Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/_X0csRSU6ziY8Q09Y1vnXxay3FE.cer
File: _X0csRSU6ziY8Q09Y1vnXxay3FE.cer (raw, json)
Hash identifier: ThOJ/xTqcR4LLZYPKYeS9KoIdcBi17vyse1fm/KM8Ao=
Subject key identifier: FD:7D:1C:B1:14:94:EB:38:98:F1:0D:3D:63:5B:E7:5F:16:B2:DC:51
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CCA2B8143E2E253B548017F9843465A5A
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/8c/a6c152-37d3-4f86-8f6e-7659bf86ac4c/1/_X0csRSU6ziY8Q09Y1vnXxay3FE.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/8c/a6c152-37d3-4f86-8f6e-7659bf86ac4c/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 12:34:57 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 47708
IP: 2001:678:330::/48
IP: 2001:67c:d8::/48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:2b:81:43:e2:e2:53:b5:48:01:7f:98:43:46:5a:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 12:34:57 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fd7d1cb11494eb3898f10d3d635be75f16b2dc51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:f9:c4:35:0b:6a:e3:fe:e2:a0:c6:cc:93:1e:
5d:81:b7:90:27:8b:17:bc:94:8c:7b:4a:63:e3:70:
aa:36:b3:64:32:58:30:3f:fd:8b:91:87:aa:ed:0c:
9d:a4:94:93:56:c7:38:ff:7b:eb:a1:d7:ce:c6:b7:
63:8c:90:42:29:e5:56:3a:f8:97:b1:63:c4:8b:99:
ed:57:b8:86:62:ae:49:bd:4c:be:d0:6b:15:02:6e:
9a:87:29:1d:14:52:2a:c5:fc:63:45:fd:6a:f9:0e:
52:b4:af:1d:20:0a:d0:71:e3:7d:20:fe:b1:15:da:
a6:fa:5e:93:25:34:13:01:5a:ad:d9:65:03:6a:f1:
df:32:cc:6d:62:a1:dd:c8:17:fb:88:84:8d:b7:02:
fb:ba:dc:9c:d4:38:ac:b1:f0:3d:8c:ce:b4:28:8d:
cf:b7:4a:fa:3f:03:05:a9:88:df:c8:bd:3c:e0:76:
ff:75:d0:39:97:79:ff:49:b7:69:78:e5:30:b0:6c:
23:61:53:d1:b1:6c:e5:b9:69:99:4f:87:e8:70:4a:
a3:99:4a:9c:97:c0:77:cf:2a:74:60:b6:40:00:65:
2c:bf:61:8d:3d:4a:e9:26:d7:08:ec:c6:51:0e:c0:
8d:15:c1:a3:38:fe:02:34:76:9b:db:1c:b3:e9:39:
a0:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:7D:1C:B1:14:94:EB:38:98:F1:0D:3D:63:5B:E7:5F:16:B2:DC:51
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/a6c152-37d3-4f86-8f6e-7659bf86ac4c/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/a6c152-37d3-4f86-8f6e-7659bf86ac4c/1/_X0csRSU6ziY8Q09Y1vnXxay3FE.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:330::/48
2001:67c:d8::/48
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
47708
Signature Algorithm: sha256WithRSAEncryption
8e:af:36:ee:98:f3:9f:f5:4f:95:b9:7c:44:09:f5:f9:02:9e:
98:7e:1e:f6:22:1d:25:80:45:f8:98:c5:a8:4c:e1:ca:4d:5f:
f3:58:e1:0f:5a:1c:e3:ef:39:fd:a4:ab:86:fc:1e:af:bc:b8:
17:c4:8e:bb:ed:a7:16:f2:0c:ab:d8:64:25:e9:37:e1:ab:e3:
0f:06:ca:b1:74:60:b3:5a:61:24:2d:a6:09:a0:b9:64:63:ca:
69:b1:b2:dc:c0:cf:6f:5e:f0:8c:92:7b:8c:fc:eb:27:fe:77:
76:be:fd:c7:ea:38:88:05:e6:94:8c:87:c3:4d:c5:b8:e1:e4:
c9:db:82:fe:ac:a5:b9:2a:17:e5:9d:01:b5:c8:e8:c6:1a:d2:
92:43:46:2c:93:95:24:20:cb:75:28:28:ef:35:84:bc:8f:78:
60:f1:d5:e1:a1:e0:da:22:b1:f0:35:0f:a2:32:12:51:df:23:
c2:e4:e6:0d:53:e1:7a:93:70:47:aa:c8:80:35:ef:96:f8:dc:
d0:d0:dd:e7:cd:f8:00:ef:cf:e0:1e:f7:09:66:3a:74:c8:96:
fa:f4:28:64:6e:a8:72:84:98:42:9a:1d:1c:32:88:df:67:8d:
47:9c:7b:f7:53:0d:21:fd:ce:39:16:47:59:c8:cc:63:db:32:
8e:fc:0c:84
-----BEGIN CERTIFICATE-----
MIIFoDCCBIigAwIBAgISAYzKK4FD4uJTtUgBf5hDRlpaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAyMTIzNDU3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmZDdkMWNiMTE0OTRlYjM4OThmMTBkM2Q2MzViZTc1ZjE2YjJkYzUxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo/nENQtq4/7ioMbMkx5dgbeQJ4sX
vJSMe0pj43CqNrNkMlgwP/2LkYeq7QydpJSTVsc4/3vrodfOxrdjjJBCKeVWOviX
sWPEi5ntV7iGYq5JvUy+0GsVAm6ahykdFFIqxfxjRf1q+Q5StK8dIArQceN9IP6x
Fdqm+l6TJTQTAVqt2WUDavHfMsxtYqHdyBf7iISNtwL7utyc1DissfA9jM60KI3P
t0r6PwMFqYjfyL084Hb/ddA5l3n/SbdpeOUwsGwjYVPRsWzluWmZT4focEqjmUqc
l8B3zyp0YLZAAGUsv2GNPUrpJtcI7MZRDsCNFcGjOP4CNHab2xyz6TmgaQIDAQAB
o4ICrDCCAqgwHQYDVR0OBBYEFP19HLEUlOs4mPENPWNb518WstxRMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzhjL2E2YzE1
Mi0zN2QzLTRmODYtOGY2ZS03NjU5YmY4NmFjNGMvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOGMvYTZjMTUy
LTM3ZDMtNGY4Ni04ZjZlLTc2NTliZjg2YWM0Yy8xL19YMGNzUlNVNnppWThRMDlZ
MXZuWHhheTNGRS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCsGCCsGAQUF
BwEHAQH/BBwwGjAYBAIAAjASAwcAIAEGeAMwAwcAIAEGfADYMBoGCCsGAQUFBwEI
AQH/BAswCaAHMAUCAwC6XDANBgkqhkiG9w0BAQsFAAOCAQEAjq827pjzn/VPlbl8
RAn1+QKemH4e9iIdJYBF+JjFqEzhyk1f81jhD1oc4+85/aSrhvwer7y4F8SOu+2n
FvIMq9hkJek34avjDwbKsXRgs1phJC2mCaC5ZGPKabGy3MDPb17wjJJ7jPzrJ/53
dr79x+o4iAXmlIyHw03FuOHkyduC/qyluSoX5Z0BtcjoxhrSkkNGLJOVJCDLdSgo
7zWEvI94YPHV4aHg2iKx8DUPojISUd8jwuTmDVPhepNwR6rIgDXvlvjc0NDd5834
AO/P4B73CWY6dMiW+vQoZG6ocoSYQpodHDKI32eNR5x791MNIf3OORZHWcjMY9sy
jvwMhA==
-----END CERTIFICATE-----
Generated at Fri May 3 10:23:21 2024 by rpki-client on console-fra.rpki-client.org