Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/J-Nn2N7PfWJuVHgPgOVzYNLAeM0.cer
File: J-Nn2N7PfWJuVHgPgOVzYNLAeM0.cer (raw, json)
Hash identifier: 623jJjaNaIcSXeMkrxeesykzNW70v2iKj4/7fLFioAU=
Subject key identifier: 27:E3:67:D8:DE:CF:7D:62:6E:54:78:0F:80:E5:73:60:D2:C0:78:CD
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC5DD0D4C6277DE7FF05256087C10E28C
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/72/5f0579-0efa-422b-aa68-a434fd088fd0/1/J-Nn2N7PfWJuVHgPgOVzYNLAeM0.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/72/5f0579-0efa-422b-aa68-a434fd088fd0/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 16:30:47 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 204184
AS: 204616
IP: 185.245.52.0/22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:dd:0d:4c:62:77:de:7f:f0:52:56:08:7c:10:e2:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 16:30:47 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=27e367d8decf7d626e54780f80e57360d2c078cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:e1:5c:1e:6f:9b:dc:57:de:cf:18:57:49:8f:
3f:4b:5e:90:51:86:1b:b5:4c:20:ed:cd:b9:03:7b:
59:3e:2d:49:27:a1:ba:28:96:81:7e:90:a8:12:08:
5e:d5:c7:12:c5:e0:ed:94:ec:20:98:12:1e:a8:c2:
d9:36:34:93:5a:0d:06:21:91:55:bf:cc:bc:ea:4a:
fc:17:f4:8e:f5:12:59:eb:27:f7:08:02:38:5f:d1:
21:51:1d:e1:72:52:00:f0:38:55:54:54:d4:02:ee:
17:cf:82:28:ea:e5:ae:2c:c2:4d:75:70:d5:6a:dc:
3f:2f:74:28:26:fe:bd:3a:13:68:15:55:f4:ed:99:
a5:77:1c:53:e0:c3:32:71:00:c9:9a:fe:41:ca:89:
27:73:0e:3d:e3:63:f6:99:13:25:83:01:c4:48:33:
47:cb:af:57:21:9d:a6:fe:0e:d0:ae:c1:d0:99:0d:
d8:d0:87:03:bd:75:1d:ba:9e:99:c5:79:c4:68:d9:
25:9d:75:f9:1e:04:e4:a5:1f:e4:4c:15:d9:5d:8e:
c1:46:bb:4b:10:41:ef:1d:de:0d:d3:20:dc:52:a9:
6e:9f:f4:32:53:e3:c0:14:b0:6b:62:ce:6c:cd:6b:
2c:9f:99:96:ce:dc:87:7a:e7:60:53:d9:b8:93:43:
28:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:E3:67:D8:DE:CF:7D:62:6E:54:78:0F:80:E5:73:60:D2:C0:78:CD
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/5f0579-0efa-422b-aa68-a434fd088fd0/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/5f0579-0efa-422b-aa68-a434fd088fd0/1/J-Nn2N7PfWJuVHgPgOVzYNLAeM0.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.245.52.0/22
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
204184
204616
Signature Algorithm: sha256WithRSAEncryption
20:dc:fe:be:ae:56:17:b4:c5:47:de:fc:8c:33:71:de:6f:b1:
3d:c7:19:ca:36:e4:1a:cb:3f:e2:fa:58:80:82:6b:f2:28:a4:
96:e4:b5:eb:3f:9b:f7:af:b5:8a:f8:a2:e0:a2:d8:b2:98:ea:
6a:74:73:55:b3:23:c1:6f:8c:a4:20:21:6c:c4:9a:7f:78:3c:
9e:95:70:3c:99:27:00:52:cb:75:0b:8a:39:5b:8d:93:42:8d:
e0:a6:77:ea:1b:7b:0a:d2:06:58:14:34:a0:de:47:a0:7a:6b:
92:16:6d:43:10:82:b2:18:a9:60:72:a1:ed:c2:4e:19:b8:23:
89:35:47:8b:11:9a:18:20:47:45:59:47:56:cb:df:48:0e:75:
d6:94:30:ad:19:a5:f1:d4:17:7e:14:46:b7:18:ee:8c:17:21:
ed:b4:b4:a8:1f:d4:27:dd:42:74:92:38:69:a5:9f:41:29:7a:
72:2d:2c:ea:fc:7a:88:ef:b0:9e:10:8f:ca:a1:fc:7e:09:af:
20:63:59:31:fb:b6:7d:e6:e6:ac:4e:3b:e7:bc:ef:fe:b8:d5:
1e:85:3e:f0:c9:e8:20:43:b9:24:1a:4f:b6:3e:f7:7f:5f:23:
54:12:c1:d1:c4:a7:1e:00:95:cb:69:2b:55:ee:b0:26:20:1f:
75:5f:aa:37
-----BEGIN CERTIFICATE-----
MIIFmTCCBIGgAwIBAgISAYzF3Q1MYnfef/BSVgh8EOKMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAxMTYzMDQ3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyN2UzNjdkOGRlY2Y3ZDYyNmU1NDc4MGY4MGU1NzM2MGQyYzA3OGNkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqOFcHm+b3FfezxhXSY8/S16QUYYb
tUwg7c25A3tZPi1JJ6G6KJaBfpCoEghe1ccSxeDtlOwgmBIeqMLZNjSTWg0GIZFV
v8y86kr8F/SO9RJZ6yf3CAI4X9EhUR3hclIA8DhVVFTUAu4Xz4Io6uWuLMJNdXDV
atw/L3QoJv69OhNoFVX07ZmldxxT4MMycQDJmv5Byokncw4942P2mRMlgwHESDNH
y69XIZ2m/g7QrsHQmQ3Y0IcDvXUdup6ZxXnEaNklnXX5HgTkpR/kTBXZXY7BRrtL
EEHvHd4N0yDcUqlun/QyU+PAFLBrYs5szWssn5mWztyHeudgU9m4k0MotQIDAQAB
o4ICpTCCAqEwHQYDVR0OBBYEFCfjZ9jez31iblR4D4Dlc2DSwHjNMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzcyLzVmMDU3
OS0wZWZhLTQyMmItYWE2OC1hNDM0ZmQwODhmZDAvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzIvNWYwNTc5
LTBlZmEtNDIyYi1hYTY4LWE0MzRmZDA4OGZkMC8xL0otTm4yTjdQZldKdVZIZ1Bn
T1Z6WU5MQWVNMC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF
BwEHAQH/BBAwDjAMBAIAATAGAwQCufU0MB8GCCsGAQUFBwEIAQH/BBAwDqAMMAoC
AwMdmAIDAx9IMA0GCSqGSIb3DQEBCwUAA4IBAQAg3P6+rlYXtMVH3vyMM3Heb7E9
xxnKNuQayz/i+liAgmvyKKSW5LXrP5v3r7WK+KLgotiymOpqdHNVsyPBb4ykICFs
xJp/eDyelXA8mScAUst1C4o5W42TQo3gpnfqG3sK0gZYFDSg3kegemuSFm1DEIKy
GKlgcqHtwk4ZuCOJNUeLEZoYIEdFWUdWy99IDnXWlDCtGaXx1Bd+FEa3GO6MFyHt
tLSoH9Qn3UJ0kjhppZ9BKXpyLSzq/HqI77CeEI/Kofx+Ca8gY1kx+7Z95uasTjvn
vO/+uNUehT7wyeggQ7kkGk+2Pvd/XyNUEsHRxKceAJXLaStV7rAmIB91X6o3
-----END CERTIFICATE-----
Generated at Fri May 3 07:27:06 2024 by rpki-client on console-fra.rpki-client.org