Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/O-0CE2aYcB90xJ-KKp5z6E7JgbY.cer
File: O-0CE2aYcB90xJ-KKp5z6E7JgbY.cer (raw, json)
Hash identifier: NYBv0xqXBiXs/XEM7pWf2U/ZKUpD7FaZAogws/Gwij4=
Subject key identifier: 3B:ED:02:13:66:98:70:1F:74:C4:9F:8A:2A:9E:73:E8:4E:C9:81:B6
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC26D7555FA1B595CE98341C155038EDD
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/4e/9faed1-f642-4e82-8a73-ed99ef64adbf/1/O-0CE2aYcB90xJ-KKp5z6E7JgbY.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/4e/9faed1-f642-4e82-8a73-ed99ef64adbf/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 00:30:02 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 201273
IP: 185.161.249.0/24
IP: 2a12:8340::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:6d:75:55:fa:1b:59:5c:e9:83:41:c1:55:03:8e:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 00:30:02 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3bed02136698701f74c49f8a2a9e73e84ec981b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:b5:41:66:bd:d0:30:c9:f9:59:28:d1:3a:3e:
90:90:33:bb:d2:fc:84:c7:83:37:2f:07:5b:7d:2c:
f9:a7:9d:4f:a5:f5:d9:64:72:88:33:96:7c:6d:d0:
22:7f:5a:28:e0:98:44:6c:34:24:42:9c:58:06:a5:
c0:d8:6c:12:d8:82:61:84:c0:a4:07:1d:a8:72:27:
5d:1b:5b:1d:78:03:3e:3a:3f:cc:52:07:14:76:7b:
c2:e4:8e:c9:67:13:ac:26:a2:f1:cf:e6:d3:93:e3:
62:4b:0e:cc:13:bc:31:ab:33:4b:f6:57:53:f4:26:
20:e8:dc:e9:b9:98:fe:1e:0b:09:83:66:d4:1e:34:
46:24:9b:1a:71:5a:c3:34:23:9f:fb:d0:25:00:fc:
a8:84:f0:b8:81:5b:b0:42:ce:b3:b2:48:04:aa:ad:
1e:76:04:55:8b:e3:6e:16:4f:5a:55:76:24:5a:1f:
ff:86:2b:b4:fd:98:4a:d9:88:05:db:8a:d2:e2:9f:
88:05:2a:79:8b:68:43:49:45:91:46:d3:18:67:78:
1b:e4:38:dc:29:ef:b6:2a:9b:97:21:6a:0b:d7:07:
4b:8e:8b:d9:96:0c:01:d2:cf:94:bc:1e:36:a1:00:
02:53:41:5b:d7:7f:c2:a0:02:37:e8:fc:7b:7d:7f:
f1:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:ED:02:13:66:98:70:1F:74:C4:9F:8A:2A:9E:73:E8:4E:C9:81:B6
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/9faed1-f642-4e82-8a73-ed99ef64adbf/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/9faed1-f642-4e82-8a73-ed99ef64adbf/1/O-0CE2aYcB90xJ-KKp5z6E7JgbY.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.161.249.0/24
IPv6:
2a12:8340::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
201273
Signature Algorithm: sha256WithRSAEncryption
74:0e:40:9b:54:c1:7e:bd:1d:c3:3f:20:2f:f1:39:d6:b5:c0:
a3:f5:fd:0d:62:36:2b:f5:75:80:01:83:39:2d:82:2f:e8:18:
1b:b7:78:63:b7:1c:42:09:1a:5b:2a:28:82:1c:f3:ec:c7:f4:
ac:11:dd:74:1d:22:98:75:6b:6a:95:04:4e:65:0b:d3:c2:1c:
ea:92:e7:c9:1f:ce:fe:62:f5:b3:2f:43:c0:30:8e:0a:58:10:
98:82:82:15:eb:79:cc:d9:1a:3e:7a:c2:6d:72:d0:94:4d:ee:
08:3c:73:dd:6b:d8:95:62:6e:25:b1:e2:da:1d:2b:f9:cc:1b:
54:f6:49:4d:32:6b:17:90:1f:1b:36:34:05:19:70:5e:46:15:
1a:67:4a:6c:37:c4:2a:97:1f:c4:d5:db:aa:dd:aa:f2:ba:60:
bf:13:c6:0b:7a:5d:56:f5:bd:5d:49:d2:ff:83:39:31:bb:18:
c7:e1:54:56:1c:d4:fb:1f:e0:d1:8f:d4:79:c1:db:9a:e5:77:
33:34:86:34:28:a8:3f:7d:88:5c:bd:ec:3b:d0:7a:14:5f:8f:
68:c7:37:24:36:43:89:49:a9:52:90:e9:1f:ff:e1:df:a6:42:
d2:72:ce:90:a1:b0:04:42:d0:08:25:4a:55:31:51:01:2d:da:
20:7d:fa:c1
-----BEGIN CERTIFICATE-----
MIIFozCCBIugAwIBAgISAYzCbXVV+htZXOmDQcFVA47dMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAxMDAzMDAyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzYmVkMDIxMzY2OTg3MDFmNzRjNDlmOGEyYTllNzNlODRlYzk4MWI2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAh7VBZr3QMMn5WSjROj6QkDO70vyE
x4M3LwdbfSz5p51PpfXZZHKIM5Z8bdAif1oo4JhEbDQkQpxYBqXA2GwS2IJhhMCk
Bx2ociddG1sdeAM+Oj/MUgcUdnvC5I7JZxOsJqLxz+bTk+NiSw7ME7wxqzNL9ldT
9CYg6NzpuZj+HgsJg2bUHjRGJJsacVrDNCOf+9AlAPyohPC4gVuwQs6zskgEqq0e
dgRVi+NuFk9aVXYkWh//hiu0/ZhK2YgF24rS4p+IBSp5i2hDSUWRRtMYZ3gb5Djc
Ke+2KpuXIWoL1wdLjovZlgwB0s+UvB42oQACU0Fb13/CoAI36Px7fX/xyQIDAQAB
o4ICrzCCAqswHQYDVR0OBBYEFDvtAhNmmHAfdMSfiiqec+hOyYG2MB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzRlLzlmYWVk
MS1mNjQyLTRlODItOGE3My1lZDk5ZWY2NGFkYmYvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNGUvOWZhZWQx
LWY2NDItNGU4Mi04YTczLWVkOTllZjY0YWRiZi8xL08tMENFMmFZY0I5MHhKLUtL
cDV6NkU3SmdiWS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF
BwEHAQH/BB8wHTAMBAIAATAGAwQAuaH5MA0EAgACMAcDBQMqEoNAMBoGCCsGAQUF
BwEIAQH/BAswCaAHMAUCAwMSOTANBgkqhkiG9w0BAQsFAAOCAQEAdA5Am1TBfr0d
wz8gL/E51rXAo/X9DWI2K/V1gAGDOS2CL+gYG7d4Y7ccQgkaWyooghzz7Mf0rBHd
dB0imHVrapUETmUL08Ic6pLnyR/O/mL1sy9DwDCOClgQmIKCFet5zNkaPnrCbXLQ
lE3uCDxz3WvYlWJuJbHi2h0r+cwbVPZJTTJrF5AfGzY0BRlwXkYVGmdKbDfEKpcf
xNXbqt2q8rpgvxPGC3pdVvW9XUnS/4M5MbsYx+FUVhzU+x/g0Y/UecHbmuV3MzSG
NCioP32IXL3sO9B6FF+PaMc3JDZDiUmpUpDpH//h36ZC0nLOkKGwBELQCCVKVTFR
AS3aIH36wQ==
-----END CERTIFICATE-----
Generated at Sat Nov 23 10:08:03 2024 by rpki-client on console-fra.rpki-client.org