Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/Jn0Mxb2G1Wg2Zleu8DENSTpxduQ.cer
File: Jn0Mxb2G1Wg2Zleu8DENSTpxduQ.cer (raw, json)
Hash identifier: NBFufR5vOsEYlqiJ9ZJailArZLJeZJN20pT1wDxs+fU=
Subject key identifier: 26:7D:0C:C5:BD:86:D5:68:36:66:57:AE:F0:31:0D:49:3A:71:76:E4
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC3B714508CE653E676D6B786CDCF765D
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/d7/14b074-7d57-4616-a85e-880ab7948728/1/Jn0Mxb2G1Wg2Zleu8DENSTpxduQ.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/d7/14b074-7d57-4616-a85e-880ab7948728/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 06:30:04 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: IP: 46.231.128.0/21
IP: 94.143.112.0/21
IP: 185.54.8.0/22
IP: 2a02:2258::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:b7:14:50:8c:e6:53:e6:76:d6:b7:86:cd:cf:76:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 06:30:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=267d0cc5bd86d568366657aef0310d493a7176e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:69:7a:a4:ff:db:2d:b2:90:c2:46:ef:2a:62:
66:d5:45:b3:5c:6f:06:30:39:b9:49:06:6b:17:4e:
53:1d:c4:74:48:37:c0:35:1e:fe:d5:62:b2:4a:b5:
d4:09:5a:88:3b:8c:32:ae:3c:05:04:4f:b2:fa:e7:
df:06:a7:46:91:2f:21:e6:f9:ac:6b:83:1e:3e:fa:
1f:95:51:ec:9b:c8:2c:26:60:ba:c9:4c:0e:d9:0a:
b7:c2:e4:b9:d8:ac:d9:59:d2:f8:f8:ec:f9:3d:9f:
ae:8e:07:b5:b6:a2:b3:9f:48:14:ea:d3:ed:72:80:
c8:15:95:33:62:16:5e:bf:57:22:93:11:35:84:57:
1b:85:58:f0:db:24:7e:4b:fe:6b:9a:85:9f:19:f1:
52:b4:fa:fe:88:3c:c3:8c:f6:85:64:4f:66:da:b5:
90:e0:69:a1:10:e8:44:a2:82:9f:0d:51:6f:65:17:
8b:de:ca:83:37:c7:10:8f:97:5f:b0:1d:4d:ec:a0:
55:e8:84:27:16:df:6e:a5:0a:a3:b1:3f:4f:e2:4f:
0b:6e:69:48:e4:64:e0:68:6e:88:2e:4e:9e:aa:1a:
45:75:79:fa:44:86:82:47:eb:bd:76:7d:4f:dd:39:
55:82:fd:38:cb:b4:95:ef:8c:22:26:07:a7:41:97:
61:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:7D:0C:C5:BD:86:D5:68:36:66:57:AE:F0:31:0D:49:3A:71:76:E4
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/14b074-7d57-4616-a85e-880ab7948728/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/14b074-7d57-4616-a85e-880ab7948728/1/Jn0Mxb2G1Wg2Zleu8DENSTpxduQ.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.231.128.0/21
94.143.112.0/21
185.54.8.0/22
IPv6:
2a02:2258::/32
Signature Algorithm: sha256WithRSAEncryption
55:93:5a:6e:a8:0a:00:61:d9:47:f5:f2:56:d0:03:18:b8:4e:
43:c5:7c:a6:b8:6c:58:bd:1b:1f:b8:c5:d4:8d:1a:1b:5d:aa:
31:0e:63:c6:43:81:ed:bd:ad:b4:f9:96:1d:88:63:a8:44:e1:
48:4b:ce:f8:26:ee:88:14:4b:c2:47:72:6a:22:41:22:4f:8e:
48:6c:85:ff:f5:45:c9:3b:d7:c0:49:ac:42:13:07:90:e9:9e:
80:04:83:57:71:ac:53:d5:80:4a:96:0f:5d:c3:7f:e7:cf:b9:
bd:37:44:79:4e:54:27:4c:4c:4b:84:d7:47:f7:c8:90:ad:4e:
02:1c:3c:9f:89:78:31:36:f8:ad:64:15:ec:3e:1a:68:db:cd:
05:4a:ef:63:8b:28:dd:bd:2e:38:d3:0d:31:b5:b6:30:a7:24:
ca:f6:59:1b:16:01:26:21:e3:53:dc:4e:30:b4:fe:a7:3a:9f:
5a:05:6e:87:08:04:f5:18:6a:9c:0b:03:71:43:85:59:e5:3e:
88:4d:12:1a:12:e5:e2:4d:12:16:86:0b:48:5f:2f:f3:38:66:
49:33:4f:08:fa:f6:60:7e:00:a4:23:eb:f6:32:67:a8:de:e4:
47:4c:7b:c8:33:ad:81:26:c9:83:ac:e6:e8:05:5d:76:bd:76:
ba:60:b9:b3
-----BEGIN CERTIFICATE-----
MIIFkzCCBHugAwIBAgISAYzDtxRQjOZT5nbWt4bNz3ZdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAxMDYzMDA0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyNjdkMGNjNWJkODZkNTY4MzY2NjU3YWVmMDMxMGQ0OTNhNzE3NmU0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArGl6pP/bLbKQwkbvKmJm1UWzXG8G
MDm5SQZrF05THcR0SDfANR7+1WKySrXUCVqIO4wyrjwFBE+y+uffBqdGkS8h5vms
a4MePvoflVHsm8gsJmC6yUwO2Qq3wuS52KzZWdL4+Oz5PZ+ujge1tqKzn0gU6tPt
coDIFZUzYhZev1cikxE1hFcbhVjw2yR+S/5rmoWfGfFStPr+iDzDjPaFZE9m2rWQ
4GmhEOhEooKfDVFvZReL3sqDN8cQj5dfsB1N7KBV6IQnFt9upQqjsT9P4k8LbmlI
5GTgaG6ILk6eqhpFdXn6RIaCR+u9dn1P3TlVgv04y7SV74wiJgenQZdh3wIDAQAB
o4ICnzCCApswHQYDVR0OBBYEFCZ9DMW9htVoNmZXrvAxDUk6cXbkMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2Q3LzE0YjA3
NC03ZDU3LTQ2MTYtYTg1ZS04ODBhYjc5NDg3MjgvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDcvMTRiMDc0
LTdkNTctNDYxNi1hODVlLTg4MGFiNzk0ODcyOC8xL0puME14YjJHMVdnMlpsZXU4
REVOU1RweGR1US5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDoGCCsGAQUF
BwEHAQH/BCswKTAYBAIAATASAwQDLueAAwQDXo9wAwQCuTYIMA0EAgACMAcDBQAq
AiJYMA0GCSqGSIb3DQEBCwUAA4IBAQBVk1puqAoAYdlH9fJW0AMYuE5DxXymuGxY
vRsfuMXUjRobXaoxDmPGQ4Htva20+ZYdiGOoROFIS874Ju6IFEvCR3JqIkEiT45I
bIX/9UXJO9fASaxCEweQ6Z6ABINXcaxT1YBKlg9dw3/nz7m9N0R5TlQnTExLhNdH
98iQrU4CHDyfiXgxNvitZBXsPhpo280FSu9jiyjdvS440w0xtbYwpyTK9lkbFgEm
IeNT3E4wtP6nOp9aBW6HCAT1GGqcCwNxQ4VZ5T6ITRIaEuXiTRIWhgtIXy/zOGZJ
M08I+vZgfgCkI+v2Mmeo3uRHTHvIM62BJsmDrOboBV12vXa6YLmz
-----END CERTIFICATE-----
Generated at Fri May 3 06:55:38 2024 by rpki-client on console-ams.rpki-client.org