Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3YD1VVBw1n46HRHfL6K8h9peHw.cer
File: a3YD1VVBw1n46HRHfL6K8h9peHw.cer (raw, json)
Hash identifier: OTTSDp2oA/GbTg2nTJzmpRPodwvFtsmlqDU/AVaJETY=
Subject key identifier: 6B:76:03:D5:55:41:C3:59:F8:E8:74:47:7C:BE:8A:F2:1F:69:78:7C
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019290B75D144B2185A028F4AA03757E360D
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/2c/3c589f-2bd2-49bd-bd81-57e6320b118f/1/a3YD1VVBw1n46HRHfL6K8h9peHw.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/2c/3c589f-2bd2-49bd-bd81-57e6320b118f/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 15 Oct 2024 15:06:28 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 206830
IP: 185.172.176.0/22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:90:b7:5d:14:4b:21:85:a0:28:f4:aa:03:75:7e:36:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Oct 15 15:06:28 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6b7603d55541c359f8e874477cbe8af21f69787c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:d1:1a:5b:f4:f5:ef:f2:55:72:4c:67:cc:fb:
ff:d5:b8:6b:5c:27:8b:39:b0:59:c2:ef:91:b0:61:
79:39:7b:ad:f1:e1:e7:02:2c:61:01:f9:57:2b:e4:
69:58:b5:b4:94:66:7f:e1:12:67:0f:a1:d2:47:d0:
bd:ad:7c:fc:7f:38:98:c7:f7:01:1c:93:07:8e:e1:
9a:05:b9:79:64:b6:42:ea:c1:6d:25:20:f1:27:b4:
6c:fe:83:95:5a:23:c9:3f:d9:78:a1:96:16:0a:f0:
ac:ad:aa:ee:4e:f5:fe:6d:5f:5a:f1:17:62:eb:09:
86:47:47:3c:8d:6f:fb:1b:9a:bb:ea:b8:7d:cb:e1:
85:be:7c:76:d3:20:8e:b4:8a:f7:52:5e:8f:04:5a:
16:b9:3a:5d:27:33:42:31:90:51:d0:f6:1b:44:a9:
aa:e5:8a:06:99:d8:66:23:e0:03:46:c8:39:5c:97:
bf:5d:ea:67:91:05:9b:0f:72:09:f3:84:cc:54:95:
29:fa:6d:b0:bb:e7:7d:7c:7e:cc:96:e9:a2:e9:f4:
5a:87:a1:1e:3e:a7:85:cc:77:bc:05:99:db:d8:6d:
fd:d6:7b:f6:85:05:4f:0f:68:42:59:ef:27:7f:4c:
1b:45:58:ad:37:db:77:77:a5:c7:fa:e7:f2:b7:ba:
56:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:76:03:D5:55:41:C3:59:F8:E8:74:47:7C:BE:8A:F2:1F:69:78:7C
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/3c589f-2bd2-49bd-bd81-57e6320b118f/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/3c589f-2bd2-49bd-bd81-57e6320b118f/1/a3YD1VVBw1n46HRHfL6K8h9peHw.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.172.176.0/22
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
206830
Signature Algorithm: sha256WithRSAEncryption
30:fa:18:5f:ac:80:f9:7b:af:3b:a6:bb:68:7a:41:0b:6e:be:
08:75:b2:82:70:70:49:6b:f9:6c:48:7b:3f:e1:97:6f:98:79:
6b:82:55:fe:a4:38:c7:64:1b:79:bb:41:a3:51:72:e4:bd:a3:
ee:53:36:3b:07:16:76:7f:b2:b4:24:05:68:b2:f3:e0:bb:54:
88:98:c2:65:d1:cc:da:3b:f0:6d:d1:52:52:08:93:ac:70:b4:
0c:2c:72:62:73:14:56:ca:e3:b2:04:59:49:47:b2:c8:be:24:
1c:f5:88:6c:2c:e1:73:19:2b:d1:af:8c:b1:00:8e:b3:7a:69:
50:dd:70:9b:98:02:a7:47:49:d0:1c:dd:fb:84:77:f2:1a:f8:
18:01:74:f9:42:ee:b3:9e:1e:da:e3:85:cc:7a:30:0d:5e:94:
14:92:fa:89:5e:3c:07:87:fe:0f:cb:4f:cd:7a:c8:01:62:4f:
69:56:a4:87:b0:0a:d8:c3:eb:56:03:13:66:e4:fd:2c:ce:51:
51:0b:95:69:ab:8e:f1:4d:71:96:b1:27:0a:9f:65:a1:43:01:
a5:be:ca:34:4a:f7:a8:a3:d4:22:4d:2d:97:d6:1a:84:33:4d:
53:1e:e1:2f:68:fe:9d:b9:7d:dd:a1:6a:d4:86:0a:49:ba:0b:
46:34:5e:b1
-----BEGIN CERTIFICATE-----
MIIFlDCCBHygAwIBAgISAZKQt10USyGFoCj0qgN1fjYNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQxMDE1MTUwNjI4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2Yjc2MDNkNTU1NDFjMzU5ZjhlODc0NDc3Y2JlOGFmMjFmNjk3ODdjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy9EaW/T17/JVckxnzPv/1bhrXCeL
ObBZwu+RsGF5OXut8eHnAixhAflXK+RpWLW0lGZ/4RJnD6HSR9C9rXz8fziYx/cB
HJMHjuGaBbl5ZLZC6sFtJSDxJ7Rs/oOVWiPJP9l4oZYWCvCsraruTvX+bV9a8Rdi
6wmGR0c8jW/7G5q76rh9y+GFvnx20yCOtIr3Ul6PBFoWuTpdJzNCMZBR0PYbRKmq
5YoGmdhmI+ADRsg5XJe/XepnkQWbD3IJ84TMVJUp+m2wu+d9fH7Mlumi6fRah6Ee
PqeFzHe8BZnb2G391nv2hQVPD2hCWe8nf0wbRVitN9t3d6XH+ufyt7pWBwIDAQAB
o4ICoDCCApwwHQYDVR0OBBYEFGt2A9VVQcNZ+Oh0R3y+ivIfaXh8MB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzJjLzNjNTg5
Zi0yYmQyLTQ5YmQtYmQ4MS01N2U2MzIwYjExOGYvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMmMvM2M1ODlm
LTJiZDItNDliZC1iZDgxLTU3ZTYzMjBiMTE4Zi8xL2EzWUQxVlZCdzFuNDZIUkhm
TDZLOGg5cGVIdy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF
BwEHAQH/BBAwDjAMBAIAATAGAwQCuaywMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUC
AwMn7jANBgkqhkiG9w0BAQsFAAOCAQEAMPoYX6yA+XuvO6a7aHpBC26+CHWygnBw
SWv5bEh7P+GXb5h5a4JV/qQ4x2QbebtBo1Fy5L2j7lM2OwcWdn+ytCQFaLLz4LtU
iJjCZdHM2jvwbdFSUgiTrHC0DCxyYnMUVsrjsgRZSUeyyL4kHPWIbCzhcxkr0a+M
sQCOs3ppUN1wm5gCp0dJ0Bzd+4R38hr4GAF0+ULus54e2uOFzHowDV6UFJL6iV48
B4f+D8tPzXrIAWJPaVakh7AK2MPrVgMTZuT9LM5RUQuVaauO8U1xlrEnCp9loUMB
pb7KNEr3qKPUIk0tl9YahDNNUx7hL2j+nbl93aFq1IYKSboLRjResQ==
-----END CERTIFICATE-----
Generated at Sat Nov 23 10:52:56 2024 by rpki-client on console-ams.rpki-client.org