Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/J8Y3pwndvn9iN6-NWykTtCI3FXw.cer
File: J8Y3pwndvn9iN6-NWykTtCI3FXw.cer (raw, json)
Hash identifier: U6DC5iBjqXq9dLsKj18gQX8Kas3bYkE7oHVmjCCXn7c=
Subject key identifier: 27:C6:37:A7:09:DD:BE:7F:62:37:AF:8D:5B:29:13:B4:22:37:15:7C
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC56ED49161062F993336D4A3C174914A
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/16/cc7e6b-8c86-45ab-ac03-cbadb64340e0/1/J8Y3pwndvn9iN6-NWykTtCI3FXw.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/16/cc7e6b-8c86-45ab-ac03-cbadb64340e0/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 14:30:24 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 211029
IP: 185.253.244.0/22
IP: 2a12:9540::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:d4:91:61:06:2f:99:33:36:d4:a3:c1:74:91:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 14:30:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=27c637a709ddbe7f6237af8d5b2913b42237157c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:cc:1c:0f:8a:db:b5:fd:3a:96:40:c1:db:27:
f5:b2:9a:8b:5a:71:93:23:59:bd:73:08:cd:d0:38:
bd:1d:1a:0c:3d:78:c9:30:36:f0:82:94:cb:38:e4:
12:a7:65:dc:68:6e:af:ac:90:aa:1b:5f:97:e8:96:
69:ca:d8:76:61:7b:b8:21:f7:66:f0:3a:fe:71:b0:
f4:43:c5:12:71:8a:01:26:73:94:ec:e6:e2:e8:bf:
85:c2:8e:c4:ea:94:43:8c:db:8b:8b:d7:3c:b0:83:
da:a8:06:73:8b:19:8f:f6:3d:6d:d5:78:81:d7:9a:
67:19:9b:a7:98:09:ce:c4:51:f5:f7:11:64:42:a1:
37:fd:e8:b0:aa:08:a8:63:f1:45:bb:c8:64:3f:de:
82:c9:0d:be:ee:f5:0b:55:45:2b:60:3a:75:ea:dd:
d4:cf:50:48:d6:93:ce:be:06:8c:81:d3:52:c7:81:
a9:f1:a2:fd:0f:c3:21:82:ab:41:9f:b9:46:9d:55:
21:8e:5b:8f:cf:6c:35:97:8b:48:e8:a7:50:a3:c7:
b0:9d:9a:b8:6e:73:3a:40:d7:d6:d7:3e:e4:86:7b:
86:4d:a7:9e:b3:2e:92:f2:62:b2:8c:31:6d:e1:ce:
5e:58:c8:23:1b:a0:5e:ae:9c:bc:89:fb:de:88:a7:
bf:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:C6:37:A7:09:DD:BE:7F:62:37:AF:8D:5B:29:13:B4:22:37:15:7C
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/cc7e6b-8c86-45ab-ac03-cbadb64340e0/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/cc7e6b-8c86-45ab-ac03-cbadb64340e0/1/J8Y3pwndvn9iN6-NWykTtCI3FXw.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.253.244.0/22
IPv6:
2a12:9540::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
211029
Signature Algorithm: sha256WithRSAEncryption
04:91:fc:b2:0f:69:28:32:50:f9:96:2b:78:7c:78:10:b4:9c:
f0:8d:08:8a:ab:4b:ca:80:e3:ee:2d:87:c3:8e:b5:b3:ba:d3:
0b:fb:f5:0d:fd:f9:53:22:ca:97:88:fb:82:59:33:98:7c:a3:
9e:28:26:39:4e:c5:8b:f0:3e:d5:8c:15:3b:02:43:c6:99:7b:
6a:ac:7b:ff:a0:fb:05:85:a6:6d:88:33:28:a5:dd:6f:bd:ef:
e4:9b:d1:f8:4a:be:9e:a1:2c:3f:fa:47:3e:c0:6a:e1:04:5f:
ef:dc:3d:2d:f5:0a:60:6b:05:5c:93:07:37:30:8b:a0:60:65:
15:ba:ba:e5:47:d1:d1:0c:b2:92:d6:cf:6d:35:ed:2a:31:8e:
98:2a:40:f2:a2:11:b6:39:be:b8:e7:8f:48:f9:e1:b9:fc:30:
fe:bd:74:58:3d:4d:4a:73:99:68:03:60:a5:ce:e5:02:56:0f:
97:44:d1:46:6e:f4:82:3c:ad:25:e7:83:c7:4e:b3:53:98:d8:
10:a2:db:dc:88:83:aa:9b:09:f8:90:4c:cf:47:69:cd:1f:56:
19:5b:1b:d7:79:b7:58:a8:eb:8a:cc:e3:8e:fd:6c:90:84:da:
38:95:8f:75:bf:e2:37:d1:62:b6:2d:46:db:5c:e8:09:35:42:
76:18:9b:c8
-----BEGIN CERTIFICATE-----
MIIFozCCBIugAwIBAgISAYzFbtSRYQYvmTM21KPBdJFKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAxMTQzMDI0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyN2M2MzdhNzA5ZGRiZTdmNjIzN2FmOGQ1YjI5MTNiNDIyMzcxNTdjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk8wcD4rbtf06lkDB2yf1spqLWnGT
I1m9cwjN0Di9HRoMPXjJMDbwgpTLOOQSp2XcaG6vrJCqG1+X6JZpyth2YXu4Ifdm
8Dr+cbD0Q8UScYoBJnOU7Obi6L+Fwo7E6pRDjNuLi9c8sIPaqAZzixmP9j1t1XiB
15pnGZunmAnOxFH19xFkQqE3/eiwqgioY/FFu8hkP96CyQ2+7vULVUUrYDp16t3U
z1BI1pPOvgaMgdNSx4Gp8aL9D8MhgqtBn7lGnVUhjluPz2w1l4tI6KdQo8ewnZq4
bnM6QNfW1z7khnuGTaeesy6S8mKyjDFt4c5eWMgjG6Berpy8ifveiKe/MwIDAQAB
o4ICrzCCAqswHQYDVR0OBBYEFCfGN6cJ3b5/YjevjVspE7QiNxV8MB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzE2L2NjN2U2
Yi04Yzg2LTQ1YWItYWMwMy1jYmFkYjY0MzQwZTAvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTYvY2M3ZTZi
LThjODYtNDVhYi1hYzAzLWNiYWRiNjQzNDBlMC8xL0o4WTNwd25kdm45aU42LU5X
eWtUdENJM0ZYdy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF
BwEHAQH/BB8wHTAMBAIAATAGAwQCuf30MA0EAgACMAcDBQMqEpVAMBoGCCsGAQUF
BwEIAQH/BAswCaAHMAUCAwM4VTANBgkqhkiG9w0BAQsFAAOCAQEABJH8sg9pKDJQ
+ZYreHx4ELSc8I0IiqtLyoDj7i2Hw461s7rTC/v1Df35UyLKl4j7glkzmHyjnigm
OU7Fi/A+1YwVOwJDxpl7aqx7/6D7BYWmbYgzKKXdb73v5JvR+Eq+nqEsP/pHPsBq
4QRf79w9LfUKYGsFXJMHNzCLoGBlFbq65UfR0QyyktbPbTXtKjGOmCpA8qIRtjm+
uOePSPnhufww/r10WD1NSnOZaANgpc7lAlYPl0TRRm70gjytJeeDx06zU5jYEKLb
3IiDqpsJ+JBMz0dpzR9WGVsb13m3WKjriszjjv1skITaOJWPdb/iN9Fiti1G21zo
CTVCdhibyA==
-----END CERTIFICATE-----
Generated at Fri May 3 10:07:34 2024 by rpki-client on console-fra.rpki-client.org