Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/YOqDhaFP2ZZ5eK5_BuxN1SIppEo.cer
File: YOqDhaFP2ZZ5eK5_BuxN1SIppEo.cer (raw, json)
Hash identifier: WKHEZ3+C3kD3LrlA3w07vKU6Dl4FtYckQ5LdoB8i/HU=
Subject key identifier: 60:EA:83:85:A1:4F:D9:96:79:78:AE:7F:06:EC:4D:D5:22:29:A4:4A
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC794AFCEDE977BA1B9FFE3DC44643D1B
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/9b/0330fb-95d1-4302-bea1-f54577f7cc0f/1/YOqDhaFP2ZZ5eK5_BuxN1SIppEo.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/9b/0330fb-95d1-4302-bea1-f54577f7cc0f/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 00:30:59 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 196714
IP: 31.3.80.0/21
IP: 91.137.0.0/18
IP: 109.73.16.0/20
IP: 171.33.184.0/21
IP: 185.38.8.0/22
IP: 2a02:2250::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:94:af:ce:de:97:7b:a1:b9:ff:e3:dc:44:64:3d:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 00:30:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=60ea8385a14fd9967978ae7f06ec4dd52229a44a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:f3:b0:46:30:63:fd:f5:36:7d:12:66:9f:dc:
fa:0c:7a:1e:fb:f6:38:01:5a:72:a9:93:0f:34:29:
2f:a6:18:d5:1d:6c:5f:08:a3:d6:95:94:61:06:47:
da:08:31:ff:1d:98:43:a4:47:54:99:96:de:0b:1e:
56:6a:94:ae:63:a2:c7:04:84:9f:81:f8:9b:47:86:
d5:25:0b:d5:68:ce:21:d5:e7:78:b3:ed:56:e4:12:
f8:bc:1e:1b:fb:79:4d:7e:03:bb:1a:50:06:ac:f9:
9d:40:e9:86:cc:9a:4a:40:00:2c:15:30:cf:1b:a4:
b1:ff:c6:ad:0e:62:48:af:fe:b9:5f:26:58:da:44:
a1:1c:de:b5:65:f2:92:e9:c6:ac:3c:cc:87:67:5e:
f4:c0:43:d0:88:7a:e8:8c:6f:0c:2f:22:22:35:49:
86:2c:99:0b:a7:af:01:4f:b4:20:ca:ec:af:09:50:
a2:2f:f1:ef:5b:c3:a6:6c:28:52:32:d4:f3:03:d8:
6f:e9:65:ae:d6:17:3e:01:a7:24:a9:e7:57:78:03:
8f:36:93:f0:06:f9:e6:73:e1:ad:05:aa:c3:f6:a4:
8f:da:69:89:86:65:f8:6f:2a:44:ee:fc:97:25:ac:
6d:23:bc:ab:d4:bd:a1:67:ce:3c:bd:68:b6:fb:3e:
e9:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:EA:83:85:A1:4F:D9:96:79:78:AE:7F:06:EC:4D:D5:22:29:A4:4A
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/0330fb-95d1-4302-bea1-f54577f7cc0f/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/0330fb-95d1-4302-bea1-f54577f7cc0f/1/YOqDhaFP2ZZ5eK5_BuxN1SIppEo.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.3.80.0/21
91.137.0.0/18
109.73.16.0/20
171.33.184.0/21
185.38.8.0/22
IPv6:
2a02:2250::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
196714
Signature Algorithm: sha256WithRSAEncryption
15:d0:8a:65:d1:15:f7:48:96:be:b6:73:15:de:64:da:bb:45:
85:f8:b8:09:0a:d8:61:15:5d:b1:30:bd:6b:d3:e9:92:98:bd:
a8:08:0f:0d:46:16:0e:e8:4c:f3:33:97:77:3e:7c:67:0c:70:
53:52:f0:92:3e:72:b2:cb:a3:0d:78:4c:2f:c3:2c:17:51:7c:
69:82:42:22:3c:fd:61:e1:1b:46:b5:e2:29:8f:05:3e:ba:95:
f6:3c:a3:30:b6:44:f2:7f:f3:1d:79:09:b6:ef:64:79:5c:5d:
ec:00:7c:49:e3:1d:a9:98:0b:de:04:e5:36:60:d2:c9:02:f3:
4a:d3:82:5c:b7:03:9a:7b:66:d4:5a:83:01:66:17:ed:1e:e6:
86:4d:74:b7:a9:60:94:5e:5a:c3:4e:da:b7:4d:35:8c:ca:8a:
d8:b1:ba:43:15:28:78:59:e3:97:97:13:b2:ac:5f:ad:da:cd:
68:6d:28:34:a2:4b:aa:de:fe:7b:cf:03:e0:1c:af:2a:55:f0:
cb:74:09:66:64:df:5c:ad:79:e8:5a:5a:0c:30:5b:e9:d8:27:
05:43:a3:12:a0:98:c5:81:a1:ee:90:bc:ef:47:35:db:2c:3b:
ab:41:0f:3b:48:5a:0f:9f:74:cb:48:19:b1:35:58:a1:22:0d:
f0:55:e6:62
-----BEGIN CERTIFICATE-----
MIIFuzCCBKOgAwIBAgISAYzHlK/O3pd7obn/49xEZD0bMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAyMDAzMDU5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2MGVhODM4NWExNGZkOTk2Nzk3OGFlN2YwNmVjNGRkNTIyMjlhNDRhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAufOwRjBj/fU2fRJmn9z6DHoe+/Y4
AVpyqZMPNCkvphjVHWxfCKPWlZRhBkfaCDH/HZhDpEdUmZbeCx5WapSuY6LHBISf
gfibR4bVJQvVaM4h1ed4s+1W5BL4vB4b+3lNfgO7GlAGrPmdQOmGzJpKQAAsFTDP
G6Sx/8atDmJIr/65XyZY2kShHN61ZfKS6casPMyHZ170wEPQiHrojG8MLyIiNUmG
LJkLp68BT7QgyuyvCVCiL/HvW8OmbChSMtTzA9hv6WWu1hc+AackqedXeAOPNpPw
Bvnmc+GtBarD9qSP2mmJhmX4bypE7vyXJaxtI7yr1L2hZ848vWi2+z7pDwIDAQAB
o4ICxzCCAsMwHQYDVR0OBBYEFGDqg4WhT9mWeXiufwbsTdUiKaRKMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzliLzAzMzBm
Yi05NWQxLTQzMDItYmVhMS1mNTQ1NzdmN2NjMGYvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOWIvMDMzMGZi
LTk1ZDEtNDMwMi1iZWExLWY1NDU3N2Y3Y2MwZi8xL1lPcURoYUZQMlpaNWVLNV9C
dXhOMVNJcHBFby5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMEYGCCsGAQUF
BwEHAQH/BDcwNTAkBAIAATAeAwQDHwNQAwQGW4kAAwQEbUkQAwQDqyG4AwQCuSYI
MA0EAgACMAcDBQAqAiJQMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwMAajANBgkq
hkiG9w0BAQsFAAOCAQEAFdCKZdEV90iWvrZzFd5k2rtFhfi4CQrYYRVdsTC9a9Pp
kpi9qAgPDUYWDuhM8zOXdz58ZwxwU1Lwkj5yssujDXhML8MsF1F8aYJCIjz9YeEb
RrXiKY8FPrqV9jyjMLZE8n/zHXkJtu9keVxd7AB8SeMdqZgL3gTlNmDSyQLzStOC
XLcDmntm1FqDAWYX7R7mhk10t6lglF5aw07at001jMqK2LG6QxUoeFnjl5cTsqxf
rdrNaG0oNKJLqt7+e88D4ByvKlXwy3QJZmTfXK156FpaDDBb6dgnBUOjEqCYxYGh
7pC870c12yw7q0EPO0haD590y0gZsTVYoSIN8FXmYg==
-----END CERTIFICATE-----
Generated at Fri May 3 09:11:08 2024 by rpki-client on console-ams.rpki-client.org