Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/JXjmbXV_leptaTqn-E_LJ0l1yLs.cer
File: JXjmbXV_leptaTqn-E_LJ0l1yLs.cer (raw, json)
Hash identifier: drhvcS/QPsnWzRYFiDNErK+B22FkywgV6qNp9MurumI=
Subject key identifier: 25:78:E6:6D:75:7F:95:EA:6D:69:3A:A7:F8:4F:CB:27:49:75:C8:BB
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC80121AD435FAEAFC21147A25C50FF7C
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/7e/c5b5d9-0ae7-4629-a01b-fbad637c4142/1/JXjmbXV_leptaTqn-E_LJ0l1yLs.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/7e/c5b5d9-0ae7-4629-a01b-fbad637c4142/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 02:29:26 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 203918
IP: 2001:67c:2e90::/48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:21:ad:43:5f:ae:af:c2:11:47:a2:5c:50:ff:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 02:29:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2578e66d757f95ea6d693aa7f84fcb274975c8bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:ec:90:ed:60:2d:c6:77:fb:0d:69:23:6a:5e:
b4:fd:13:f3:ec:2a:bf:86:58:73:23:63:db:04:4e:
d4:e4:6b:c7:8e:81:e0:f7:ce:1f:89:04:99:1e:23:
91:6c:13:d6:43:e3:98:17:32:ae:05:55:26:20:8a:
9e:c9:56:5f:32:aa:6b:5c:c8:f8:bb:db:85:1d:6b:
aa:70:14:eb:1e:71:b8:93:7e:18:68:c8:e6:38:ae:
e8:c3:e2:ea:aa:f2:f6:f9:30:fd:5f:5a:89:d6:a1:
32:9d:21:bb:fd:b2:b1:17:6b:59:22:f3:a0:95:38:
59:cf:9a:99:a2:08:c6:00:e6:51:41:39:2e:a7:64:
64:a6:62:f6:57:ec:ad:86:9f:e9:00:e7:0e:c4:71:
3c:df:ca:58:47:58:4e:2d:02:54:b7:ac:af:6c:1c:
0d:98:ee:72:86:0d:2c:37:b9:79:f0:5c:16:fe:5d:
32:03:d6:02:c7:04:da:68:b4:c7:50:9d:8b:44:d3:
73:a6:61:59:da:4b:b8:8c:7e:19:fa:59:61:ef:0e:
5f:b5:6f:55:ea:21:75:e9:9f:a3:da:73:c2:fb:f7:
e8:de:e7:79:14:a5:bf:3c:27:5d:dd:34:0a:fc:b4:
a1:a6:0c:51:9b:4b:8e:22:49:91:db:48:ee:46:1b:
3c:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:78:E6:6D:75:7F:95:EA:6D:69:3A:A7:F8:4F:CB:27:49:75:C8:BB
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/c5b5d9-0ae7-4629-a01b-fbad637c4142/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/c5b5d9-0ae7-4629-a01b-fbad637c4142/1/JXjmbXV_leptaTqn-E_LJ0l1yLs.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:2e90::/48
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
203918
Signature Algorithm: sha256WithRSAEncryption
ae:b9:ea:cf:4a:5b:b2:71:f1:3d:7c:a1:42:dd:7f:18:47:38:
6c:d7:fe:69:a5:d8:6f:81:0e:b5:59:c8:91:63:23:83:7a:1d:
e2:19:05:56:61:49:fc:9d:ca:3d:a0:72:d1:90:11:cf:ce:99:
2f:f9:43:11:85:13:ad:0e:a5:30:37:0b:dd:27:85:8c:b8:d1:
0c:11:b9:aa:5e:e0:7e:2d:08:64:70:4b:2f:fa:72:43:65:90:
78:83:9f:f4:75:8b:f1:69:7a:7c:60:b1:54:b6:65:64:b6:ad:
f1:7d:0f:7f:1e:2f:29:ef:a9:84:12:ee:72:d5:77:11:fa:ac:
c6:be:62:6f:54:43:73:a5:e7:27:c3:e2:5d:44:8b:9a:2c:63:
87:89:52:44:09:09:b1:8d:4b:c7:93:c8:0b:59:2a:04:5e:73:
c0:b6:89:05:d8:b4:4a:5d:7b:7d:e2:48:4f:4b:dd:e6:21:02:
bf:e0:e3:1c:b2:8f:65:28:0a:0a:fb:16:0e:12:45:3d:42:9e:
54:39:62:39:69:1a:7a:3d:d8:90:24:d5:98:d3:c2:c7:0f:d0:
4a:2a:96:a2:00:62:a3:ea:5b:dd:ad:e9:e1:1a:77:b6:e0:3f:
77:36:6a:ec:db:e3:d8:04:2e:d8:00:69:0a:c5:2b:23:99:28:
07:b7:f6:f9
-----BEGIN CERTIFICATE-----
MIIFlzCCBH+gAwIBAgISAYzIASGtQ1+ur8IRR6JcUP98MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAyMDIyOTI2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyNTc4ZTY2ZDc1N2Y5NWVhNmQ2OTNhYTdmODRmY2IyNzQ5NzVjOGJiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0uyQ7WAtxnf7DWkjal60/RPz7Cq/
hlhzI2PbBE7U5GvHjoHg984fiQSZHiORbBPWQ+OYFzKuBVUmIIqeyVZfMqprXMj4
u9uFHWuqcBTrHnG4k34YaMjmOK7ow+LqqvL2+TD9X1qJ1qEynSG7/bKxF2tZIvOg
lThZz5qZogjGAOZRQTkup2RkpmL2V+ythp/pAOcOxHE838pYR1hOLQJUt6yvbBwN
mO5yhg0sN7l58FwW/l0yA9YCxwTaaLTHUJ2LRNNzpmFZ2ku4jH4Z+llh7w5ftW9V
6iF16Z+j2nPC+/fo3ud5FKW/PCdd3TQK/LShpgxRm0uOIkmR20juRhs8+wIDAQAB
o4ICozCCAp8wHQYDVR0OBBYEFCV45m11f5XqbWk6p/hPyydJdci7MB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzdlL2M1YjVk
OS0wYWU3LTQ2MjktYTAxYi1mYmFkNjM3YzQxNDIvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvN2UvYzViNWQ5
LTBhZTctNDYyOS1hMDFiLWZiYWQ2MzdjNDE0Mi8xL0pYam1iWFZfbGVwdGFUcW4t
RV9MSjBsMXlMcy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF
BwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfC6QMBoGCCsGAQUFBwEIAQH/BAswCaAH
MAUCAwMcjjANBgkqhkiG9w0BAQsFAAOCAQEArrnqz0pbsnHxPXyhQt1/GEc4bNf+
aaXYb4EOtVnIkWMjg3od4hkFVmFJ/J3KPaBy0ZARz86ZL/lDEYUTrQ6lMDcL3SeF
jLjRDBG5ql7gfi0IZHBLL/pyQ2WQeIOf9HWL8Wl6fGCxVLZlZLat8X0Pfx4vKe+p
hBLuctV3Efqsxr5ib1RDc6XnJ8PiXUSLmixjh4lSRAkJsY1Lx5PIC1kqBF5zwLaJ
Bdi0Sl17feJIT0vd5iECv+DjHLKPZSgKCvsWDhJFPUKeVDliOWkaej3YkCTVmNPC
xw/QSiqWogBio+pb3a3p4Rp3tuA/dzZq7Nvj2AQu2ABpCsUrI5koB7f2+Q==
-----END CERTIFICATE-----
Generated at Sat Nov 23 03:29:26 2024 by rpki-client on console-fra.rpki-client.org