Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/JrnOsQwsjADRYJlgPMEb7QBUe-Y.cer
File: JrnOsQwsjADRYJlgPMEb7QBUe-Y.cer (raw, json)
Hash identifier: BF+IOl1kr5jU3DJl9YNGUXnFyE9lzM/JE9l6i26PYGg=
Subject key identifier: 26:B9:CE:B1:0C:2C:8C:00:D1:60:99:60:3C:C1:1B:ED:00:54:7B:E6
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC26D76484BFAD12FB1C3AA8757020573
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/5d/bc98cb-971d-4b04-b81e-b610568466b3/1/JrnOsQwsjADRYJlgPMEb7QBUe-Y.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/5d/bc98cb-971d-4b04-b81e-b610568466b3/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 00:30:02 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 29686
IP: 82.96.64.0/18
IP: 85.190.0.0/18
IP: 185.191.224.0/22
IP: 2001:1bc0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:6d:76:48:4b:fa:d1:2f:b1:c3:aa:87:57:02:05:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 00:30:02 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=26b9ceb10c2c8c00d16099603cc11bed00547be6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:34:7a:f0:9b:54:87:25:90:25:a0:d9:39:e3:
02:e5:86:0d:5a:0a:13:ea:e3:93:bf:93:50:1d:3d:
37:f4:7c:7e:26:6d:73:c9:4f:3c:6b:63:c0:16:16:
e8:f3:ab:9c:cb:38:53:c4:7e:3f:f1:9b:70:f6:c7:
45:92:2a:33:f0:db:18:e9:fa:d4:0e:89:8e:04:d4:
0e:d7:66:b1:c2:6d:9c:ef:1e:d0:55:5e:65:2e:69:
0e:e7:9d:32:35:03:04:8c:fa:e3:6f:3e:03:be:1e:
11:4d:e5:db:3b:02:f5:fd:fc:4c:24:ad:81:a4:8c:
d8:e4:a2:b0:f8:2e:5f:36:54:a0:31:4a:8e:7f:c2:
3a:04:14:0d:32:ea:9b:7b:d4:a5:8a:e8:52:20:ba:
21:01:ae:21:dc:62:2e:1b:95:a2:bb:c1:eb:b8:67:
7c:05:1e:c8:7b:bd:ce:f8:9b:87:d0:ad:67:52:8c:
51:87:04:3c:24:0d:30:da:60:21:2c:05:0d:04:30:
a9:ee:47:5f:62:61:51:37:f0:82:ea:24:b0:a2:5d:
58:ae:42:c7:c3:e3:04:e9:bf:32:3c:ce:14:41:38:
90:b4:87:e0:9e:c8:a5:8c:8d:74:41:bf:92:fb:7c:
b6:be:7a:1c:e9:16:b0:29:74:a6:83:be:d9:0f:14:
7d:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:B9:CE:B1:0C:2C:8C:00:D1:60:99:60:3C:C1:1B:ED:00:54:7B:E6
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/bc98cb-971d-4b04-b81e-b610568466b3/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/bc98cb-971d-4b04-b81e-b610568466b3/1/JrnOsQwsjADRYJlgPMEb7QBUe-Y.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.96.64.0/18
85.190.0.0/18
185.191.224.0/22
IPv6:
2001:1bc0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
29686
Signature Algorithm: sha256WithRSAEncryption
19:d9:53:08:cb:5d:f8:d8:17:e5:73:48:04:47:eb:ad:d7:e0:
27:7d:be:37:9a:50:58:e6:fb:52:7a:4c:ad:fa:80:d2:7d:1d:
27:6c:f3:be:5f:25:02:af:01:0e:9a:d0:76:58:72:4b:0b:5a:
89:67:ed:e8:aa:42:93:59:04:e0:9f:8d:31:83:b8:9b:be:f4:
46:1f:5e:32:bf:cb:16:78:61:02:3b:ac:b6:f2:74:12:dc:16:
a2:b7:2a:35:87:a7:78:29:bc:f2:c3:3c:d8:79:0d:26:ba:01:
38:2d:10:00:bc:26:e2:d5:c4:cf:a5:d5:4c:7a:09:9c:47:7d:
0a:07:b8:47:d8:8a:85:27:2a:34:0d:bd:55:69:0f:99:50:3b:
7e:d6:ca:60:e1:01:19:3c:f5:b7:8c:ec:ad:86:5b:61:0b:a5:
c7:3e:9a:9c:a6:df:37:41:9e:f4:6e:6c:25:91:ca:12:c4:4f:
2c:dd:83:80:b3:22:48:e9:06:69:d0:8f:08:c0:87:26:99:32:
de:18:06:28:80:af:bd:a9:18:49:2d:e9:cd:97:db:bf:c0:7c:
35:ac:bd:c5:c7:2a:5d:b5:86:73:c2:81:20:98:8d:0f:2e:cb:
07:4b:3f:fe:7a:21:f5:ed:6b:63:d9:d8:4b:3c:10:13:f2:f8:
10:b8:19:31
-----BEGIN CERTIFICATE-----
MIIFrjCCBJagAwIBAgISAYzCbXZIS/rRL7HDqodXAgVzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAxMDAzMDAyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyNmI5Y2ViMTBjMmM4YzAwZDE2MDk5NjAzY2MxMWJlZDAwNTQ3YmU2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuDR68JtUhyWQJaDZOeMC5YYNWgoT
6uOTv5NQHT039Hx+Jm1zyU88a2PAFhbo86ucyzhTxH4/8Ztw9sdFkioz8NsY6frU
DomOBNQO12axwm2c7x7QVV5lLmkO550yNQMEjPrjbz4Dvh4RTeXbOwL1/fxMJK2B
pIzY5KKw+C5fNlSgMUqOf8I6BBQNMuqbe9SliuhSILohAa4h3GIuG5Wiu8HruGd8
BR7Ie73O+JuH0K1nUoxRhwQ8JA0w2mAhLAUNBDCp7kdfYmFRN/CC6iSwol1YrkLH
w+ME6b8yPM4UQTiQtIfgnsiljI10Qb+S+3y2vnoc6RawKXSmg77ZDxR90wIDAQAB
o4ICujCCArYwHQYDVR0OBBYEFCa5zrEMLIwA0WCZYDzBG+0AVHvmMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzVkL2JjOThj
Yi05NzFkLTRiMDQtYjgxZS1iNjEwNTY4NDY2YjMvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNWQvYmM5OGNi
LTk3MWQtNGIwNC1iODFlLWI2MTA1Njg0NjZiMy8xL0pybk9zUXdzakFEUllKbGdQ
TUViN1FCVWUtWS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDoGCCsGAQUF
BwEHAQH/BCswKTAYBAIAATASAwQGUmBAAwQGVb4AAwQCub/gMA0EAgACMAcDBQMg
ARvAMBkGCCsGAQUFBwEIAQH/BAowCKAGMAQCAnP2MA0GCSqGSIb3DQEBCwUAA4IB
AQAZ2VMIy1342Bflc0gER+ut1+Anfb43mlBY5vtSekyt+oDSfR0nbPO+XyUCrwEO
mtB2WHJLC1qJZ+3oqkKTWQTgn40xg7ibvvRGH14yv8sWeGECO6y28nQS3Baityo1
h6d4KbzywzzYeQ0mugE4LRAAvCbi1cTPpdVMegmcR30KB7hH2IqFJyo0Db1VaQ+Z
UDt+1spg4QEZPPW3jOythlthC6XHPpqcpt83QZ70bmwlkcoSxE8s3YOAsyJI6QZp
0I8IwIcmmTLeGAYogK+9qRhJLenNl9u/wHw1rL3FxypdtYZzwoEgmI0PLssHSz/+
eiH17Wtj2dhLPBAT8vgQuBkx
-----END CERTIFICATE-----
Generated at Sat Nov 23 10:07:02 2024 by rpki-client on console-fra.rpki-client.org