Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/_EMwm9pG6O0l7AweipMAbyJpHjw.cer
File: _EMwm9pG6O0l7AweipMAbyJpHjw.cer (raw, json)
Hash identifier: y27tD6QS40w7IQm0HX2SS/wprnGzrk4CLSjOamXI3MU=
Subject key identifier: FC:43:30:9B:DA:46:E8:ED:25:EC:0C:1E:8A:93:00:6F:22:69:1E:3C
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC94AA566F9113AE4EFDFA739CD94EF92
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/f2/008217-6034-4f8f-8e28-602473de6e3d/1/_EMwm9pG6O0l7AweipMAbyJpHjw.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/f2/008217-6034-4f8f-8e28-602473de6e3d/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 08:29:21 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 35724
IP: 194.50.162.0/24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4a:a5:66:f9:11:3a:e4:ef:df:a7:39:cd:94:ef:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 08:29:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fc43309bda46e8ed25ec0c1e8a93006f22691e3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:7d:ac:b9:1c:55:47:16:f6:39:3a:5d:c9:b0:
c8:ca:59:52:1f:f2:f4:dd:c7:96:35:74:74:2b:69:
11:ec:7a:20:8f:0d:77:dc:e4:2b:1a:95:a7:bf:c2:
d8:23:48:1a:c4:ba:15:df:24:36:fe:a2:27:12:b7:
7c:c8:cb:db:4d:ae:aa:93:42:66:30:1a:c8:ef:79:
04:40:07:a5:9c:be:57:4f:5a:53:94:f2:d3:7e:fe:
bd:61:dd:9e:00:ec:87:8c:3a:88:16:ac:18:87:c9:
22:60:8f:26:dd:73:2c:b4:51:be:17:48:da:f2:12:
5a:e0:ea:24:52:0b:da:46:c7:30:d5:78:9c:8d:6d:
e8:55:0e:ac:2d:8c:c0:70:d1:22:99:1b:d6:c5:da:
d9:ee:87:5d:7d:70:59:6a:5d:a6:8b:82:04:2c:ee:
ae:10:0d:be:bd:db:28:c1:b0:7b:4d:90:32:2f:25:
bd:3c:ed:7a:a9:e6:9b:8e:5d:c2:b7:2e:ae:54:08:
31:98:f7:57:6a:72:8b:fd:9e:10:cb:09:22:0e:5a:
a9:07:06:db:ac:11:0f:34:58:b2:55:c6:28:5d:60:
0a:2e:8a:cf:5b:e8:1d:dd:a9:3f:77:b6:b4:b4:5e:
86:fe:e1:44:bc:8a:64:a2:77:42:f1:0f:9f:e9:75:
af:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:43:30:9B:DA:46:E8:ED:25:EC:0C:1E:8A:93:00:6F:22:69:1E:3C
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/008217-6034-4f8f-8e28-602473de6e3d/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/008217-6034-4f8f-8e28-602473de6e3d/1/_EMwm9pG6O0l7AweipMAbyJpHjw.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.50.162.0/24
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
35724
Signature Algorithm: sha256WithRSAEncryption
11:21:d9:6d:7b:80:29:d8:71:87:d2:16:f3:0a:87:04:09:b2:
0c:0e:fb:7f:b9:84:72:61:c6:b5:1c:5b:33:5c:d6:53:50:4d:
92:80:ff:4c:c6:66:11:0c:ee:19:06:0d:4e:b0:1f:c5:79:74:
08:60:71:a2:8a:16:b5:4b:49:bb:da:ab:56:30:5b:2b:43:5a:
95:a3:e2:6a:06:18:dd:81:6a:90:86:58:de:2f:e6:05:1e:4a:
14:33:7b:b5:51:53:fd:6b:ea:07:4e:28:f6:ad:2b:62:4d:90:
c6:c0:ab:b2:08:e5:ac:6c:88:9e:08:a4:68:9f:49:dc:f9:23:
fe:99:d8:6b:ba:02:74:ae:85:d9:62:1e:42:16:7e:f6:39:40:
75:01:34:bd:f0:aa:26:19:0d:2c:19:a5:7d:c7:5e:be:40:2f:
0d:6f:e1:15:10:44:89:1d:12:29:98:30:d5:07:81:14:ed:a7:
0a:c6:5a:4a:18:c0:4a:9e:f3:4b:72:78:48:6d:d6:70:13:c7:
bf:59:cb:30:12:70:b9:94:87:b5:cd:c1:c3:96:41:58:0e:96:
66:cd:d3:fd:5e:79:a7:77:f5:df:85:71:b3:0c:8f:ea:c6:96:
cc:15:c9:59:9b:26:3f:4b:ba:da:8b:14:35:07:4b:c5:31:d7:
0a:97:fa:94
-----BEGIN CERTIFICATE-----
MIIFlDCCBHygAwIBAgISAYzJSqVm+RE65O/fpznNlO+SMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAyMDgyOTIxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmYzQzMzA5YmRhNDZlOGVkMjVlYzBjMWU4YTkzMDA2ZjIyNjkxZTNjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuH2suRxVRxb2OTpdybDIyllSH/L0
3ceWNXR0K2kR7Hogjw133OQrGpWnv8LYI0gaxLoV3yQ2/qInErd8yMvbTa6qk0Jm
MBrI73kEQAelnL5XT1pTlPLTfv69Yd2eAOyHjDqIFqwYh8kiYI8m3XMstFG+F0ja
8hJa4OokUgvaRscw1XicjW3oVQ6sLYzAcNEimRvWxdrZ7oddfXBZal2mi4IELO6u
EA2+vdsowbB7TZAyLyW9PO16qeabjl3Cty6uVAgxmPdXanKL/Z4QywkiDlqpBwbb
rBEPNFiyVcYoXWAKLorPW+gd3ak/d7a0tF6G/uFEvIpkondC8Q+f6XWvsQIDAQAB
o4ICoDCCApwwHQYDVR0OBBYEFPxDMJvaRujtJewMHoqTAG8iaR48MB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2YyLzAwODIx
Ny02MDM0LTRmOGYtOGUyOC02MDI0NzNkZTZlM2QvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjIvMDA4MjE3
LTYwMzQtNGY4Zi04ZTI4LTYwMjQ3M2RlNmUzZC8xL19FTXdtOXBHNk8wbDdBd2Vp
cE1BYnlKcEhqdy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF
BwEHAQH/BBAwDjAMBAIAATAGAwQAwjKiMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUC
AwCLjDANBgkqhkiG9w0BAQsFAAOCAQEAESHZbXuAKdhxh9IW8wqHBAmyDA77f7mE
cmHGtRxbM1zWU1BNkoD/TMZmEQzuGQYNTrAfxXl0CGBxoooWtUtJu9qrVjBbK0Na
laPiagYY3YFqkIZY3i/mBR5KFDN7tVFT/WvqB04o9q0rYk2QxsCrsgjlrGyIngik
aJ9J3Pkj/pnYa7oCdK6F2WIeQhZ+9jlAdQE0vfCqJhkNLBmlfcdevkAvDW/hFRBE
iR0SKZgw1QeBFO2nCsZaShjASp7zS3J4SG3WcBPHv1nLMBJwuZSHtc3Bw5ZBWA6W
Zs3T/V55p3f134VxswyP6saWzBXJWZsmP0u62osUNQdLxTHXCpf6lA==
-----END CERTIFICATE-----
Generated at Fri May 3 11:37:51 2024 by rpki-client on console-ams.rpki-client.org