Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/Nw6hsFy9TlwJJnh8eVM-4p2UvpY.cer
File: Nw6hsFy9TlwJJnh8eVM-4p2UvpY.cer (raw, json)
Hash identifier: dt16vC1SGkT89eYglGbP+/4IuARRMZ1Fwp4OqFGBWu4=
Subject key identifier: 37:0E:A1:B0:5C:BD:4E:5C:09:26:78:7C:79:53:3E:E2:9D:94:BE:96
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC3B67FD2D545EFB46FC57EBACE260CC7
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/6e/5b2d16-087f-488c-9ebb-e8a322846641/1/Nw6hsFy9TlwJJnh8eVM-4p2UvpY.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/6e/5b2d16-087f-488c-9ebb-e8a322846641/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 06:29:26 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 202664
IP: 185.158.16.0/22
IP: 2a12:4780::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:b6:7f:d2:d5:45:ef:b4:6f:c5:7e:ba:ce:26:0c:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 06:29:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=370ea1b05cbd4e5c0926787c79533ee29d94be96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:95:ad:9d:09:3c:3d:6c:eb:31:a7:63:91:f3:
7b:80:3a:0c:0f:3a:57:7e:c7:79:15:09:b4:46:93:
06:8f:07:45:f8:70:b2:9c:fd:80:2a:b8:b2:a0:7e:
da:50:78:71:10:84:9d:e6:c9:85:28:e1:bd:6f:58:
a2:7d:ea:fe:23:d5:76:51:5b:7c:d7:d9:d6:55:2f:
c9:73:2e:4c:d1:b3:cc:74:62:11:05:1c:18:a7:77:
cc:51:e5:80:4c:79:37:d5:e4:69:35:2a:a4:c7:2d:
21:ba:3f:61:02:1b:f3:7a:f9:2b:1f:70:97:d4:d0:
0d:fb:92:4f:3f:c5:3d:da:0e:fa:88:35:4b:c5:21:
a3:9b:f5:ca:9c:20:9e:57:c1:dd:84:56:68:4d:4c:
da:2d:a2:23:79:1b:11:8b:03:bf:83:f7:9b:0e:8f:
dc:e2:94:43:ba:a7:6d:a1:83:43:25:a4:a6:aa:9e:
76:8c:84:b1:9c:fa:de:a8:8c:44:0b:a5:2b:ce:08:
cb:3e:ac:a0:fc:a3:cd:38:3a:25:52:35:3e:da:b4:
6b:e8:b0:1e:c5:b8:9e:94:3d:88:19:ef:c0:28:c0:
34:33:d3:74:39:3e:a5:04:de:59:49:e1:b8:f1:f2:
22:34:fb:85:01:3f:0c:13:d4:af:b2:1d:2b:56:62:
74:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:0E:A1:B0:5C:BD:4E:5C:09:26:78:7C:79:53:3E:E2:9D:94:BE:96
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/5b2d16-087f-488c-9ebb-e8a322846641/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/5b2d16-087f-488c-9ebb-e8a322846641/1/Nw6hsFy9TlwJJnh8eVM-4p2UvpY.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.158.16.0/22
IPv6:
2a12:4780::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
202664
Signature Algorithm: sha256WithRSAEncryption
46:a6:3d:0e:d1:ef:8c:91:4f:7d:d6:01:77:72:2b:21:7b:20:
9d:99:34:3c:0d:2c:34:74:c8:f6:bb:bd:ae:ec:b9:07:56:8a:
97:d2:59:47:a8:4f:f5:7d:2b:10:79:fe:ba:04:9c:14:87:9f:
b4:39:c5:3b:8d:98:83:72:56:bd:8d:9c:9c:8a:5f:3c:1d:4c:
79:cf:d6:cd:aa:0c:71:7e:81:43:a9:f3:b4:ea:91:c9:31:94:
b4:30:ca:94:dd:a7:a8:c5:96:e6:e0:3a:85:43:a1:d3:74:de:
c8:fe:af:f5:e2:d7:af:03:2f:7f:9b:39:b3:89:91:9d:45:ba:
d9:fa:9d:cc:d3:0d:3d:29:5b:df:20:c4:c4:6c:7d:74:2f:3b:
63:81:bd:9b:51:33:dd:ba:81:4e:2c:25:91:b8:ad:c9:cf:20:
5f:77:d1:26:ac:4a:e3:9b:05:2a:5c:4c:d3:47:dd:4d:63:ba:
f6:f8:04:8d:1e:48:4e:9f:20:dc:45:15:32:3c:52:49:f2:45:
32:83:51:05:41:04:12:e2:52:56:39:84:85:04:9d:31:37:c3:
4f:0b:af:4d:91:4f:3d:4e:fc:8a:b6:ac:2b:74:25:95:f8:13:
b3:89:42:97:49:bd:ff:08:3b:ca:de:b6:3a:6d:ab:d2:1e:8a:
af:39:bb:26
-----BEGIN CERTIFICATE-----
MIIFozCCBIugAwIBAgISAYzDtn/S1UXvtG/FfrrOJgzHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAxMDYyOTI2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzNzBlYTFiMDVjYmQ0ZTVjMDkyNjc4N2M3OTUzM2VlMjlkOTRiZTk2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmZWtnQk8PWzrMadjkfN7gDoMDzpX
fsd5FQm0RpMGjwdF+HCynP2AKriyoH7aUHhxEISd5smFKOG9b1iifer+I9V2UVt8
19nWVS/Jcy5M0bPMdGIRBRwYp3fMUeWATHk31eRpNSqkxy0huj9hAhvzevkrH3CX
1NAN+5JPP8U92g76iDVLxSGjm/XKnCCeV8HdhFZoTUzaLaIjeRsRiwO/g/ebDo/c
4pRDuqdtoYNDJaSmqp52jISxnPreqIxEC6UrzgjLPqyg/KPNODolUjU+2rRr6LAe
xbielD2IGe/AKMA0M9N0OT6lBN5ZSeG48fIiNPuFAT8ME9Svsh0rVmJ0gQIDAQAB
o4ICrzCCAqswHQYDVR0OBBYEFDcOobBcvU5cCSZ4fHlTPuKdlL6WMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzZlLzViMmQx
Ni0wODdmLTQ4OGMtOWViYi1lOGEzMjI4NDY2NDEvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNmUvNWIyZDE2
LTA4N2YtNDg4Yy05ZWJiLWU4YTMyMjg0NjY0MS8xL053NmhzRnk5VGx3SkpuaDhl
Vk0tNHAyVXZwWS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF
BwEHAQH/BB8wHTAMBAIAATAGAwQCuZ4QMA0EAgACMAcDBQAqEkeAMBoGCCsGAQUF
BwEIAQH/BAswCaAHMAUCAwMXqDANBgkqhkiG9w0BAQsFAAOCAQEARqY9DtHvjJFP
fdYBd3IrIXsgnZk0PA0sNHTI9ru9ruy5B1aKl9JZR6hP9X0rEHn+ugScFIeftDnF
O42Yg3JWvY2cnIpfPB1Mec/WzaoMcX6BQ6nztOqRyTGUtDDKlN2nqMWW5uA6hUOh
03TeyP6v9eLXrwMvf5s5s4mRnUW62fqdzNMNPSlb3yDExGx9dC87Y4G9m1Ez3bqB
Tiwlkbityc8gX3fRJqxK45sFKlxM00fdTWO69vgEjR5ITp8g3EUVMjxSSfJFMoNR
BUEEEuJSVjmEhQSdMTfDTwuvTZFPPU78irasK3QllfgTs4lCl0m9/wg7yt62Om2r
0h6Krzm7Jg==
-----END CERTIFICATE-----
Generated at Sat Nov 23 10:49:21 2024 by rpki-client on console-ams.rpki-client.org