Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/KCCLpOdeJ7BG-eUngiG0R3i2ro0.cer
File: KCCLpOdeJ7BG-eUngiG0R3i2ro0.cer (raw, json)
Hash identifier: BJNnLwEDEyFnxEkfwsRGzkbJGuflnbREbQEj1jd5C24=
Subject key identifier: 28:20:8B:A4:E7:5E:27:B0:46:F9:E5:27:82:21:B4:47:78:B6:AE:8D
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC94D498FD610C1E298DFC80C6153BF0F
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/5e/02cc02-bfd9-4070-a31d-b7cd9b3b2e4f/1/KCCLpOdeJ7BG-eUngiG0R3i2ro0.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/5e/02cc02-bfd9-4070-a31d-b7cd9b3b2e4f/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 08:32:14 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 207578
IP: 185.187.44.0/23
IP: 193.25.203.0/24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4d:49:8f:d6:10:c1:e2:98:df:c8:0c:61:53:bf:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 08:32:14 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=28208ba4e75e27b046f9e5278221b44778b6ae8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:d6:e4:b2:54:be:c9:2d:f3:3c:46:36:80:f9:
a5:70:3f:d6:d0:1a:65:7b:f2:53:f7:6d:69:04:7c:
4a:8a:26:68:db:b4:e3:61:83:0a:82:c3:7c:f2:6e:
ae:0f:16:aa:7d:5a:e3:81:e4:9a:f7:85:60:63:25:
87:87:cf:28:fa:41:64:c9:99:ff:43:20:69:f9:65:
a4:5e:da:05:b2:a3:a2:62:df:b6:ca:c2:93:9a:d6:
59:4b:bc:30:0c:7b:6e:0e:ce:63:47:87:ac:ab:14:
ee:6a:dd:68:c5:fd:3c:2e:e2:6c:cb:be:a4:83:c2:
e7:aa:fc:88:da:2d:4a:d6:03:6d:96:57:4b:42:c4:
a6:67:c9:a1:ea:64:96:ae:77:16:7b:3e:e8:fc:16:
ce:2c:41:eb:cb:ba:e1:d0:50:a7:37:67:f6:e6:d3:
1e:9e:f3:ef:61:f4:66:fb:43:e2:b3:57:64:5d:5e:
b8:3c:f2:b3:e5:9e:09:ff:cc:81:67:9d:32:8d:01:
37:5b:42:de:8b:6e:36:69:5f:61:9e:3c:e4:9d:0c:
09:15:ed:ef:ae:ba:13:d9:58:af:aa:0c:46:eb:4e:
c2:53:63:6e:47:5a:fc:fa:71:4d:56:e9:25:80:9d:
ad:db:1d:8c:38:9d:a8:39:c4:5f:99:e7:99:70:03:
b7:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:20:8B:A4:E7:5E:27:B0:46:F9:E5:27:82:21:B4:47:78:B6:AE:8D
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/02cc02-bfd9-4070-a31d-b7cd9b3b2e4f/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/02cc02-bfd9-4070-a31d-b7cd9b3b2e4f/1/KCCLpOdeJ7BG-eUngiG0R3i2ro0.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.187.44.0/23
193.25.203.0/24
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
207578
Signature Algorithm: sha256WithRSAEncryption
69:ff:b7:07:f4:73:62:1d:91:94:64:20:95:23:28:70:5e:33:
a9:87:72:a2:3b:f9:4e:d0:fe:2b:c4:56:8e:c0:ba:3f:fd:61:
91:c0:72:05:4b:4c:80:f7:16:65:d1:99:87:42:34:d1:e5:a8:
c5:d3:a8:66:f1:85:d7:1c:e1:08:60:93:c0:59:ec:6f:5a:b9:
b8:0e:d3:e5:91:22:82:24:08:f2:03:11:93:c3:f6:ad:ba:c0:
51:92:5c:19:6e:81:38:8d:59:63:68:c8:78:d1:79:26:47:5c:
d6:e8:f5:b8:a4:ac:dd:f0:bb:51:f4:1b:5d:05:c0:c1:27:28:
07:60:4d:22:72:72:f2:d0:e3:14:be:f6:be:48:20:a0:9d:ad:
34:c0:05:20:97:1c:ba:57:b6:fa:89:ae:ad:1a:3b:b6:ad:bb:
df:00:3f:c3:93:34:62:f6:bb:2f:9e:c1:3f:a2:61:66:14:a5:
08:2e:9c:1e:d9:e8:50:32:df:ec:2e:ab:72:ac:e9:ca:60:7d:
0e:1d:95:17:31:3c:f8:e7:e4:13:44:11:ee:da:44:b2:92:96:
4d:63:ca:f6:b3:13:fa:8c:2a:d2:f4:ca:a3:97:c6:3d:a8:40:
7b:ed:5b:ea:40:4e:8b:14:58:a2:0c:7f:52:47:61:fa:a2:c6:
a9:c1:b6:43
-----BEGIN CERTIFICATE-----
MIIFmjCCBIKgAwIBAgISAYzJTUmP1hDB4pjfyAxhU78PMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAyMDgzMjE0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyODIwOGJhNGU3NWUyN2IwNDZmOWU1Mjc4MjIxYjQ0Nzc4YjZhZThkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqdbkslS+yS3zPEY2gPmlcD/W0Bpl
e/JT921pBHxKiiZo27TjYYMKgsN88m6uDxaqfVrjgeSa94VgYyWHh88o+kFkyZn/
QyBp+WWkXtoFsqOiYt+2ysKTmtZZS7wwDHtuDs5jR4esqxTuat1oxf08LuJsy76k
g8LnqvyI2i1K1gNtlldLQsSmZ8mh6mSWrncWez7o/BbOLEHry7rh0FCnN2f25tMe
nvPvYfRm+0Pis1dkXV64PPKz5Z4J/8yBZ50yjQE3W0Lei242aV9hnjzknQwJFe3v
rroT2VivqgxG607CU2NuR1r8+nFNVuklgJ2t2x2MOJ2oOcRfmeeZcAO3kQIDAQAB
o4ICpjCCAqIwHQYDVR0OBBYEFCggi6TnXiewRvnlJ4IhtEd4tq6NMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzVlLzAyY2Mw
Mi1iZmQ5LTQwNzAtYTMxZC1iN2NkOWIzYjJlNGYvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNWUvMDJjYzAy
LWJmZDktNDA3MC1hMzFkLWI3Y2Q5YjNiMmU0Zi8xL0tDQ0xwT2RlSjdCRy1lVW5n
aUcwUjNpMnJvMC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCUGCCsGAQUF
BwEHAQH/BBYwFDASBAIAATAMAwQBubssAwQAwRnLMBoGCCsGAQUFBwEIAQH/BAsw
CaAHMAUCAwMq2jANBgkqhkiG9w0BAQsFAAOCAQEAaf+3B/RzYh2RlGQglSMocF4z
qYdyojv5TtD+K8RWjsC6P/1hkcByBUtMgPcWZdGZh0I00eWoxdOoZvGF1xzhCGCT
wFnsb1q5uA7T5ZEigiQI8gMRk8P2rbrAUZJcGW6BOI1ZY2jIeNF5Jkdc1uj1uKSs
3fC7UfQbXQXAwScoB2BNInJy8tDjFL72vkggoJ2tNMAFIJccule2+omurRo7tq27
3wA/w5M0Yva7L57BP6JhZhSlCC6cHtnoUDLf7C6rcqzpymB9Dh2VFzE8+OfkE0QR
7tpEspKWTWPK9rMT+owq0vTKo5fGPahAe+1b6kBOixRYogx/Ukdh+qLGqcG2Qw==
-----END CERTIFICATE-----
Generated at Sat Nov 23 10:48:27 2024 by rpki-client on console-ams.rpki-client.org