Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/Iaoo3iG8kfOdvy0BL9VS0i0PWqo.cer
File: Iaoo3iG8kfOdvy0BL9VS0i0PWqo.cer (raw, json)
Hash identifier: Bh5Lsu7XlDuM18HlLDLgwSEmwDaKDK+uA8qf3ndMJP0=
Subject key identifier: 21:AA:28:DE:21:BC:91:F3:9D:BF:2D:01:2F:D5:52:D2:2D:0F:5A:AA
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CCA9A0EC72F8A43B88EA0EB7F07A10A05
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/e1/63a5bb-24d0-4db9-b510-f9973c576b03/1/Iaoo3iG8kfOdvy0BL9VS0i0PWqo.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/e1/63a5bb-24d0-4db9-b510-f9973c576b03/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 14:35:43 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 201641
IP: 185.102.100.0/22
IP: 194.15.212.0/24
IP: 2001:67c:6e8::/48
IP: 2a10:a600::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:9a:0e:c7:2f:8a:43:b8:8e:a0:eb:7f:07:a1:0a:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 14:35:43 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=21aa28de21bc91f39dbf2d012fd552d22d0f5aaa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:cc:a7:18:3f:3c:9f:0f:ba:71:0c:26:d2:e8:
49:5e:f2:5e:1c:75:ea:68:2e:55:d8:ea:65:16:db:
38:24:5b:26:9d:0d:35:e8:e8:79:7c:04:3d:1e:28:
07:18:4c:d1:66:c9:00:ee:88:44:26:df:f6:87:2f:
55:e6:0f:68:31:ca:38:e6:f9:67:b0:de:92:36:53:
2c:a4:60:8c:8a:a5:14:bf:f8:14:47:3a:16:ea:fe:
71:b0:fb:30:42:d9:d6:21:29:ba:5d:32:e6:3d:d8:
6b:9d:49:e0:ee:00:64:ae:d1:3f:fa:a4:51:27:e3:
69:d1:6e:48:d6:b4:2c:30:c3:1e:91:f2:46:f1:73:
32:7f:d4:67:08:a4:0b:27:80:dc:cd:8e:07:0f:64:
04:18:b0:45:72:22:c1:99:b6:f9:50:66:9f:27:b6:
3f:63:47:e8:75:c3:f7:ee:40:80:4e:e8:97:5a:46:
dc:45:5b:34:b3:e5:04:68:43:55:b1:0d:48:96:59:
2c:29:6d:a0:33:e6:a8:cd:6f:09:22:56:2d:c3:74:
42:89:2a:ab:de:3e:66:65:68:3d:15:04:5c:65:d3:
f9:5d:ca:01:de:9e:14:9f:c8:0b:76:01:e8:b2:c4:
14:64:5a:33:4b:1d:a7:79:16:ab:fb:5e:5a:90:28:
be:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:AA:28:DE:21:BC:91:F3:9D:BF:2D:01:2F:D5:52:D2:2D:0F:5A:AA
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/63a5bb-24d0-4db9-b510-f9973c576b03/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/63a5bb-24d0-4db9-b510-f9973c576b03/1/Iaoo3iG8kfOdvy0BL9VS0i0PWqo.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.102.100.0/22
194.15.212.0/24
IPv6:
2001:67c:6e8::/48
2a10:a600::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
201641
Signature Algorithm: sha256WithRSAEncryption
3c:86:aa:f1:58:fb:fe:c3:de:e4:1b:2e:ac:42:5d:f8:d3:0b:
f0:f9:6b:ba:2b:ce:0f:61:88:bb:e8:33:cf:f4:51:e5:e5:3c:
48:f2:7e:85:ed:af:e4:0e:bc:4e:ff:95:fd:ae:f4:42:45:3f:
ec:5d:d7:81:17:88:1d:39:a2:bd:b9:f8:45:d3:71:1a:2e:4e:
81:fd:e1:e8:49:a9:ad:79:a0:77:4b:f5:70:a2:f4:97:a6:ca:
03:35:50:44:e2:98:ec:e7:1a:f8:91:d8:75:b1:fc:f3:ef:d2:
74:ba:6c:d9:38:e7:13:59:0d:5c:a7:ef:dc:62:1b:9b:0e:7e:
a3:64:44:d4:a2:d4:16:53:cc:ac:a2:c3:26:b5:10:10:44:49:
49:5b:5e:9f:2d:0c:5c:5e:50:ef:45:ef:e7:b4:5e:e8:30:b7:
0d:40:6e:26:0d:94:65:2c:cc:c5:21:d1:79:76:28:53:72:fc:
16:c2:01:55:c0:65:fb:59:ed:3a:09:7b:1a:ad:c0:a5:26:17:
84:ab:24:5c:9e:c5:ec:90:37:1b:20:15:55:74:8b:5d:3d:93:
08:e3:d2:5b:05:07:8b:8a:63:22:f9:d4:9a:3b:f6:37:f9:ab:
82:f4:d4:60:17:88:e6:b5:24:f9:a6:73:c5:16:9e:b2:1e:3a:
49:e1:ac:82
-----BEGIN CERTIFICATE-----
MIIFsjCCBJqgAwIBAgISAYzKmg7HL4pDuI6g638HoQoFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAyMTQzNTQzWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyMWFhMjhkZTIxYmM5MWYzOWRiZjJkMDEyZmQ1NTJkMjJkMGY1YWFhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAusynGD88nw+6cQwm0uhJXvJeHHXq
aC5V2OplFts4JFsmnQ016Oh5fAQ9HigHGEzRZskA7ohEJt/2hy9V5g9oMco45vln
sN6SNlMspGCMiqUUv/gURzoW6v5xsPswQtnWISm6XTLmPdhrnUng7gBkrtE/+qRR
J+Np0W5I1rQsMMMekfJG8XMyf9RnCKQLJ4DczY4HD2QEGLBFciLBmbb5UGafJ7Y/
Y0fodcP37kCATuiXWkbcRVs0s+UEaENVsQ1IllksKW2gM+aozW8JIlYtw3RCiSqr
3j5mZWg9FQRcZdP5XcoB3p4Un8gLdgHossQUZFozSx2neRar+15akCi+QQIDAQAB
o4ICvjCCArowHQYDVR0OBBYEFCGqKN4hvJHznb8tAS/VUtItD1qqMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2UxLzYzYTVi
Yi0yNGQwLTRkYjktYjUxMC1mOTk3M2M1NzZiMDMvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZTEvNjNhNWJi
LTI0ZDAtNGRiOS1iNTEwLWY5OTczYzU3NmIwMy8xL0lhb28zaUc4a2ZPZHZ5MEJM
OVZTMGkwUFdxby5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMD0GCCsGAQUF
BwEHAQH/BC4wLDASBAIAATAMAwQCuWZkAwQAwg/UMBYEAgACMBADBwAgAQZ8BugD
BQAqEKYAMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwMTqTANBgkqhkiG9w0BAQsF
AAOCAQEAPIaq8Vj7/sPe5BsurEJd+NML8PlruivOD2GIu+gzz/RR5eU8SPJ+he2v
5A68Tv+V/a70QkU/7F3XgReIHTmivbn4RdNxGi5Ogf3h6EmprXmgd0v1cKL0l6bK
AzVQROKY7Oca+JHYdbH88+/SdLps2TjnE1kNXKfv3GIbmw5+o2RE1KLUFlPMrKLD
JrUQEERJSVteny0MXF5Q70Xv57Re6DC3DUBuJg2UZSzMxSHReXYoU3L8FsIBVcBl
+1ntOgl7Gq3ApSYXhKskXJ7F7JA3GyAVVXSLXT2TCOPSWwUHi4pjIvnUmjv2N/mr
gvTUYBeI5rUk+aZzxRaesh46SeGsgg==
-----END CERTIFICATE-----
Generated at Wed Nov 27 00:51:02 2024 by rpki-client on console-fra.rpki-client.org