Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/X8JHQzBLf9mgZdIs2JzalQReJpw.cer
File: X8JHQzBLf9mgZdIs2JzalQReJpw.cer (raw, json)
Hash identifier: muLl+5cn43cdI+wlDp+O5aJWO5d3AkKP9ktKLBfF6DE=
Subject key identifier: 5F:C2:47:43:30:4B:7F:D9:A0:65:D2:2C:D8:9C:DA:95:04:5E:26:9C
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC7936E3A379BDA7C4EAB677C9FB30D37
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/33/e5a2c7-0453-48ba-b10c-0ba9679de2e6/1/X8JHQzBLf9mgZdIs2JzalQReJpw.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/33/e5a2c7-0453-48ba-b10c-0ba9679de2e6/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 00:29:37 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 201659
IP: 185.61.160.0/22
IP: 2a02:7ae0::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:93:6e:3a:37:9b:da:7c:4e:ab:67:7c:9f:b3:0d:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 00:29:37 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5fc24743304b7fd9a065d22cd89cda95045e269c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:d7:b8:af:ea:e4:be:04:3b:f1:27:d6:83:aa:
cc:dd:54:95:20:20:de:20:7f:12:9f:d9:9a:f7:8f:
96:bd:e6:9d:67:ee:0b:4e:b5:b7:ce:de:2a:5f:7c:
67:85:e1:ea:83:eb:29:8e:8b:f2:ff:1b:77:a2:21:
1c:9a:91:06:a2:c3:aa:71:f6:14:12:7c:3b:41:0b:
fa:71:0a:86:ef:8a:91:72:11:99:31:2e:07:49:91:
df:67:6e:1b:1a:1f:bc:57:37:7a:46:5f:06:75:70:
36:dc:ba:43:bc:55:fa:62:5b:c3:e6:7e:ad:e7:37:
e9:21:08:90:ae:d5:0c:ba:80:f6:45:ad:ac:22:97:
1a:dd:fb:0c:e4:61:14:9d:d3:aa:9b:0d:85:a0:d5:
84:c5:91:6a:dd:0d:f3:5d:de:17:a8:e8:17:76:89:
60:16:f5:f9:f2:60:fd:12:f6:f7:83:a9:e6:1a:0b:
23:f6:a1:c6:4a:3c:eb:25:ff:36:38:6c:d4:cd:e2:
ce:34:59:99:92:90:1b:b8:27:93:bc:27:d6:9e:26:
32:40:5d:31:c5:3c:14:9a:d4:5d:80:25:b4:d0:24:
b4:b3:34:9e:f9:ab:7b:00:67:16:16:24:7e:ed:fb:
02:6b:52:dc:ce:29:fe:9a:aa:5b:ac:d6:68:b3:37:
b7:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:C2:47:43:30:4B:7F:D9:A0:65:D2:2C:D8:9C:DA:95:04:5E:26:9C
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/e5a2c7-0453-48ba-b10c-0ba9679de2e6/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/e5a2c7-0453-48ba-b10c-0ba9679de2e6/1/X8JHQzBLf9mgZdIs2JzalQReJpw.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.61.160.0/22
IPv6:
2a02:7ae0::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
201659
Signature Algorithm: sha256WithRSAEncryption
a2:0d:18:82:fd:f5:bd:f9:ac:cd:a7:23:00:73:58:1e:72:09:
0d:35:98:19:93:cc:64:7d:51:98:a2:49:38:77:dc:40:38:ee:
d1:b3:b1:5a:2f:e2:2d:f8:9e:cb:48:48:d9:8e:e2:51:1a:55:
a3:51:c4:2f:29:09:9f:ad:38:9e:f6:cf:e6:71:63:e2:4c:9a:
a0:ca:6c:b4:80:27:e1:35:dc:d8:43:34:80:d7:ea:e7:42:d1:
4f:7a:67:15:d5:80:c1:94:97:72:b6:5e:20:3b:29:bf:6e:98:
11:1c:25:2d:59:86:39:9f:0e:cc:db:74:d1:3b:a5:29:e8:56:
e9:de:42:6b:0a:24:a0:5d:1b:64:13:30:63:c2:c5:46:7d:7f:
98:24:a2:e5:78:50:09:e9:2b:92:4b:8c:59:8b:4f:d8:de:a6:
99:82:20:b8:ef:d7:b5:00:96:6a:93:f4:3d:10:14:35:27:84:
c4:2d:65:0c:13:23:48:34:b5:38:f5:58:e4:9f:ab:da:fd:fb:
8a:d8:26:58:3b:a8:22:c7:ac:30:27:05:13:11:a4:1c:7a:37:
b9:36:9a:8a:93:84:51:2f:24:45:74:db:2d:fd:84:79:d1:0d:
30:7f:cd:ec:45:7b:5c:43:91:48:6c:4b:9d:59:3d:3b:a5:71:
5d:4c:f8:2b
-----BEGIN CERTIFICATE-----
MIIFozCCBIugAwIBAgISAYzHk246N5vafE6rZ3yfsw03MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAyMDAyOTM3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1ZmMyNDc0MzMwNGI3ZmQ5YTA2NWQyMmNkODljZGE5NTA0NWUyNjljMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsNe4r+rkvgQ78SfWg6rM3VSVICDe
IH8Sn9ma94+WveadZ+4LTrW3zt4qX3xnheHqg+spjovy/xt3oiEcmpEGosOqcfYU
Enw7QQv6cQqG74qRchGZMS4HSZHfZ24bGh+8Vzd6Rl8GdXA23LpDvFX6YlvD5n6t
5zfpIQiQrtUMuoD2Ra2sIpca3fsM5GEUndOqmw2FoNWExZFq3Q3zXd4XqOgXdolg
FvX58mD9Evb3g6nmGgsj9qHGSjzrJf82OGzUzeLONFmZkpAbuCeTvCfWniYyQF0x
xTwUmtRdgCW00CS0szSe+at7AGcWFiR+7fsCa1Lczin+mqpbrNZosze3FwIDAQAB
o4ICrzCCAqswHQYDVR0OBBYEFF/CR0MwS3/ZoGXSLNic2pUEXiacMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzMzL2U1YTJj
Ny0wNDUzLTQ4YmEtYjEwYy0wYmE5Njc5ZGUyZTYvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzMvZTVhMmM3
LTA0NTMtNDhiYS1iMTBjLTBiYTk2NzlkZTJlNi8xL1g4SkhRekJMZjltZ1pkSXMy
SnphbFFSZUpwdy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF
BwEHAQH/BB8wHTAMBAIAATAGAwQCuT2gMA0EAgACMAcDBQAqAnrgMBoGCCsGAQUF
BwEIAQH/BAswCaAHMAUCAwMTuzANBgkqhkiG9w0BAQsFAAOCAQEAog0Ygv31vfms
zacjAHNYHnIJDTWYGZPMZH1RmKJJOHfcQDju0bOxWi/iLfiey0hI2Y7iURpVo1HE
LykJn604nvbP5nFj4kyaoMpstIAn4TXc2EM0gNfq50LRT3pnFdWAwZSXcrZeIDsp
v26YERwlLVmGOZ8OzNt00TulKehW6d5CawokoF0bZBMwY8LFRn1/mCSi5XhQCekr
kkuMWYtP2N6mmYIguO/XtQCWapP0PRAUNSeExC1lDBMjSDS1OPVY5J+r2v37itgm
WDuoIsesMCcFExGkHHo3uTaaipOEUS8kRXTbLf2EedENMH/N7EV7XEORSGxLnVk9
O6VxXUz4Kw==
-----END CERTIFICATE-----
Generated at Fri May 3 07:39:40 2024 by rpki-client on console-fra.rpki-client.org