Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aXIKkQPhrgDMeIxd7P4JSMhLzRs.cer
File: aXIKkQPhrgDMeIxd7P4JSMhLzRs.cer (raw, json)
Hash identifier: jIsne6m1P4QbN0TBa4Pla50x67PJanlIeb2ngpO23IU=
Subject key identifier: 69:72:0A:91:03:E1:AE:00:CC:78:8C:5D:EC:FE:09:48:C8:4B:CD:1B
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC86F5BDD8BB5E4845000DA86A4C3F368
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/6d/d516a3-8974-45db-8226-8174ddae31d3/1/aXIKkQPhrgDMeIxd7P4JSMhLzRs.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/6d/d516a3-8974-45db-8226-8174ddae31d3/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 04:29:50 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 203908
IP: 185.150.240.0/22
IP: 2a03:ad60::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 11:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:5b:dd:8b:b5:e4:84:50:00:da:86:a4:c3:f3:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 04:29:50 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=69720a9103e1ae00cc788c5decfe0948c84bcd1b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:53:a9:b1:e2:20:a0:8a:f0:8d:98:a7:c6:c2:
7e:3c:b2:dc:69:4c:71:ff:76:3a:0d:75:28:e9:2e:
79:1e:a1:88:45:9a:8f:c6:4c:d4:b1:01:ca:8b:17:
04:79:77:c8:95:59:62:08:ee:9c:55:6d:2c:c1:70:
f2:37:76:fb:06:ed:fd:08:0d:6f:d2:4f:b9:bc:94:
95:0f:c5:e2:66:1b:9a:e4:6c:4c:eb:01:0f:15:aa:
11:d4:97:4f:39:01:e9:86:d5:6b:13:a1:34:a3:e5:
70:87:20:26:7d:4d:fc:85:d4:3d:a5:bb:fb:58:d4:
37:9b:ed:e0:9f:3f:59:81:bc:1a:32:f4:ba:2a:5e:
90:42:6e:5d:1c:45:72:c2:1e:5b:87:cd:38:2a:63:
06:d0:31:d6:bd:7f:eb:c3:49:f2:d5:3d:63:7f:d3:
bf:c7:6a:e2:cb:ae:e3:e6:70:cd:74:11:d9:10:55:
1f:e0:47:25:cc:74:79:07:54:31:f4:45:bd:9b:ba:
70:60:ce:cb:f2:f9:bb:a6:4c:22:1c:b0:15:a1:04:
cb:4c:f7:1d:fc:10:7f:9c:e6:ae:1b:e5:92:5f:f4:
bf:27:ba:e2:1e:ed:13:bd:57:c2:2b:5f:9f:08:da:
54:15:68:81:a4:94:b7:36:03:2c:8f:e7:31:0e:21:
2a:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:72:0A:91:03:E1:AE:00:CC:78:8C:5D:EC:FE:09:48:C8:4B:CD:1B
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/d516a3-8974-45db-8226-8174ddae31d3/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/d516a3-8974-45db-8226-8174ddae31d3/1/aXIKkQPhrgDMeIxd7P4JSMhLzRs.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.150.240.0/22
IPv6:
2a03:ad60::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
203908
Signature Algorithm: sha256WithRSAEncryption
93:b4:d5:6f:75:dc:34:85:a2:f8:51:62:f1:b9:09:e8:da:9f:
81:15:f4:b3:8d:49:c7:2c:65:ad:f5:ec:66:40:c6:45:ad:02:
4b:eb:7e:01:3a:7e:cc:5a:b5:ab:22:11:33:f5:23:dc:ad:73:
7f:d9:5c:9b:87:43:57:ed:d6:72:f7:1b:26:42:1d:f2:70:5b:
f8:70:a9:65:6e:0e:17:ae:34:3e:36:42:ea:c7:f5:59:d5:7c:
98:c1:12:1a:ff:bb:c9:ea:c2:72:3f:d5:54:e8:21:5f:ad:6e:
4e:33:fc:95:bc:12:58:6b:09:48:a6:30:bc:e9:aa:0a:a3:2d:
6c:ab:e7:89:46:0e:da:49:36:4f:2f:70:f5:7e:51:57:73:77:
0e:c8:e3:da:e7:46:e9:1c:68:c7:3a:ec:9b:2f:ae:60:d8:c3:
8f:fb:5e:2b:2f:ee:bd:8a:aa:15:c6:2a:27:10:90:bf:fd:1f:
6e:de:e7:dd:48:1a:4a:57:0f:5d:30:b5:9b:f0:22:fd:dd:22:
1b:2b:13:48:96:c9:0d:a3:f9:fb:7a:ba:44:33:a6:5b:50:70:
da:ea:5b:70:1e:9f:c2:1c:c7:5d:96:16:9c:7d:ed:88:e0:81:
ce:1e:5c:f1:f5:29:03:b7:2b:38:e2:4e:b1:f5:59:aa:43:5c:
bd:92:e6:af
-----BEGIN CERTIFICATE-----
MIIFozCCBIugAwIBAgISAYzIb1vdi7XkhFAA2oakw/NoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAyMDQyOTUwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2OTcyMGE5MTAzZTFhZTAwY2M3ODhjNWRlY2ZlMDk0OGM4NGJjZDFiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4lOpseIgoIrwjZinxsJ+PLLcaUxx
/3Y6DXUo6S55HqGIRZqPxkzUsQHKixcEeXfIlVliCO6cVW0swXDyN3b7Bu39CA1v
0k+5vJSVD8XiZhua5GxM6wEPFaoR1JdPOQHphtVrE6E0o+VwhyAmfU38hdQ9pbv7
WNQ3m+3gnz9ZgbwaMvS6Kl6QQm5dHEVywh5bh804KmMG0DHWvX/rw0ny1T1jf9O/
x2riy67j5nDNdBHZEFUf4EclzHR5B1Qx9EW9m7pwYM7L8vm7pkwiHLAVoQTLTPcd
/BB/nOauG+WSX/S/J7riHu0TvVfCK1+fCNpUFWiBpJS3NgMsj+cxDiEqRwIDAQAB
o4ICrzCCAqswHQYDVR0OBBYEFGlyCpED4a4AzHiMXez+CUjIS80bMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzZkL2Q1MTZh
My04OTc0LTQ1ZGItODIyNi04MTc0ZGRhZTMxZDMvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNmQvZDUxNmEz
LTg5NzQtNDVkYi04MjI2LTgxNzRkZGFlMzFkMy8xL2FYSUtrUVBocmdETWVJeGQ3
UDRKU01oTHpScy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF
BwEHAQH/BB8wHTAMBAIAATAGAwQCuZbwMA0EAgACMAcDBQAqA61gMBoGCCsGAQUF
BwEIAQH/BAswCaAHMAUCAwMchDANBgkqhkiG9w0BAQsFAAOCAQEAk7TVb3XcNIWi
+FFi8bkJ6NqfgRX0s41JxyxlrfXsZkDGRa0CS+t+ATp+zFq1qyIRM/Uj3K1zf9lc
m4dDV+3WcvcbJkId8nBb+HCpZW4OF640PjZC6sf1WdV8mMESGv+7yerCcj/VVOgh
X61uTjP8lbwSWGsJSKYwvOmqCqMtbKvniUYO2kk2Ty9w9X5RV3N3Dsjj2udG6Rxo
xzrsmy+uYNjDj/teKy/uvYqqFcYqJxCQv/0fbt7n3UgaSlcPXTC1m/Ai/d0iGysT
SJbJDaP5+3q6RDOmW1Bw2upbcB6fwhzHXZYWnH3tiOCBzh5c8fUpA7crOOJOsfVZ
qkNcvZLmrw==
-----END CERTIFICATE-----
Generated at Fri May 3 13:51:27 2024 by rpki-client on console-ams.rpki-client.org