Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/OIeaeKWKSFzNiXDwQy2489dxcls.cer
File: OIeaeKWKSFzNiXDwQy2489dxcls.cer (raw, json)
Hash identifier: RD0DQl3uX2cEJkVs2qToG/43p+3VRGBrF1CEZZpCFcw=
Subject key identifier: 38:87:9A:78:A5:8A:48:5C:CD:89:70:F0:43:2D:B8:F3:D7:71:72:5B
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC2DAFBF6CCFFCC37FE6AFDEC7927066C
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/6a/c38797-d7fa-4a57-9f83-a16a34c46f30/1/OIeaeKWKSFzNiXDwQy2489dxcls.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/6a/c38797-d7fa-4a57-9f83-a16a34c46f30/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 02:29:40 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 207006
IP: 185.196.232.0/22
IP: 2a0a:73c0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:da:fb:f6:cc:ff:cc:37:fe:6a:fd:ec:79:27:06:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 02:29:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=38879a78a58a485ccd8970f0432db8f3d771725b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:dd:82:79:9d:97:1b:4f:07:bd:1b:6b:4c:8e:
66:bd:70:5c:d8:8f:6a:2d:2b:8f:cb:27:88:b0:45:
b5:01:f6:80:94:5f:25:c3:18:d5:2d:f6:6b:21:ce:
fa:d4:49:e6:36:95:df:c2:83:c8:94:68:2e:91:f6:
5c:b8:96:1b:f5:7c:24:84:91:18:49:56:fb:c6:23:
b2:2d:e3:ca:7a:d6:0d:bf:3d:9c:d4:77:00:b3:93:
97:25:c8:00:b8:87:61:1b:fc:b3:e5:b6:c8:54:05:
f9:e3:9b:9f:8f:12:77:3a:0b:fa:2d:b0:c7:a1:01:
f7:de:17:38:0e:de:e6:5b:8d:08:f7:da:1e:8f:3d:
43:80:5b:ea:a4:f1:53:75:de:b3:3c:f8:a1:ce:36:
2d:66:3a:c3:fc:fe:40:17:16:73:b1:3e:1b:0d:b2:
80:44:c7:c7:48:e7:87:5e:b6:5e:8b:1b:57:60:6d:
6f:34:9c:e9:bb:b7:16:84:60:f2:19:05:e6:2f:03:
e7:21:22:9a:da:40:12:93:1a:ee:f2:61:23:6d:61:
e0:32:4a:04:73:a2:ef:ef:e2:af:31:ad:02:57:b8:
97:0a:d0:7f:b4:8a:41:70:4d:3a:22:3d:4a:13:62:
60:ee:c3:73:88:64:22:34:e6:b0:a0:f8:75:19:bd:
d0:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:87:9A:78:A5:8A:48:5C:CD:89:70:F0:43:2D:B8:F3:D7:71:72:5B
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/c38797-d7fa-4a57-9f83-a16a34c46f30/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/c38797-d7fa-4a57-9f83-a16a34c46f30/1/OIeaeKWKSFzNiXDwQy2489dxcls.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.196.232.0/22
IPv6:
2a0a:73c0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
207006
Signature Algorithm: sha256WithRSAEncryption
60:a7:7b:f3:1a:7e:16:00:fe:52:97:fe:05:9b:e0:db:47:de:
d7:c4:eb:43:d8:53:25:fe:a4:ea:a5:2f:a8:15:4d:79:31:6d:
fd:b1:83:95:d9:74:98:bf:d5:f6:5a:32:01:dd:54:0b:0c:b5:
b3:61:00:01:43:e0:6b:40:a7:43:d1:24:7c:be:a2:69:a1:1f:
ed:1d:69:a7:39:24:9a:99:45:42:f2:58:ad:cc:fb:e5:16:a8:
e8:f5:79:9b:aa:44:cd:8c:1f:b2:b3:4b:97:21:c4:af:fb:24:
7b:7c:6c:ce:13:58:72:13:3a:ea:15:69:3c:dd:48:49:59:be:
bf:40:31:bf:c3:68:71:06:58:c2:8a:81:af:30:34:80:a4:7e:
12:7e:8e:33:25:f7:83:31:7e:33:56:fd:19:42:dd:1a:aa:bb:
75:b1:2e:7c:23:4a:1d:d0:5f:fd:8b:1b:0b:72:99:e8:33:ef:
1e:22:c4:8a:5f:79:28:2e:02:cc:b2:c7:6a:79:b7:88:27:08:
c3:06:62:3f:b7:69:d2:b3:6f:16:aa:e9:21:19:b9:f6:d7:7b:
dd:c3:c3:5e:f6:67:63:8e:86:50:8a:54:10:9e:01:51:62:90:
b9:3c:13:c6:59:af:b6:fd:d3:3f:46:aa:73:ea:c4:bf:78:af:
5a:88:fe:25
-----BEGIN CERTIFICATE-----
MIIFozCCBIugAwIBAgISAYzC2vv2zP/MN/5q/ex5JwZsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAxMDIyOTQwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzODg3OWE3OGE1OGE0ODVjY2Q4OTcwZjA0MzJkYjhmM2Q3NzE3MjViMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArd2CeZ2XG08HvRtrTI5mvXBc2I9q
LSuPyyeIsEW1AfaAlF8lwxjVLfZrIc761EnmNpXfwoPIlGgukfZcuJYb9XwkhJEY
SVb7xiOyLePKetYNvz2c1HcAs5OXJcgAuIdhG/yz5bbIVAX545ufjxJ3Ogv6LbDH
oQH33hc4Dt7mW40I99oejz1DgFvqpPFTdd6zPPihzjYtZjrD/P5AFxZzsT4bDbKA
RMfHSOeHXrZeixtXYG1vNJzpu7cWhGDyGQXmLwPnISKa2kASkxru8mEjbWHgMkoE
c6Lv7+KvMa0CV7iXCtB/tIpBcE06Ij1KE2Jg7sNziGQiNOawoPh1Gb3QWwIDAQAB
o4ICrzCCAqswHQYDVR0OBBYEFDiHmnilikhczYlw8EMtuPPXcXJbMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzZhL2MzODc5
Ny1kN2ZhLTRhNTctOWY4My1hMTZhMzRjNDZmMzAvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNmEvYzM4Nzk3
LWQ3ZmEtNGE1Ny05ZjgzLWExNmEzNGM0NmYzMC8xL09JZWFlS1dLU0Z6TmlYRHdR
eTI0ODlkeGNscy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF
BwEHAQH/BB8wHTAMBAIAATAGAwQCucToMA0EAgACMAcDBQMqCnPAMBoGCCsGAQUF
BwEIAQH/BAswCaAHMAUCAwMonjANBgkqhkiG9w0BAQsFAAOCAQEAYKd78xp+FgD+
Upf+BZvg20fe18TrQ9hTJf6k6qUvqBVNeTFt/bGDldl0mL/V9loyAd1UCwy1s2EA
AUPga0CnQ9EkfL6iaaEf7R1ppzkkmplFQvJYrcz75Rao6PV5m6pEzYwfsrNLlyHE
r/ske3xszhNYchM66hVpPN1ISVm+v0Axv8NocQZYwoqBrzA0gKR+En6OMyX3gzF+
M1b9GULdGqq7dbEufCNKHdBf/YsbC3KZ6DPvHiLEil95KC4CzLLHanm3iCcIwwZi
P7dp0rNvFqrpIRm59td73cPDXvZnY46GUIpUEJ4BUWKQuTwTxlmvtv3TP0aqc+rE
v3ivWoj+JQ==
-----END CERTIFICATE-----
Generated at Sat Nov 23 10:49:26 2024 by rpki-client on console-ams.rpki-client.org