Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/I02TlaK6I5y50njrWJty7VyWctE.cer
File: I02TlaK6I5y50njrWJty7VyWctE.cer (raw, json)
Hash identifier: Pu+JmchAcoUj3SrUdDatSHvBiizGdx4PMz5EgSEvsOY=
Subject key identifier: 23:4D:93:95:A2:BA:23:9C:B9:D2:78:EB:58:9B:72:ED:5C:96:72:D1
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC3B6AAEC031D7B79E208D5599B3CD28A
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/26/3de8cc-db79-4a9b-b79a-4ef488dc6dc4/1/I02TlaK6I5y50njrWJty7VyWctE.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/26/3de8cc-db79-4a9b-b79a-4ef488dc6dc4/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 06:29:37 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 203427
IP: 185.135.52.0/22
IP: 2a02:faa0::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:b6:aa:ec:03:1d:7b:79:e2:08:d5:59:9b:3c:d2:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 06:29:37 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=234d9395a2ba239cb9d278eb589b72ed5c9672d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:1d:3c:e7:08:90:b0:50:2e:25:e3:bd:3e:64:
1a:ca:fa:31:58:1e:1d:f3:23:80:57:5f:32:fd:0e:
54:4c:99:f1:91:a1:78:42:4a:a5:cc:7b:ad:1a:ad:
ca:94:98:97:e2:33:a8:e7:93:94:1f:3b:4b:0a:09:
a4:e4:24:c3:57:ec:f3:2e:3e:7f:32:73:d8:52:04:
8b:9f:89:95:8b:bc:fc:32:53:25:e4:40:90:ac:80:
7d:82:4c:2e:7b:a5:70:db:e8:db:7b:93:d6:6a:83:
ef:d7:b2:06:d9:11:a8:d1:8e:1a:92:0a:67:e7:f9:
93:69:54:7b:2d:c2:24:fa:09:59:29:e3:10:8b:7c:
49:1f:d6:92:28:e9:48:2f:c9:5e:51:07:26:5b:15:
16:39:fe:6f:cc:ee:2a:07:67:42:22:96:6c:dd:ed:
bf:86:af:5c:81:a5:99:56:f9:a9:5d:c6:49:cd:db:
cf:e5:c2:21:30:e1:ad:20:21:51:68:4f:c9:fe:d8:
7d:ec:a7:a6:76:ed:95:9b:bb:66:9d:71:05:e2:94:
34:bf:bd:01:00:20:05:a7:85:8b:e6:14:f8:23:87:
fd:d6:f8:ac:9c:c6:36:48:6e:ce:33:93:4b:37:47:
aa:f7:c1:61:0c:a2:68:cc:aa:a0:bd:fe:a7:d6:91:
88:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:4D:93:95:A2:BA:23:9C:B9:D2:78:EB:58:9B:72:ED:5C:96:72:D1
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/3de8cc-db79-4a9b-b79a-4ef488dc6dc4/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/3de8cc-db79-4a9b-b79a-4ef488dc6dc4/1/I02TlaK6I5y50njrWJty7VyWctE.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.135.52.0/22
IPv6:
2a02:faa0::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
203427
Signature Algorithm: sha256WithRSAEncryption
8f:2c:5f:36:f0:08:a3:07:7c:04:90:12:54:56:76:1f:d3:91:
92:6c:9f:92:c7:b4:22:d8:57:ad:32:8f:87:f0:2e:2a:0c:af:
67:72:55:e9:8d:54:12:f3:50:7b:61:25:61:fa:bd:55:17:24:
90:3b:d9:1b:4f:d6:7b:e2:ab:13:6a:34:e0:b1:83:3f:70:77:
c7:40:ab:52:8d:ee:27:a9:3d:2c:e6:ed:3c:2b:4f:5e:a8:4e:
13:f5:68:d8:4e:f7:5b:31:37:fb:a4:c9:53:0c:9e:73:71:cb:
cd:11:24:d4:67:ba:75:0c:56:d6:e8:91:1a:ba:7b:a0:e5:d8:
92:ce:08:c2:d5:46:ae:8e:db:57:1a:e3:e1:3f:b3:0b:55:2f:
ac:70:83:93:29:74:94:12:26:0b:d8:26:0e:a6:d3:e8:07:60:
fe:51:60:e4:bb:df:ba:b7:8f:6f:a5:db:bd:31:c1:20:9f:ad:
b1:af:13:77:38:ee:e5:30:cc:09:3d:d7:08:8a:0c:b5:6e:f3:
d9:93:ad:d4:fc:94:24:55:c5:7d:d0:91:51:17:4d:e4:9b:cd:
94:50:48:aa:93:49:5d:d1:c5:1d:75:e7:0a:b7:ba:ae:a6:b8:
b1:44:86:ba:0a:e2:05:01:a8:8f:2e:2e:97:1d:0c:16:21:c3:
34:3e:96:c6
-----BEGIN CERTIFICATE-----
MIIFozCCBIugAwIBAgISAYzDtqrsAx17eeII1VmbPNKKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAxMDYyOTM3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyMzRkOTM5NWEyYmEyMzljYjlkMjc4ZWI1ODliNzJlZDVjOTY3MmQxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjx085wiQsFAuJeO9PmQayvoxWB4d
8yOAV18y/Q5UTJnxkaF4QkqlzHutGq3KlJiX4jOo55OUHztLCgmk5CTDV+zzLj5/
MnPYUgSLn4mVi7z8MlMl5ECQrIB9gkwue6Vw2+jbe5PWaoPv17IG2RGo0Y4akgpn
5/mTaVR7LcIk+glZKeMQi3xJH9aSKOlIL8leUQcmWxUWOf5vzO4qB2dCIpZs3e2/
hq9cgaWZVvmpXcZJzdvP5cIhMOGtICFRaE/J/th97Kemdu2Vm7tmnXEF4pQ0v70B
ACAFp4WL5hT4I4f91visnMY2SG7OM5NLN0eq98FhDKJozKqgvf6n1pGI8QIDAQAB
o4ICrzCCAqswHQYDVR0OBBYEFCNNk5WiuiOcudJ461ibcu1clnLRMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzI2LzNkZThj
Yy1kYjc5LTRhOWItYjc5YS00ZWY0ODhkYzZkYzQvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjYvM2RlOGNj
LWRiNzktNGE5Yi1iNzlhLTRlZjQ4OGRjNmRjNC8xL0kwMlRsYUs2STV5NTBuanJX
SnR5N1Z5V2N0RS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF
BwEHAQH/BB8wHTAMBAIAATAGAwQCuYc0MA0EAgACMAcDBQAqAvqgMBoGCCsGAQUF
BwEIAQH/BAswCaAHMAUCAwMaozANBgkqhkiG9w0BAQsFAAOCAQEAjyxfNvAIowd8
BJASVFZ2H9ORkmyfkse0IthXrTKPh/AuKgyvZ3JV6Y1UEvNQe2ElYfq9VRckkDvZ
G0/We+KrE2o04LGDP3B3x0CrUo3uJ6k9LObtPCtPXqhOE/Vo2E73WzE3+6TJUwye
c3HLzREk1Ge6dQxW1uiRGrp7oOXYks4IwtVGro7bVxrj4T+zC1UvrHCDkyl0lBIm
C9gmDqbT6Adg/lFg5LvfurePb6XbvTHBIJ+tsa8Tdzju5TDMCT3XCIoMtW7z2ZOt
1PyUJFXFfdCRURdN5JvNlFBIqpNJXdHFHXXnCre6rqa4sUSGugriBQGojy4ulx0M
FiHDND6Wxg==
-----END CERTIFICATE-----
Generated at Fri Nov 22 16:22:04 2024 by rpki-client on console-fra.rpki-client.org