Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/KbEhDskQXHF9CY-fDQDZ3qIyJTk.cer
File: KbEhDskQXHF9CY-fDQDZ3qIyJTk.cer (raw, json)
Hash identifier: WlvB76aaDCF5rGMJ2UGcDmEiPLY+h8p10Hz6N9UJvWE=
Subject key identifier: 29:B1:21:0E:C9:10:5C:71:7D:09:8F:9F:0D:00:D9:DE:A2:32:25:39
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC64B7D2BAA5756141306FA4485E8E97D
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/07/a00c61-2d87-4620-913f-0e464ca39e75/1/KbEhDskQXHF9CY-fDQDZ3qIyJTk.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/07/a00c61-2d87-4620-913f-0e464ca39e75/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 18:31:25 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 205957
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4b:7d:2b:aa:57:56:14:13:06:fa:44:85:e8:e9:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 18:31:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=29b1210ec9105c717d098f9f0d00d9dea2322539
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:01:03:d9:7c:87:55:05:85:43:d8:70:0b:10:
90:ae:83:26:86:a1:cd:d8:32:b8:8b:8a:14:89:09:
01:8b:24:e0:88:66:b2:d2:6a:82:b2:57:23:6e:de:
d6:55:f0:24:d5:1f:68:c4:75:26:86:34:96:37:44:
4f:fc:22:2b:32:72:65:47:08:be:7d:90:d6:30:5d:
89:fa:ea:e4:64:0d:ca:31:f3:04:73:43:6f:54:d7:
57:44:22:c8:4d:b1:bb:8d:d3:83:cc:27:a0:de:dd:
79:29:ab:86:36:cd:32:27:19:35:df:bb:51:a5:1b:
ba:30:11:82:06:86:0f:f0:b9:96:a4:55:dc:9b:57:
11:e2:c6:83:ea:6e:b8:0b:48:a8:ec:08:23:4e:b7:
d7:1f:7d:5f:6a:24:cd:6f:e5:42:ca:3d:c2:6a:8c:
f9:11:cf:63:80:06:b7:8c:4b:df:f5:6a:ce:1d:33:
5f:9a:58:80:1b:38:30:54:08:39:89:22:90:df:54:
ee:ee:74:ac:f5:64:29:98:bd:0a:68:c9:1c:fb:a1:
cc:09:6e:90:bb:d2:e2:e6:ed:5c:ce:29:ac:d2:a7:
1d:71:13:a5:05:7a:f0:b5:49:a1:cf:22:64:2b:3c:
72:44:ef:39:a3:aa:e1:c2:22:31:3f:52:b2:c0:02:
ad:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:B1:21:0E:C9:10:5C:71:7D:09:8F:9F:0D:00:D9:DE:A2:32:25:39
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/a00c61-2d87-4620-913f-0e464ca39e75/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/a00c61-2d87-4620-913f-0e464ca39e75/1/KbEhDskQXHF9CY-fDQDZ3qIyJTk.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
205957
Signature Algorithm: sha256WithRSAEncryption
18:0f:84:18:6d:81:06:d7:11:74:cd:a7:4b:15:a7:ff:60:2c:
ef:27:1b:f0:66:38:dc:ef:d7:2a:d6:86:ea:ff:44:de:4a:3e:
25:09:71:50:72:c6:d1:6b:28:17:10:57:e9:e0:02:02:9c:db:
46:2a:01:12:a9:e8:66:49:55:2c:ec:95:bf:5c:ef:8e:99:54:
14:9f:1d:a5:27:73:2a:52:67:ef:9a:35:5a:60:ec:77:e2:f2:
a0:51:32:2d:c5:63:11:f8:fe:f5:7d:91:47:db:d5:59:1f:d2:
e3:ff:89:93:01:0e:70:bc:37:67:ef:47:80:13:e7:16:fd:24:
b6:5d:08:e8:d0:43:9f:0a:8e:59:3a:97:b0:c1:a8:6a:da:95:
bf:ee:12:8d:d8:7f:5b:c7:24:49:b1:f6:a1:f6:3d:5c:35:8c:
4a:6b:fd:a4:d8:b7:2e:46:a2:93:f2:23:e1:d6:02:ab:0c:dc:
64:09:4e:77:d2:bf:c7:db:56:20:25:5d:e9:c4:8a:57:b7:c1:
76:30:e5:a6:a2:0e:2a:b3:6d:9a:68:17:59:f1:b9:b6:7a:f6:
0d:75:ce:3c:ce:42:61:fa:9b:c9:40:d1:be:77:45:3f:7c:99:
73:45:83:02:36:82:86:30:7b:35:2f:a1:81:df:bf:cb:ea:e2:
66:17:77:37
-----BEGIN CERTIFICATE-----
MIIFczCCBFugAwIBAgISAYzGS30rqldWFBMG+kSF6Ol9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAxMTgzMTI1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyOWIxMjEwZWM5MTA1YzcxN2QwOThmOWYwZDAwZDlkZWEyMzIyNTM5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAogED2XyHVQWFQ9hwCxCQroMmhqHN
2DK4i4oUiQkBiyTgiGay0mqCslcjbt7WVfAk1R9oxHUmhjSWN0RP/CIrMnJlRwi+
fZDWMF2J+urkZA3KMfMEc0NvVNdXRCLITbG7jdODzCeg3t15KauGNs0yJxk137tR
pRu6MBGCBoYP8LmWpFXcm1cR4saD6m64C0io7AgjTrfXH31faiTNb+VCyj3Caoz5
Ec9jgAa3jEvf9WrOHTNfmliAGzgwVAg5iSKQ31Tu7nSs9WQpmL0KaMkc+6HMCW6Q
u9Li5u1czims0qcdcROlBXrwtUmhzyJkKzxyRO85o6rhwiIxP1KywAKtNwIDAQAB
o4ICfzCCAnswHQYDVR0OBBYEFCmxIQ7JEFxxfQmPnw0A2d6iMiU5MB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzA3L2EwMGM2
MS0yZDg3LTQ2MjAtOTEzZi0wZTQ2NGNhMzllNzUvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDcvYTAwYzYx
LTJkODctNDYyMC05MTNmLTBlNDY0Y2EzOWU3NS8xL0tiRWhEc2tRWEhGOUNZLWZE
UURaM3FJeUpUay5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMBoGCCsGAQUF
BwEIAQH/BAswCaAHMAUCAwMkhTANBgkqhkiG9w0BAQsFAAOCAQEAGA+EGG2BBtcR
dM2nSxWn/2As7ycb8GY43O/XKtaG6v9E3ko+JQlxUHLG0WsoFxBX6eACApzbRioB
EqnoZklVLOyVv1zvjplUFJ8dpSdzKlJn75o1WmDsd+LyoFEyLcVjEfj+9X2RR9vV
WR/S4/+JkwEOcLw3Z+9HgBPnFv0ktl0I6NBDnwqOWTqXsMGoatqVv+4Sjdh/W8ck
SbH2ofY9XDWMSmv9pNi3Lkaik/Ij4dYCqwzcZAlOd9K/x9tWICVd6cSKV7fBdjDl
pqIOKrNtmmgXWfG5tnr2DXXOPM5CYfqbyUDRvndFP3yZc0WDAjaChjB7NS+hgd+/
y+riZhd3Nw==
-----END CERTIFICATE-----
Generated at Fri May 3 02:52:51 2024 by rpki-client on console-fra.rpki-client.org