Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ZAsfh3LG70hOLNLWYmPy75j6OWg.cer
File: ZAsfh3LG70hOLNLWYmPy75j6OWg.cer (raw, json)
Hash identifier: WIOabS1Vom70zsDAx/fzqz/si1mijQB4ju3Ql05u5n0=
Subject key identifier: 64:0B:1F:87:72:C6:EF:48:4E:2C:D2:D6:62:63:F2:EF:98:FA:39:68
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC726B92C3DE259F717899985664ACB30
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/d5/aad626-dace-44d8-818d-387afa0a534f/1/ZAsfh3LG70hOLNLWYmPy75j6OWg.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/d5/aad626-dace-44d8-818d-387afa0a534f/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 22:30:52 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 197876
IP: 77.73.80.0/21
IP: 2a03:ab80::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:26:b9:2c:3d:e2:59:f7:17:89:99:85:66:4a:cb:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 22:30:52 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=640b1f8772c6ef484e2cd2d66263f2ef98fa3968
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:55:16:c3:d7:25:de:3d:3e:98:14:ad:ca:ad:
cc:19:2b:3d:f4:4a:80:d6:4d:0f:ee:92:8b:35:0c:
2d:99:e7:48:df:77:b2:80:af:6c:43:7e:98:90:58:
40:8e:96:62:7c:34:8e:a3:40:df:a0:12:00:f9:92:
2f:ef:0c:8b:d2:11:35:af:54:a4:3c:14:5c:d1:be:
d7:6b:41:42:b4:05:2a:c7:60:56:af:1e:3f:c8:ee:
35:4a:d1:be:82:38:6d:d1:d7:7b:96:f7:43:41:41:
45:88:c7:61:fe:56:6c:dd:9c:6c:7d:90:5e:4c:6e:
eb:e1:2d:14:19:ad:9c:e0:49:63:fb:24:a5:54:e4:
30:c8:14:f0:cc:42:d5:56:74:08:aa:c4:2a:b5:06:
69:a7:fd:bd:7e:c1:f7:2f:7e:7e:ce:a5:00:53:77:
9a:7d:e1:ae:52:dd:ad:68:a2:6c:78:4f:f3:4e:b0:
c0:99:c3:98:1c:53:94:06:bb:be:59:9a:1e:6b:93:
9e:cb:56:0d:cc:9e:23:8f:52:b9:4e:03:6d:75:84:
6e:2b:55:82:19:21:0d:26:17:10:79:39:76:82:5a:
fb:0c:23:24:3f:d2:69:e3:3c:14:75:53:9a:4f:b2:
df:ba:f0:b5:58:32:74:f0:e4:0a:d7:5f:b5:84:5e:
c6:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:0B:1F:87:72:C6:EF:48:4E:2C:D2:D6:62:63:F2:EF:98:FA:39:68
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/aad626-dace-44d8-818d-387afa0a534f/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/aad626-dace-44d8-818d-387afa0a534f/1/ZAsfh3LG70hOLNLWYmPy75j6OWg.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.73.80.0/21
IPv6:
2a03:ab80::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
197876
Signature Algorithm: sha256WithRSAEncryption
3b:a9:6c:16:c2:5e:60:d3:ad:72:77:cc:6d:50:8a:d8:93:98:
97:dc:ff:54:09:aa:ba:2e:3d:74:1e:a1:32:d5:3f:9b:55:22:
5c:3b:fc:c4:ef:ff:35:21:f3:cb:04:72:82:3a:95:48:8c:ac:
11:45:92:af:59:14:ee:56:25:c6:31:b4:6f:68:29:3a:d5:14:
e4:2b:92:5e:75:99:37:64:4a:a0:1f:c6:ab:24:f4:ca:b6:7d:
5a:e9:48:77:84:b5:1d:e1:bb:ab:55:b7:ba:36:ec:6f:bf:22:
f0:86:b2:8a:75:c2:de:34:fb:ea:88:49:07:f6:44:9f:71:4b:
f9:8c:cf:05:2a:ed:b3:64:ff:12:fa:1f:f2:6d:dd:52:54:89:
0a:a5:8f:f8:72:4c:6c:eb:17:5c:bc:56:af:a6:e7:8b:10:bd:
e5:7b:78:c4:71:6e:3f:fe:dc:7e:61:eb:94:d7:01:a1:7f:ac:
5d:fe:05:82:18:da:9c:30:33:d0:0a:41:a1:54:2f:ac:20:11:
19:02:4b:ef:8f:a4:2d:2b:6f:74:35:1d:d0:ca:8d:c2:bf:dd:
55:0f:5f:53:83:e9:37:72:d1:41:1a:9d:5c:7f:60:c1:a1:cd:
df:17:c3:cc:14:66:b2:9c:31:c0:a2:24:e8:41:50:d9:00:42:
d0:14:25:58
-----BEGIN CERTIFICATE-----
MIIFozCCBIugAwIBAgISAYzHJrksPeJZ9xeJmYVmSsswMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAxMjIzMDUyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2NDBiMWY4NzcyYzZlZjQ4NGUyY2QyZDY2MjYzZjJlZjk4ZmEzOTY4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvVUWw9cl3j0+mBStyq3MGSs99EqA
1k0P7pKLNQwtmedI33eygK9sQ36YkFhAjpZifDSOo0DfoBIA+ZIv7wyL0hE1r1Sk
PBRc0b7Xa0FCtAUqx2BWrx4/yO41StG+gjht0dd7lvdDQUFFiMdh/lZs3ZxsfZBe
TG7r4S0UGa2c4Elj+ySlVOQwyBTwzELVVnQIqsQqtQZpp/29fsH3L35+zqUAU3ea
feGuUt2taKJseE/zTrDAmcOYHFOUBru+WZoea5Oey1YNzJ4jj1K5TgNtdYRuK1WC
GSENJhcQeTl2glr7DCMkP9Jp4zwUdVOaT7LfuvC1WDJ08OQK11+1hF7GFwIDAQAB
o4ICrzCCAqswHQYDVR0OBBYEFGQLH4dyxu9ITizS1mJj8u+Y+jloMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2Q1L2FhZDYy
Ni1kYWNlLTQ0ZDgtODE4ZC0zODdhZmEwYTUzNGYvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDUvYWFkNjI2
LWRhY2UtNDRkOC04MThkLTM4N2FmYTBhNTM0Zi8xL1pBc2ZoM0xHNzBoT0xOTFdZ
bVB5NzVqNk9XZy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF
BwEHAQH/BB8wHTAMBAIAATAGAwQDTUlQMA0EAgACMAcDBQAqA6uAMBoGCCsGAQUF
BwEIAQH/BAswCaAHMAUCAwME9DANBgkqhkiG9w0BAQsFAAOCAQEAO6lsFsJeYNOt
cnfMbVCK2JOYl9z/VAmqui49dB6hMtU/m1UiXDv8xO//NSHzywRygjqVSIysEUWS
r1kU7lYlxjG0b2gpOtUU5CuSXnWZN2RKoB/GqyT0yrZ9WulId4S1HeG7q1W3ujbs
b78i8IayinXC3jT76ohJB/ZEn3FL+YzPBSrts2T/Evof8m3dUlSJCqWP+HJMbOsX
XLxWr6bnixC95Xt4xHFuP/7cfmHrlNcBoX+sXf4FghjanDAz0ApBoVQvrCARGQJL
74+kLStvdDUd0MqNwr/dVQ9fU4PpN3LRQRqdXH9gwaHN3xfDzBRmspwxwKIk6EFQ
2QBC0BQlWA==
-----END CERTIFICATE-----
Generated at Fri May 3 01:49:19 2024 by rpki-client on console-ams.rpki-client.org