Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/LRjYfouf6XS-3wl_iJSDmIYaxH4.cer
File: LRjYfouf6XS-3wl_iJSDmIYaxH4.cer (raw, json)
Hash identifier: cTCK9Esa6qJbmaN0Rs1OOT/yIyZNsk8XFPZ9CXdIbXI=
Subject key identifier: 2D:18:D8:7E:8B:9F:E9:74:BE:DF:09:7F:88:94:83:98:86:1A:C4:7E
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC7272F24969DA0A9A54F985C90C6013A
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/fb/ec85f5-7f65-49f2-98b9-cf0907133241/1/LRjYfouf6XS-3wl_iJSDmIYaxH4.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/fb/ec85f5-7f65-49f2-98b9-cf0907133241/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 22:31:23 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 211196
IP: 109.121.127.0/24
IP: 185.53.112.0/22
IP: 185.198.68.0/24
IP: 2a0b:6f80::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:27:2f:24:96:9d:a0:a9:a5:4f:98:5c:90:c6:01:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 22:31:23 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2d18d87e8b9fe974bedf097f88948398861ac47e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:01:ce:12:63:ba:b3:25:aa:36:17:2a:3d:0c:
3c:30:2a:68:0a:92:c9:57:b2:4d:b0:6d:53:22:8a:
79:a2:98:4b:e0:b9:df:ad:06:ac:c8:0b:3b:35:64:
b1:ac:9a:26:cb:5d:24:2b:c4:28:b3:5e:46:49:3b:
1e:98:67:e2:ed:c7:cb:4d:ee:a6:63:ca:2a:0d:c1:
06:f0:4e:72:45:9c:ee:b6:dd:a8:35:00:20:35:ba:
1b:b1:31:61:b5:af:5b:1d:c1:0e:a4:1d:e6:19:2f:
45:64:eb:77:60:9e:97:5c:de:2f:25:a9:65:ff:da:
ae:4d:f7:29:b9:8c:25:0a:3e:fe:04:2d:0b:36:4b:
de:c0:1a:77:1f:b7:0e:d7:66:63:8c:cc:82:f0:82:
91:c3:20:46:c8:a8:ab:58:87:97:b9:4b:f2:11:fd:
e4:a5:eb:c0:56:13:c8:19:5a:4d:c3:80:c9:d2:52:
df:6e:bb:31:ca:9e:39:a9:d2:02:85:1a:5a:3f:cb:
f7:b0:df:c0:66:76:8c:e3:e4:ff:44:32:e7:86:95:
0b:74:16:56:06:4b:be:02:16:83:65:1b:0a:5d:e0:
bb:46:58:5c:73:7a:1b:0f:4b:8a:4e:93:2c:cc:8e:
a6:73:e3:ca:22:d6:55:ba:c7:89:44:f7:1d:a8:80:
62:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:18:D8:7E:8B:9F:E9:74:BE:DF:09:7F:88:94:83:98:86:1A:C4:7E
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/ec85f5-7f65-49f2-98b9-cf0907133241/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/ec85f5-7f65-49f2-98b9-cf0907133241/1/LRjYfouf6XS-3wl_iJSDmIYaxH4.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.121.127.0/24
185.53.112.0/22
185.198.68.0/24
IPv6:
2a0b:6f80::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
211196
Signature Algorithm: sha256WithRSAEncryption
1f:e7:a5:ea:d7:42:0f:59:d5:9c:05:f4:e5:33:fe:05:6e:1f:
ff:eb:1c:6d:b6:34:0d:61:07:c7:87:78:2a:50:ee:f0:a5:a7:
74:d3:1c:d9:43:83:8a:89:59:bf:eb:80:32:84:e8:18:84:b7:
cd:34:92:41:64:6d:fc:42:cd:8f:64:c5:e1:75:da:7a:ae:c4:
61:00:c1:f6:29:21:ce:c7:fd:d2:a1:ea:dd:aa:b3:9c:c9:d6:
4c:b5:22:c3:df:a8:27:11:78:46:37:2a:fb:77:c3:13:7c:16:
dc:5a:fe:65:06:90:f1:32:c7:1a:30:8d:77:21:31:62:6d:ee:
5b:0e:31:3a:73:a8:88:c3:b0:60:fe:ff:5f:c6:cf:a8:75:70:
7a:7b:dd:34:d9:1d:78:39:0e:9a:c3:ff:51:d6:1d:e2:90:23:
10:03:44:2b:82:60:30:3b:c2:f1:2e:41:0c:e7:47:d5:cb:9c:
65:85:8a:10:09:37:e7:db:df:b1:00:ed:df:2a:02:18:0f:3a:
7e:24:eb:b5:e6:30:7e:d7:5e:8d:0e:70:37:d0:00:ae:9e:de:
e7:9e:48:4c:3d:26:fd:c9:6d:38:fe:73:1b:2f:f4:ce:62:0a:
86:38:14:f6:50:2b:3b:be:8b:7b:62:67:fb:16:63:dd:17:07:
3f:12:9f:b4
-----BEGIN CERTIFICATE-----
MIIFrzCCBJegAwIBAgISAYzHJy8klp2gqaVPmFyQxgE6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAxMjIzMTIzWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyZDE4ZDg3ZThiOWZlOTc0YmVkZjA5N2Y4ODk0ODM5ODg2MWFjNDdlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1gHOEmO6syWqNhcqPQw8MCpoCpLJ
V7JNsG1TIop5ophL4LnfrQasyAs7NWSxrJomy10kK8Qos15GSTsemGfi7cfLTe6m
Y8oqDcEG8E5yRZzutt2oNQAgNbobsTFhta9bHcEOpB3mGS9FZOt3YJ6XXN4vJall
/9quTfcpuYwlCj7+BC0LNkvewBp3H7cO12ZjjMyC8IKRwyBGyKirWIeXuUvyEf3k
pevAVhPIGVpNw4DJ0lLfbrsxyp45qdIChRpaP8v3sN/AZnaM4+T/RDLnhpULdBZW
Bku+AhaDZRsKXeC7Rlhcc3obD0uKTpMszI6mc+PKItZVuseJRPcdqIBiGwIDAQAB
o4ICuzCCArcwHQYDVR0OBBYEFC0Y2H6Ln+l0vt8Jf4iUg5iGGsR+MB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2ZiL2VjODVm
NS03ZjY1LTQ5ZjItOThiOS1jZjA5MDcxMzMyNDEvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZmIvZWM4NWY1
LTdmNjUtNDlmMi05OGI5LWNmMDkwNzEzMzI0MS8xL0xSallmb3VmNlhTLTN3bF9p
SlNEbUlZYXhINC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDoGCCsGAQUF
BwEHAQH/BCswKTAYBAIAATASAwQAbXl/AwQCuTVwAwQAucZEMA0EAgACMAcDBQAq
C2+AMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwM4/DANBgkqhkiG9w0BAQsFAAOC
AQEAH+el6tdCD1nVnAX05TP+BW4f/+scbbY0DWEHx4d4KlDu8KWndNMc2UODiolZ
v+uAMoToGIS3zTSSQWRt/ELNj2TF4XXaeq7EYQDB9ikhzsf90qHq3aqznMnWTLUi
w9+oJxF4Rjcq+3fDE3wW3Fr+ZQaQ8TLHGjCNdyExYm3uWw4xOnOoiMOwYP7/X8bP
qHVwenvdNNkdeDkOmsP/UdYd4pAjEANEK4JgMDvC8S5BDOdH1cucZYWKEAk359vf
sQDt3yoCGA86fiTrteYwftdejQ5wN9AArp7e555ITD0m/cltOP5zGy/0zmIKhjgU
9lArO76Le2Jn+xZj3RcHPxKftA==
-----END CERTIFICATE-----
Generated at Fri May 3 06:56:38 2024 by rpki-client on console-ams.rpki-client.org