Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/W3jiiHXnMAJWzM62gfCmAIc9eVI.cer
File: W3jiiHXnMAJWzM62gfCmAIc9eVI.cer (raw, json)
Hash identifier: B/joe/YNcmeQGkI45XprWWTU4Yp+u07oPP1cWybwVPg=
Subject key identifier: 5B:78:E2:88:75:E7:30:02:56:CC:CE:B6:81:F0:A6:00:87:3D:79:52
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018F7C0C50209BAFD8C06A90D41A647C0EBE
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/77/967137-2a8b-4f40-8ca9-638e315beed9/1/W3jiiHXnMAJWzM62gfCmAIc9eVI.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/77/967137-2a8b-4f40-8ca9-638e315beed9/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 15 May 2024 11:38:52 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 214906
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Sep 2024 14:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:7c:0c:50:20:9b:af:d8:c0:6a:90:d4:1a:64:7c:0e:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: May 15 11:38:52 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5b78e28875e7300256ccceb681f0a600873d7952
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:51:31:c7:bf:aa:61:2a:25:f0:d1:f9:22:cd:
71:87:e8:8b:89:f7:36:5d:0c:71:4e:5d:ff:95:cd:
63:cd:17:12:bf:fc:63:c8:73:b4:2f:8f:66:2a:56:
e3:fa:1e:de:db:cd:7c:82:d9:43:8b:25:dd:46:e4:
38:61:42:41:ad:75:4f:e2:dc:fd:2f:bc:c4:27:ff:
5d:6e:5b:d0:69:27:78:77:87:fb:5d:38:8c:5b:e6:
4d:d8:ee:67:91:56:37:f1:7b:70:1c:1f:1a:89:59:
a0:fe:bf:5f:be:66:41:26:81:ec:62:00:2c:57:3a:
8e:e7:06:1a:6d:5a:bc:08:89:5a:9e:90:50:a5:e6:
70:ef:85:18:4f:38:cf:70:f9:b2:d7:de:71:b1:bc:
8e:d2:2e:fb:6f:d4:15:f7:e6:fe:f2:b2:bb:c9:b7:
a4:16:fe:09:6f:3d:27:5f:a9:27:73:9b:75:1b:28:
f3:97:e7:36:83:76:f0:cc:62:11:92:4a:0b:60:ad:
87:18:ef:c3:17:10:17:9c:54:ad:88:79:af:a9:da:
5f:56:2d:19:1b:8b:74:9c:cf:40:e8:58:af:83:9a:
d7:64:d2:ba:2b:57:0a:77:f3:e7:78:b7:6f:d6:be:
df:25:2b:56:55:b2:86:67:f5:6a:f9:75:5c:94:b2:
96:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:78:E2:88:75:E7:30:02:56:CC:CE:B6:81:F0:A6:00:87:3D:79:52
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/967137-2a8b-4f40-8ca9-638e315beed9/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/967137-2a8b-4f40-8ca9-638e315beed9/1/W3jiiHXnMAJWzM62gfCmAIc9eVI.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
214906
Signature Algorithm: sha256WithRSAEncryption
79:9d:a7:93:31:f5:fd:08:85:82:0c:28:cf:18:de:39:c1:db:
9b:36:8c:19:88:91:17:5a:1e:2e:f2:09:c3:2e:e5:3c:07:ff:
e1:ef:fd:22:d3:b6:12:11:c1:d7:9f:b7:a9:06:0a:86:e2:cd:
4a:2b:bc:0a:d3:58:35:bf:19:6b:a0:3c:06:a9:3b:4c:b5:f1:
db:87:34:4c:1e:33:51:27:fc:cf:5c:57:0f:22:88:4c:4b:b7:
2c:71:78:da:65:46:79:a1:a6:a3:0d:43:3f:10:00:34:fc:55:
0a:da:65:93:ce:cf:f5:b9:7e:fa:3d:23:04:c8:47:10:99:4f:
38:73:e8:7f:ab:e0:77:f3:4e:5e:42:ef:ac:f8:e6:f2:a7:65:
f2:f6:5d:8e:18:67:1e:e3:37:bc:5f:c5:3e:2d:65:c3:d8:8d:
cf:97:3d:9b:81:0a:1c:80:61:7e:af:3c:e4:a3:a4:6d:67:86:
fe:f8:9e:84:8b:4f:9c:ec:d8:1e:62:99:e3:d9:03:2b:f6:91:
0b:08:42:9c:97:c2:7b:74:79:4d:68:bb:db:09:d0:7c:b6:fe:
72:54:ba:11:a5:34:81:06:88:9d:eb:25:26:1b:db:72:cd:bb:
25:12:b4:b3:2e:50:00:ad:b2:92:a2:65:60:56:33:67:ab:98:
fa:af:21:2c
-----BEGIN CERTIFICATE-----
MIIFczCCBFugAwIBAgISAY98DFAgm6/YwGqQ1BpkfA6+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwNTE1MTEzODUyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1Yjc4ZTI4ODc1ZTczMDAyNTZjY2NlYjY4MWYwYTYwMDg3M2Q3OTUyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5FExx7+qYSol8NH5Is1xh+iLifc2
XQxxTl3/lc1jzRcSv/xjyHO0L49mKlbj+h7e2818gtlDiyXdRuQ4YUJBrXVP4tz9
L7zEJ/9dblvQaSd4d4f7XTiMW+ZN2O5nkVY38XtwHB8aiVmg/r9fvmZBJoHsYgAs
VzqO5wYabVq8CIlanpBQpeZw74UYTzjPcPmy195xsbyO0i77b9QV9+b+8rK7ybek
Fv4Jbz0nX6knc5t1Gyjzl+c2g3bwzGIRkkoLYK2HGO/DFxAXnFStiHmvqdpfVi0Z
G4t0nM9A6Fivg5rXZNK6K1cKd/PneLdv1r7fJStWVbKGZ/Vq+XVclLKW/QIDAQAB
o4ICfzCCAnswHQYDVR0OBBYEFFt44oh15zACVszOtoHwpgCHPXlSMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzc3Lzk2NzEz
Ny0yYThiLTRmNDAtOGNhOS02MzhlMzE1YmVlZDkvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzcvOTY3MTM3
LTJhOGItNGY0MC04Y2E5LTYzOGUzMTViZWVkOS8xL1czamlpSFhuTUFKV3pNNjJn
ZkNtQUljOWVWSS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMBoGCCsGAQUF
BwEIAQH/BAswCaAHMAUCAwNHejANBgkqhkiG9w0BAQsFAAOCAQEAeZ2nkzH1/QiF
ggwozxjeOcHbmzaMGYiRF1oeLvIJwy7lPAf/4e/9ItO2EhHB15+3qQYKhuLNSiu8
CtNYNb8Za6A8Bqk7TLXx24c0TB4zUSf8z1xXDyKITEu3LHF42mVGeaGmow1DPxAA
NPxVCtplk87P9bl++j0jBMhHEJlPOHPof6vgd/NOXkLvrPjm8qdl8vZdjhhnHuM3
vF/FPi1lw9iNz5c9m4EKHIBhfq885KOkbWeG/viehItPnOzYHmKZ49kDK/aRCwhC
nJfCe3R5TWi72wnQfLb+clS6EaU0gQaIneslJhvbcs27JRK0sy5QAK2ykqJlYFYz
Z6uY+q8hLA==
-----END CERTIFICATE-----
Generated at Sat Sep 7 21:03:10 2024 by rpki-client on console-fra.rpki-client.org