3:e1:83:95:41:bc:57:8e:1c:42:e2:d9:
33:b1:22:26:e4:82:40:34:45:02:0c:f4:08:41:d4:
c0:d9:3c:6a:ec:51:af:0e:70:a2:fd:09:18:28:80:
91:2e:d5:7f:22:1d:7b:de:80:63:22:e8:ca:66:26:
3d:46:2a:20:ef:2a:25:2b:91:85:d1:e8:fb:4b:fb:
0c:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:EF:9D:E2:15:2A:EF:1B:2A:62:A3:1F:B2:F3:5E:85:90:B3:AD:84
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/c3f3cc-c56b-4d35-b77f-3bc6eb0a347f/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/c3f3cc-c56b-4d35-b77f-3bc6eb0a347f/1/I--d4hUq7xsqYqMfsvNehZCzrYQ.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.115.0/24
83.171.196.0/22
146.19.219.0/24
IPv6:
2a0f:2b00::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
208244
Signature Algorithm: sha256WithRSAEncryption
54:98:59:4d:4f:e4:f9:ba:1c:26:2e:50:f1:23:1c:ec:49:54:
cf:ca:3b:c9:ff:14:d8:5d:22:f9:56:ee:28:30:8f:63:f4:b9:
b2:93:eb:79:37:14:d7:bb:e5:75:d0:68:49:91:96:89:e2:3b:
46:12:51:31:d2:9e:ad:81:0e:ac:e2:85:e4:65:f8:58:b6:74:
35:a7:35:6e:87:75:2c:54:8d:94:e2:5b:3e:eb:57:62:b5:63:
72:3c:c1:92:e3:08:4e:bb:8b:f5:9e:68:2d:25:a9:86:43:e7:
62:d1:5c:65:b5:6f:20:78:35:f4:ca:f5:b1:c7:61:0f:65:c6:
81:51:07:04:27:8a:1f:4a:76:4d:74:b6:27:4a:4a:23:e4:81:
11:66:6d:82:a6:ca:c8:62:67:60:54:e9:27:b3:b5:d6:5b:ec:
86:b6:a8:81:db:42:da:1f:3c:72:ef:d5:4a:b0:4a:b2:4e:18:
ce:fd:ca:b2:a5:85:ad:00:76:64:ac:9b:85:15:2c:94:c5:35:
2d:06:2b:d3:96:48:dc:1e:c8:5b:3a:17:7d:f9:1f:77:d3:2e:
ff:23:1b:a3:f1:c5:58:3e:45:4e:01:eb:b3:46:80:57:30:1d:
4f:6a:88:3c:8a:4d:8a:5e:7a:ef:28:81:e3:d1:40:ab:be:74:
9b:01:de:72
-----BEGIN CERTIFICATE-----
MIIFrzCCBJegAwIBAgISAYzIAQz6vMu5PSuVP66QR+XkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAyMDIyOTIxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyM2VmOWRlMjE1MmFlZjFiMmE2MmEzMWZiMmYzNWU4NTkwYjNhZDg0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzAmuRpV86NPWt542kDidT7OLDUiq
G+GBu2UvBpkQpcGUHjwVAweSPMJPFJ01LdoYa7LyrAMbQ92vg6kgLDyZoKy7Agpw
fwql4RquJ9hP0S2VWbQl5VpKci76WhuYNWJ0KYuY5VPzQ++EOwzYit1n6R9oM/0G
8JtQRANgAq4vfvL9Rqebgjqi8u8n8iXoZ67K2CuMcQL2i1ljmk8YTqtTISi0YMVC
YUKvJLOcXQl2ueAaA0eWZ47z4YOVQbxXjhxC4tkzsSIm5IJANEUCDPQIQdTA2Txq
7FGvDnCi/QkYKICRLtV/Ih173oBjIujKZiY9Riog7yolK5GF0ej7S/sMOwIDAQAB
o4ICuzCCArcwHQYDVR0OBBYEFCPvneIVKu8bKmKjH7LzXoWQs62EMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzIxL2MzZjNj
Yy1jNTZiLTRkMzUtYjc3Zi0zYmM2ZWIwYTM0N2YvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjEvYzNmM2Nj
LWM1NmItNGQzNS1iNzdmLTNiYzZlYjBhMzQ3Zi8xL0ktLWQ0aFVxN3hzcVlxTWZz
dk5laFpDenJZUS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDoGCCsGAQUF
BwEHAQH/BCswKTAYBAIAATASAwQABbRzAwQCU6vEAwQAkhPbMA0EAgACMAcDBQAq
DysAMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwMtdDANBgkqhkiG9w0BAQsFAAOC
AQEAVJhZTU/k+bocJi5Q8SMc7ElUz8o7yf8U2F0i+VbuKDCPY/S5spPreTcU17vl
ddBoSZGWieI7RhJRMdKerYEOrOKF5GX4WLZ0Nac1bod1LFSNlOJbPutXYrVjcjzB
kuMITruL9Z5oLSWphkPnYtFcZbVvIHg19Mr1scdhD2XGgVEHBCeKH0p2TXS2J0pK
I+SBEWZtgqbKyGJnYFTpJ7O11lvshraogdtC2h88cu/VSrBKsk4Yzv3KsqWFrQB2
ZKybhRUslMU1LQYr05ZI3B7IWzoXffkfd9Mu/yMbo/HFWD5FTgHrs0aAVzAdT2qI
PIpNil567yiB49FAq750mwHecg==
-----END CERTIFICATE-----
Generated at Sat Nov 23 10:47:56 2024 by rpki-client on console-ams.rpki-client.org