Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/I5P_Icb3MQdXqdzXgdqIBfI3lNg.cer
File: I5P_Icb3MQdXqdzXgdqIBfI3lNg.cer (raw, json)
Hash identifier: VgOvLVBY+eBu+xaZfzhYcA86lIodImfJp+i096UCiwA=
Subject key identifier: 23:93:FF:21:C6:F7:31:07:57:A9:DC:D7:81:DA:88:05:F2:37:94:D8
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC94DDC39FED68F418D1FF7947972292D
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/12/baeddc-dbf2-447f-b42d-5b30639babf6/1/I5P_Icb3MQdXqdzXgdqIBfI3lNg.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/12/baeddc-dbf2-447f-b42d-5b30639babf6/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 08:32:52 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 12807
IP: 94.124.128.0/21
IP: 185.63.192.0/22
IP: 193.33.36.0/23
IP: 193.56.160.0/23
IP: 2a01:9940::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4d:dc:39:fe:d6:8f:41:8d:1f:f7:94:79:72:29:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 08:32:52 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2393ff21c6f7310757a9dcd781da8805f23794d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:53:32:99:e4:4e:0f:a2:b4:01:94:28:25:f7:
52:96:92:ba:29:b4:82:7c:2b:d3:38:aa:d8:ed:1a:
5b:0f:b1:04:db:fe:82:2b:ca:f2:a1:2c:55:68:29:
bf:15:f3:f8:ea:f7:96:bc:d8:3e:da:bc:24:65:7f:
62:c5:de:19:a0:78:ca:e7:1f:1f:af:7a:1f:50:5a:
25:f3:ea:95:6e:d0:c5:7f:1a:b3:a2:b6:ff:fb:fe:
8a:73:1f:dd:ca:22:d0:09:d2:ce:3b:3f:7e:d4:76:
d4:39:6f:71:ec:c8:c0:b2:28:37:17:87:8d:33:77:
99:e0:15:27:f6:f5:74:22:06:05:ec:48:40:c8:9b:
50:10:a1:ae:d6:1f:9d:d5:bc:9d:64:87:52:aa:ca:
99:0d:7d:fe:b2:a4:b7:80:c8:20:71:6a:bb:65:4f:
9f:75:74:10:2d:1b:70:b7:8a:66:25:89:bb:b5:42:
5f:84:57:7b:df:fd:de:59:58:64:e3:24:72:d6:0c:
0b:03:5b:48:d3:70:9d:3b:25:a7:fb:35:bc:d6:cc:
67:70:04:c8:c9:e5:55:88:aa:69:d6:aa:fc:1a:80:
ee:4a:19:d7:da:ce:1a:d4:f7:78:10:eb:4b:d3:cb:
97:31:5d:91:d6:92:a3:d9:4e:cd:ac:0f:65:0f:fc:
a4:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:93:FF:21:C6:F7:31:07:57:A9:DC:D7:81:DA:88:05:F2:37:94:D8
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/baeddc-dbf2-447f-b42d-5b30639babf6/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/baeddc-dbf2-447f-b42d-5b30639babf6/1/I5P_Icb3MQdXqdzXgdqIBfI3lNg.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.124.128.0/21
185.63.192.0/22
193.33.36.0/23
193.56.160.0/23
IPv6:
2a01:9940::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
12807
Signature Algorithm: sha256WithRSAEncryption
80:3e:09:aa:06:2e:fe:ec:c4:e5:6c:8e:f1:96:3c:4a:0c:16:
e5:60:43:e4:a2:14:4d:26:60:80:d5:2f:9e:47:cb:5e:68:7c:
fa:99:0f:bd:87:02:0c:3a:ae:71:42:5e:b5:96:15:d4:b0:d9:
e6:53:58:e1:07:5c:26:fb:f5:d8:f0:0a:0c:c8:08:4b:0e:e6:
65:5d:39:0e:28:e4:c1:f1:22:a1:de:dd:54:6d:1d:6e:e7:8e:
ce:2d:f4:dc:55:69:d5:6b:30:72:a4:da:e1:3e:d3:fd:99:e2:
d9:84:34:99:46:56:9b:0d:3d:64:2e:bc:32:8f:73:31:ed:5a:
17:84:79:1e:60:fc:f4:a4:38:56:90:06:82:84:54:6f:1e:ae:
8d:cc:3e:a6:54:c2:f0:43:ef:15:75:78:3d:bb:10:5d:4f:2a:
c8:ba:6f:47:5b:4f:3b:ad:22:b3:32:07:d7:6a:7e:c1:73:9d:
cb:02:2e:15:ba:dd:bb:7c:c2:dd:63:f8:91:0c:8d:7b:e4:fb:
bf:75:f2:de:b0:db:68:2d:6f:f8:16:17:3f:58:b1:5e:e0:73:
29:a7:43:88:55:19:4c:83:07:04:01:22:2e:f2:f5:90:e8:fb:
43:79:95:7b:86:4a:be:bb:4c:e4:42:d7:1c:78:5a:9d:7b:2a:
63:b8:74:2e
-----BEGIN CERTIFICATE-----
MIIFtDCCBJygAwIBAgISAYzJTdw5/taPQY0f95R5ciktMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAyMDgzMjUyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyMzkzZmYyMWM2ZjczMTA3NTdhOWRjZDc4MWRhODgwNWYyMzc5NGQ4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy1MymeROD6K0AZQoJfdSlpK6KbSC
fCvTOKrY7RpbD7EE2/6CK8ryoSxVaCm/FfP46veWvNg+2rwkZX9ixd4ZoHjK5x8f
r3ofUFol8+qVbtDFfxqzorb/+/6Kcx/dyiLQCdLOOz9+1HbUOW9x7MjAsig3F4eN
M3eZ4BUn9vV0IgYF7EhAyJtQEKGu1h+d1bydZIdSqsqZDX3+sqS3gMggcWq7ZU+f
dXQQLRtwt4pmJYm7tUJfhFd73/3eWVhk4yRy1gwLA1tI03CdOyWn+zW81sxncATI
yeVViKpp1qr8GoDuShnX2s4a1Pd4EOtL08uXMV2R1pKj2U7NrA9lD/ykkwIDAQAB
o4ICwDCCArwwHQYDVR0OBBYEFCOT/yHG9zEHV6nc14HaiAXyN5TYMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzEyL2JhZWRk
Yy1kYmYyLTQ0N2YtYjQyZC01YjMwNjM5YmFiZjYvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTIvYmFlZGRj
LWRiZjItNDQ3Zi1iNDJkLTViMzA2MzliYWJmNi8xL0k1UF9JY2IzTVFkWHFkelhn
ZHFJQmZJM2xOZy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMEAGCCsGAQUF
BwEHAQH/BDEwLzAeBAIAATAYAwQDXnyAAwQCuT/AAwQBwSEkAwQBwTigMA0EAgAC
MAcDBQAqAZlAMBkGCCsGAQUFBwEIAQH/BAowCKAGMAQCAjIHMA0GCSqGSIb3DQEB
CwUAA4IBAQCAPgmqBi7+7MTlbI7xljxKDBblYEPkohRNJmCA1S+eR8teaHz6mQ+9
hwIMOq5xQl61lhXUsNnmU1jhB1wm+/XY8AoMyAhLDuZlXTkOKOTB8SKh3t1UbR1u
547OLfTcVWnVazBypNrhPtP9meLZhDSZRlabDT1kLrwyj3Mx7VoXhHkeYPz0pDhW
kAaChFRvHq6NzD6mVMLwQ+8VdXg9uxBdTyrIum9HW087rSKzMgfXan7Bc53LAi4V
ut27fMLdY/iRDI175Pu/dfLesNtoLW/4Fhc/WLFe4HMpp0OIVRlMgwcEASIu8vWQ
6PtDeZV7hkq+u0zkQtcceFqdeypjuHQu
-----END CERTIFICATE-----
Generated at Sat Nov 23 10:06:38 2024 by rpki-client on console-fra.rpki-client.org