Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/YWeZlkXhW2Umig2TuxTE9RckRRs.cer
File: YWeZlkXhW2Umig2TuxTE9RckRRs.cer (raw, json)
Hash identifier: MUkZ4GgAp/nlGZ7/QR5/0cxfdVw0kV430QetmvBzTls=
Subject key identifier: 61:67:99:96:45:E1:5B:65:26:8A:0D:93:BB:14:C4:F5:17:24:45:1B
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CCA99B51E4BA11F2DFCC7AFAB88D44B0E
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/5b/d31a25-2507-471d-adc7-8807f95ae75d/1/YWeZlkXhW2Umig2TuxTE9RckRRs.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/5b/d31a25-2507-471d-adc7-8807f95ae75d/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 14:35:20 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 6750
IP: 194.145.140.0/23
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:99:b5:1e:4b:a1:1f:2d:fc:c7:af:ab:88:d4:4b:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 14:35:20 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6167999645e15b65268a0d93bb14c4f51724451b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:a0:df:70:70:83:b2:4d:71:53:f7:f0:ff:24:
b7:4e:84:56:e9:49:fe:09:d7:68:92:22:91:06:f9:
8d:17:2e:75:55:d6:12:9a:6e:94:30:42:9a:10:00:
e0:83:9a:6a:6e:21:48:d8:ba:89:aa:70:8e:b6:0a:
86:16:5d:51:e1:0b:7e:72:2d:2b:4d:46:13:8a:e3:
65:67:63:29:02:c7:19:29:2a:92:f3:c5:5b:bb:c5:
68:14:c0:07:ec:66:bc:2b:6c:a3:83:6a:c3:3f:0c:
16:5a:11:b5:12:9a:df:28:9b:53:19:7b:1e:0c:ed:
b8:44:25:de:b1:a1:cd:13:44:e3:a5:1b:9d:96:4a:
db:e9:72:96:9b:08:99:eb:88:e8:57:ce:f1:b2:82:
f6:03:86:79:ba:5b:0a:ff:cc:8c:27:98:06:94:d2:
04:33:85:51:9c:7c:ec:17:bc:c3:10:00:87:8b:56:
5c:db:44:68:c1:0e:2b:67:41:c6:0c:84:c7:d7:e9:
5b:a7:58:81:88:ec:25:70:48:58:f1:cf:e0:1e:4c:
4b:b2:f3:38:f6:cc:cc:dc:7b:59:dc:81:ea:8b:ea:
d2:45:8b:05:8b:67:6f:eb:ce:16:a1:c8:f2:24:df:
c2:a4:9b:12:07:12:a5:05:d1:ab:41:65:7b:49:85:
2d:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:67:99:96:45:E1:5B:65:26:8A:0D:93:BB:14:C4:F5:17:24:45:1B
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/d31a25-2507-471d-adc7-8807f95ae75d/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/d31a25-2507-471d-adc7-8807f95ae75d/1/YWeZlkXhW2Umig2TuxTE9RckRRs.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.145.140.0/23
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
6750
Signature Algorithm: sha256WithRSAEncryption
18:47:b3:ff:3c:e0:7f:2c:b4:0a:75:b2:8a:92:16:62:aa:b4:
5e:32:95:a9:1c:f1:d9:d8:38:1f:7b:65:96:f3:7f:03:39:de:
11:aa:dc:af:9d:ba:e5:f3:06:c2:27:13:80:63:92:a4:4b:77:
4e:d1:25:15:e9:cf:73:f2:35:c3:e1:4e:1e:bb:65:17:48:d8:
6b:f3:73:b3:1c:23:cb:f0:48:32:7f:16:de:34:f2:dd:36:03:
b5:3a:96:4e:f1:1d:b4:f6:04:84:62:f9:04:c5:e4:01:c1:23:
bc:b2:6d:31:09:b2:08:a5:d8:4a:ce:a8:30:16:91:85:79:a0:
e6:b9:de:5e:b9:c6:fa:af:e4:c7:ef:30:22:7f:11:d3:19:b5:
f5:b4:e6:37:cd:59:d5:87:b5:cf:66:11:ec:66:ee:69:5b:bb:
a6:bd:17:62:a5:73:68:16:25:a4:f9:46:99:d1:ed:b5:11:35:
9a:3e:c8:7b:7a:62:28:dc:a0:fe:b3:ec:31:29:8c:1e:83:ba:
c2:7e:8d:a6:e0:ec:5f:f0:9b:ce:ba:cb:c8:aa:fc:e3:37:da:
33:39:de:90:d8:f8:5f:5d:65:61:a0:4d:cd:f6:a4:80:db:c6:
ab:67:a5:ec:74:ed:2c:8d:be:93:4f:bd:65:0c:16:c5:eb:0a:
4b:19:96:7e
-----BEGIN CERTIFICATE-----
MIIFkzCCBHugAwIBAgISAYzKmbUeS6EfLfzHr6uI1EsOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAyMTQzNTIwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2MTY3OTk5NjQ1ZTE1YjY1MjY4YTBkOTNiYjE0YzRmNTE3MjQ0NTFiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArqDfcHCDsk1xU/fw/yS3ToRW6Un+
CddokiKRBvmNFy51VdYSmm6UMEKaEADgg5pqbiFI2LqJqnCOtgqGFl1R4Qt+ci0r
TUYTiuNlZ2MpAscZKSqS88Vbu8VoFMAH7Ga8K2yjg2rDPwwWWhG1EprfKJtTGXse
DO24RCXesaHNE0TjpRudlkrb6XKWmwiZ64joV87xsoL2A4Z5ulsK/8yMJ5gGlNIE
M4VRnHzsF7zDEACHi1Zc20RowQ4rZ0HGDITH1+lbp1iBiOwlcEhY8c/gHkxLsvM4
9szM3HtZ3IHqi+rSRYsFi2dv684WocjyJN/CpJsSBxKlBdGrQWV7SYUtLQIDAQAB
o4ICnzCCApswHQYDVR0OBBYEFGFnmZZF4VtlJooNk7sUxPUXJEUbMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzViL2QzMWEy
NS0yNTA3LTQ3MWQtYWRjNy04ODA3Zjk1YWU3NWQvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNWIvZDMxYTI1
LTI1MDctNDcxZC1hZGM3LTg4MDdmOTVhZTc1ZC8xL1lXZVpsa1hoVzJVbWlnMlR1
eFRFOVJja1JScy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF
BwEHAQH/BBAwDjAMBAIAATAGAwQBwpGMMBkGCCsGAQUFBwEIAQH/BAowCKAGMAQC
AhpeMA0GCSqGSIb3DQEBCwUAA4IBAQAYR7P/POB/LLQKdbKKkhZiqrReMpWpHPHZ
2Dgfe2WW838DOd4Rqtyvnbrl8wbCJxOAY5KkS3dO0SUV6c9z8jXD4U4eu2UXSNhr
83OzHCPL8EgyfxbeNPLdNgO1OpZO8R209gSEYvkExeQBwSO8sm0xCbIIpdhKzqgw
FpGFeaDmud5eucb6r+TH7zAifxHTGbX1tOY3zVnVh7XPZhHsZu5pW7umvRdipXNo
FiWk+UaZ0e21ETWaPsh7emIo3KD+s+wxKYweg7rCfo2m4Oxf8JvOusvIqvzjN9oz
Od6Q2PhfXWVhoE3N9qSA28arZ6XsdO0sjb6TT71lDBbF6wpLGZZ+
-----END CERTIFICATE-----
Generated at Fri May 3 01:48:56 2024 by rpki-client on console-ams.rpki-client.org