Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/U_azaGcjiqcYvhfm5zzkCpiVeKA.cer
File: U_azaGcjiqcYvhfm5zzkCpiVeKA.cer (raw, json)
Hash identifier: xNGPN4t3MPBxv50nCr6QqYiJCN6gt9Ad+xO95p6PBXo=
Subject key identifier: 53:F6:B3:68:67:23:8A:A7:18:BE:17:E6:E7:3C:E4:0A:98:95:78:A0
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC72618A1682CD7E204B744B7CDF409B9
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/ac/091e11-ee0c-49ec-95d7-6dbad31dbc41/1/U_azaGcjiqcYvhfm5zzkCpiVeKA.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/ac/091e11-ee0c-49ec-95d7-6dbad31dbc41/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 22:30:11 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 31098
IP: 194.39.140.0/24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:26:18:a1:68:2c:d7:e2:04:b7:44:b7:cd:f4:09:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 22:30:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=53f6b36867238aa718be17e6e73ce40a989578a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:43:2a:04:6e:1d:9e:90:9c:51:da:1b:7d:50:
1f:b0:5e:e3:8b:e9:45:41:53:3a:3c:1b:f2:31:a5:
22:8e:7a:f2:26:d4:ac:a4:89:3a:8d:e1:85:1d:7f:
84:42:0d:61:cc:66:3e:f9:fd:94:74:6f:03:2d:0f:
3b:36:00:e7:3d:44:dd:cc:82:03:8b:4c:c4:b8:fe:
cc:20:c4:fd:05:00:12:1f:bf:c9:de:c7:bd:a4:b7:
4d:21:32:a1:0e:05:ff:45:a7:e3:c3:b0:32:61:cc:
ce:3c:61:4d:a7:b9:33:0a:79:09:68:6a:54:05:c6:
4d:4d:5f:cf:e9:50:db:df:a8:a1:e5:46:f7:53:f2:
72:48:67:bb:c1:a3:87:76:a5:2c:34:6f:d0:31:5f:
5a:83:b1:d0:98:79:ec:f7:72:8e:05:68:60:18:ba:
bb:54:4c:48:91:8f:bd:3a:ea:cd:eb:f1:c4:34:9c:
72:58:19:9c:94:14:da:03:6e:f7:14:b6:d4:2b:3b:
f1:9b:20:43:fe:03:6a:77:9b:80:48:c0:7b:66:5e:
71:22:a0:b2:1e:28:4e:98:89:6a:a1:e5:29:c7:c5:
8f:cd:06:56:07:7c:2f:f1:0d:7e:50:a1:68:84:7c:
60:55:62:e9:43:d3:ea:03:84:85:9c:f7:89:7a:57:
1d:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:F6:B3:68:67:23:8A:A7:18:BE:17:E6:E7:3C:E4:0A:98:95:78:A0
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/091e11-ee0c-49ec-95d7-6dbad31dbc41/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/091e11-ee0c-49ec-95d7-6dbad31dbc41/1/U_azaGcjiqcYvhfm5zzkCpiVeKA.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.39.140.0/24
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
31098
Signature Algorithm: sha256WithRSAEncryption
49:d9:7c:74:73:5d:c7:d2:8a:9d:67:34:75:0a:8d:aa:a6:31:
61:56:bf:3c:0e:3d:d3:93:c1:e8:86:5c:a3:54:04:c0:36:22:
f2:8a:c1:14:c5:77:80:6d:7a:60:a2:51:dc:8c:3d:64:83:14:
1e:1a:f3:9a:51:dd:b3:97:05:c1:49:55:86:19:90:e6:7e:0c:
ee:05:e6:05:4e:5d:92:27:71:fc:c1:24:c2:af:50:d1:a6:f6:
88:b7:31:90:34:d2:a6:85:42:18:32:a0:af:6e:32:f0:6e:a6:
a2:f4:a4:9d:6b:8f:8e:f3:ab:e1:85:d5:b3:26:31:b0:6c:b8:
1f:dc:ce:6f:62:58:81:48:fc:11:80:9a:e3:6b:cb:27:13:3f:
2a:e7:98:e2:8e:80:e9:d6:64:fe:6e:d6:18:93:fe:d3:62:93:
56:d6:fa:14:40:8f:a7:aa:5c:ee:6d:e8:c1:0a:04:f8:44:4e:
ac:5d:30:60:8b:3b:16:24:0d:9e:c0:e0:43:3e:39:1d:42:98:
b3:7b:d9:b8:be:9a:8a:28:f2:1f:19:6b:92:16:c5:1d:57:28:
51:06:ec:20:02:84:50:88:0c:aa:80:e4:86:1d:e9:01:21:96:
24:b5:77:7c:f7:4d:f1:52:2c:00:69:8c:f5:f5:81:c1:36:ab:
b2:be:2a:48
-----BEGIN CERTIFICATE-----
MIIFkzCCBHugAwIBAgISAYzHJhihaCzX4gS3RLfN9Am5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAxMjIzMDExWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1M2Y2YjM2ODY3MjM4YWE3MThiZTE3ZTZlNzNjZTQwYTk4OTU3OGEwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvEMqBG4dnpCcUdobfVAfsF7ji+lF
QVM6PBvyMaUijnryJtSspIk6jeGFHX+EQg1hzGY++f2UdG8DLQ87NgDnPUTdzIID
i0zEuP7MIMT9BQASH7/J3se9pLdNITKhDgX/Rafjw7AyYczOPGFNp7kzCnkJaGpU
BcZNTV/P6VDb36ih5Ub3U/JySGe7waOHdqUsNG/QMV9ag7HQmHns93KOBWhgGLq7
VExIkY+9OurN6/HENJxyWBmclBTaA273FLbUKzvxmyBD/gNqd5uASMB7Zl5xIqCy
HihOmIlqoeUpx8WPzQZWB3wv8Q1+UKFohHxgVWLpQ9PqA4SFnPeJelcdFQIDAQAB
o4ICnzCCApswHQYDVR0OBBYEFFP2s2hnI4qnGL4X5uc85AqYlXigMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2FjLzA5MWUx
MS1lZTBjLTQ5ZWMtOTVkNy02ZGJhZDMxZGJjNDEvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYWMvMDkxZTEx
LWVlMGMtNDllYy05NWQ3LTZkYmFkMzFkYmM0MS8xL1VfYXphR2NqaXFjWXZoZm01
enprQ3BpVmVLQS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF
BwEHAQH/BBAwDjAMBAIAATAGAwQAwieMMBkGCCsGAQUFBwEIAQH/BAowCKAGMAQC
Anl6MA0GCSqGSIb3DQEBCwUAA4IBAQBJ2Xx0c13H0oqdZzR1Co2qpjFhVr88Dj3T
k8HohlyjVATANiLyisEUxXeAbXpgolHcjD1kgxQeGvOaUd2zlwXBSVWGGZDmfgzu
BeYFTl2SJ3H8wSTCr1DRpvaItzGQNNKmhUIYMqCvbjLwbqai9KSda4+O86vhhdWz
JjGwbLgf3M5vYliBSPwRgJrja8snEz8q55jijoDp1mT+btYYk/7TYpNW1voUQI+n
qlzubejBCgT4RE6sXTBgizsWJA2ewOBDPjkdQpize9m4vpqKKPIfGWuSFsUdVyhR
BuwgAoRQiAyqgOSGHekBIZYktXd8903xUiwAaYz19YHBNquyvipI
-----END CERTIFICATE-----
Generated at Fri May 3 11:34:22 2024 by rpki-client on console-ams.rpki-client.org