Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ZK7IAkyqEDqEEmlsfnL3eAPNhpU.cer
File: ZK7IAkyqEDqEEmlsfnL3eAPNhpU.cer (raw, json)
Hash identifier: IT7OVz9uYuMS/C5CuA9c2DNVv32eKPj3w9413z9V1DY=
Subject key identifier: 64:AE:C8:02:4C:AA:10:3A:84:12:69:6C:7E:72:F7:78:03:CD:86:95
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC86F0BE1B430AD8C79D5704A1E40AE19
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/11/0f24dd-ef4a-4dbf-b20d-b039c24b99ca/1/ZK7IAkyqEDqEEmlsfnL3eAPNhpU.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/11/0f24dd-ef4a-4dbf-b20d-b039c24b99ca/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 04:29:29 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 211273
IP: 193.43.40.0/24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 16:12:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:0b:e1:b4:30:ad:8c:79:d5:70:4a:1e:40:ae:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 04:29:29 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=64aec8024caa103a8412696c7e72f77803cd8695
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:39:0f:ad:82:3b:8e:2f:f1:ea:7f:bf:a8:1f:
35:d5:bd:eb:39:31:60:e5:9f:d7:f7:a6:be:85:e9:
be:91:90:31:47:12:35:8c:6d:25:5c:97:73:d0:a2:
c6:79:93:88:ea:7e:f1:33:db:ee:fd:e4:0c:64:b1:
99:c3:11:43:20:18:58:81:80:b3:43:a5:b0:78:78:
ef:6d:30:6c:68:d7:6d:a3:7d:bd:a6:aa:3b:c8:38:
8f:05:b8:64:42:a3:17:2f:6e:1f:bd:4d:db:40:ab:
3f:6a:5b:1e:57:0a:05:85:54:5f:c7:a2:6a:45:e1:
67:6f:12:b7:74:13:5e:a0:55:30:02:f2:05:2e:d9:
45:90:54:43:b2:7b:4b:38:52:86:f1:ef:e2:5b:0f:
09:ae:ed:3e:38:a2:b6:95:0a:9c:c7:ed:35:9b:c5:
43:6a:9a:63:ce:5e:e1:6a:eb:90:e2:32:cb:2a:93:
85:69:2b:73:1f:55:d4:4e:37:49:43:16:7f:2b:03:
6f:e0:6e:ec:72:82:f0:b9:eb:9e:12:96:1f:9f:43:
fe:37:c5:17:93:da:a9:8c:40:6a:e8:28:46:a6:0e:
13:bd:34:dc:8c:40:86:b2:e4:a1:e4:4e:f2:d3:1b:
fc:b8:e0:e9:04:cf:2f:09:6c:74:7f:cb:0d:a9:c6:
6f:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:AE:C8:02:4C:AA:10:3A:84:12:69:6C:7E:72:F7:78:03:CD:86:95
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/0f24dd-ef4a-4dbf-b20d-b039c24b99ca/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/0f24dd-ef4a-4dbf-b20d-b039c24b99ca/1/ZK7IAkyqEDqEEmlsfnL3eAPNhpU.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.43.40.0/24
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
211273
Signature Algorithm: sha256WithRSAEncryption
12:1b:e3:e2:c0:ad:1d:ea:0a:e5:ce:c8:ec:03:df:e7:11:04:
2a:53:67:98:b3:fa:42:83:6b:99:be:5a:0e:f0:6b:4e:63:24:
d1:e9:49:38:89:a2:77:74:00:35:e2:ab:c1:71:46:1d:1c:73:
a3:78:aa:4c:dc:1d:a5:54:b6:b8:c9:e9:2b:c6:b6:81:75:b8:
0b:02:9b:eb:3d:a7:ca:8b:a1:47:fd:dc:35:be:78:c1:5d:b3:
8f:42:3e:41:9f:a9:66:2c:04:33:8d:43:f1:b3:26:c3:15:7c:
60:93:36:b0:b8:70:d4:1f:90:f7:0f:11:45:f7:17:bd:cb:11:
45:57:73:ce:6f:be:a4:d3:89:e9:25:f4:38:21:a4:2b:4a:05:
f8:20:6e:f1:5f:37:fc:f2:32:d3:a1:1e:7b:2f:7a:53:1d:ed:
fb:39:90:8d:2a:3b:69:94:e4:c8:5e:88:f1:0b:db:04:c7:75:
fa:81:eb:47:82:41:ac:c3:64:8e:40:67:df:23:1f:8c:ed:2d:
4a:a3:64:fd:a2:f6:84:86:01:02:65:a0:41:a7:54:52:18:78:
74:03:f1:25:b8:7e:4c:98:10:af:4a:8b:8e:c7:14:23:08:90:
78:39:a3:66:2b:f6:2b:d9:fd:b7:b4:9c:db:7a:21:58:ff:b5:
a4:9f:ae:ce
-----BEGIN CERTIFICATE-----
MIIFlDCCBHygAwIBAgISAYzIbwvhtDCtjHnVcEoeQK4ZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAyMDQyOTI5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2NGFlYzgwMjRjYWExMDNhODQxMjY5NmM3ZTcyZjc3ODAzY2Q4Njk1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxTkPrYI7ji/x6n+/qB811b3rOTFg
5Z/X96a+hem+kZAxRxI1jG0lXJdz0KLGeZOI6n7xM9vu/eQMZLGZwxFDIBhYgYCz
Q6WweHjvbTBsaNdto329pqo7yDiPBbhkQqMXL24fvU3bQKs/alseVwoFhVRfx6Jq
ReFnbxK3dBNeoFUwAvIFLtlFkFRDsntLOFKG8e/iWw8Jru0+OKK2lQqcx+01m8VD
appjzl7hauuQ4jLLKpOFaStzH1XUTjdJQxZ/KwNv4G7scoLwueueEpYfn0P+N8UX
k9qpjEBq6ChGpg4TvTTcjECGsuSh5E7y0xv8uODpBM8vCWx0f8sNqcZvPwIDAQAB
o4ICoDCCApwwHQYDVR0OBBYEFGSuyAJMqhA6hBJpbH5y93gDzYaVMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzExLzBmMjRk
ZC1lZjRhLTRkYmYtYjIwZC1iMDM5YzI0Yjk5Y2EvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTEvMGYyNGRk
LWVmNGEtNGRiZi1iMjBkLWIwMzljMjRiOTljYS8xL1pLN0lBa3lxRURxRUVtbHNm
bkwzZUFQTmhwVS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF
BwEHAQH/BBAwDjAMBAIAATAGAwQAwSsoMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUC
AwM5STANBgkqhkiG9w0BAQsFAAOCAQEAEhvj4sCtHeoK5c7I7APf5xEEKlNnmLP6
QoNrmb5aDvBrTmMk0elJOImid3QANeKrwXFGHRxzo3iqTNwdpVS2uMnpK8a2gXW4
CwKb6z2nyouhR/3cNb54wV2zj0I+QZ+pZiwEM41D8bMmwxV8YJM2sLhw1B+Q9w8R
RfcXvcsRRVdzzm++pNOJ6SX0OCGkK0oF+CBu8V83/PIy06Eeey96Ux3t+zmQjSo7
aZTkyF6I8QvbBMd1+oHrR4JBrMNkjkBn3yMfjO0tSqNk/aL2hIYBAmWgQadUUhh4
dAPxJbh+TJgQr0qLjscUIwiQeDmjZiv2K9n9t7Sc23ohWP+1pJ+uzg==
-----END CERTIFICATE-----
Generated at Tue Nov 26 00:50:10 2024 by rpki-client on console-ams.rpki-client.org