Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ayCBixhrC5ywmvVCDR5a4zT-OXQ.cer
File: ayCBixhrC5ywmvVCDR5a4zT-OXQ.cer (raw, json)
Hash identifier: gSgFvC5NzoQZQCe4gGmgMj3sL/gkHWEVxvurYHAlOts=
Subject key identifier: 6B:20:81:8B:18:6B:0B:9C:B0:9A:F5:42:0D:1E:5A:E3:34:FE:39:74
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC5010BA0F0D846CE5A387FB9AD93039E
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/9a/02f95e-5fe5-4c9a-84d7-e5c9c2e8e9bf/1/ayCBixhrC5ywmvVCDR5a4zT-OXQ.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/9a/02f95e-5fe5-4c9a-84d7-e5c9c2e8e9bf/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 12:30:29 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 57293
IP: 5.197.0.0/16
IP: 149.255.144.0/20
IP: 185.146.112.0/22
IP: 2a0b:f9c0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 11:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:01:0b:a0:f0:d8:46:ce:5a:38:7f:b9:ad:93:03:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 12:30:29 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6b20818b186b0b9cb09af5420d1e5ae334fe3974
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:39:42:e4:e1:5e:dd:cb:09:bd:80:ae:2a:35:
37:35:85:87:5c:cc:e9:3c:22:5a:c3:46:9e:9f:70:
00:1c:1d:b2:99:05:d7:24:71:76:8b:a6:c9:05:39:
15:2b:e6:0f:a1:d3:e1:57:cf:9e:b1:9a:f3:b1:87:
d3:23:84:3c:02:5c:c6:c6:98:f0:1e:84:64:ee:34:
77:97:f6:8b:9b:02:b3:db:83:08:11:09:ea:01:16:
a7:5f:0b:4b:95:5d:80:9e:0b:ea:fd:b7:90:21:1b:
2a:11:8c:94:eb:39:50:d7:26:e9:71:6e:a1:28:e7:
40:6c:b0:5b:fa:10:94:da:4c:a1:20:ac:53:22:18:
ec:88:cd:26:33:75:5d:63:71:a0:30:40:3a:33:98:
b1:e2:bb:6a:30:cb:90:30:32:41:97:1b:0c:dd:be:
90:8e:2c:98:60:3c:c3:99:61:ce:b3:51:bc:0f:d2:
50:1d:9f:db:81:47:61:1b:87:a0:83:55:14:1f:0d:
0c:fc:14:1d:1d:49:c5:71:0c:c9:be:5a:2f:db:3e:
e9:35:a0:0c:84:17:b0:a9:c3:37:cf:89:6a:fb:44:
58:7f:fa:c1:56:57:b2:da:91:82:c7:88:6d:c7:25:
f3:b5:cc:45:05:91:77:7d:aa:51:6f:d9:29:ee:4c:
d7:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:20:81:8B:18:6B:0B:9C:B0:9A:F5:42:0D:1E:5A:E3:34:FE:39:74
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/02f95e-5fe5-4c9a-84d7-e5c9c2e8e9bf/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/02f95e-5fe5-4c9a-84d7-e5c9c2e8e9bf/1/ayCBixhrC5ywmvVCDR5a4zT-OXQ.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.197.0.0/16
149.255.144.0/20
185.146.112.0/22
IPv6:
2a0b:f9c0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
57293
Signature Algorithm: sha256WithRSAEncryption
ae:77:40:1f:e6:99:f4:4d:0e:ff:72:77:83:f3:3f:cb:e7:2e:
22:74:c3:b9:4d:b4:3d:58:c2:3c:eb:3a:8b:c8:81:ba:6d:f6:
ca:34:2e:66:40:d2:cf:4a:f9:e7:d6:ea:50:35:a2:34:de:a9:
72:e1:39:ce:59:ad:a7:72:37:2f:93:88:0e:f4:1c:a2:5b:f0:
25:9c:c1:d8:a4:83:65:88:f5:c9:30:93:d3:84:f5:ed:f4:86:
c4:5b:e1:d6:ef:88:0a:f1:7c:de:52:05:16:98:a1:1c:b0:61:
bf:9e:e5:f9:f6:a6:60:64:b1:1c:92:5b:df:c3:24:6f:2c:d2:
a1:d4:6e:0a:65:c9:bc:aa:cd:08:de:09:1b:77:f8:99:87:99:
3a:b7:c9:d3:0d:f4:a5:3b:c9:78:9d:a2:ea:da:77:e3:c9:0e:
cf:80:b1:bd:a7:8f:ea:84:52:59:3a:35:d6:30:04:61:9f:07:
f7:48:e7:ae:e7:43:67:de:66:78:38:64:9c:e3:62:ba:05:8a:
25:0e:9f:4d:65:c9:95:b7:8d:ac:87:5d:7b:99:8f:d6:e0:d6:
a7:62:ce:b1:55:60:56:e9:a2:0e:d0:c6:57:36:75:54:f7:8a:
9d:8a:2a:b6:2e:ed:52:18:e2:78:6a:76:dc:e4:6b:00:04:a9:
d1:38:38:17
-----BEGIN CERTIFICATE-----
MIIFrjCCBJagAwIBAgISAYzFAQug8NhGzlo4f7mtkwOeMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAxMTIzMDI5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2YjIwODE4YjE4NmIwYjljYjA5YWY1NDIwZDFlNWFlMzM0ZmUzOTc0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4jlC5OFe3csJvYCuKjU3NYWHXMzp
PCJaw0aen3AAHB2ymQXXJHF2i6bJBTkVK+YPodPhV8+esZrzsYfTI4Q8AlzGxpjw
HoRk7jR3l/aLmwKz24MIEQnqARanXwtLlV2Angvq/beQIRsqEYyU6zlQ1ybpcW6h
KOdAbLBb+hCU2kyhIKxTIhjsiM0mM3VdY3GgMEA6M5ix4rtqMMuQMDJBlxsM3b6Q
jiyYYDzDmWHOs1G8D9JQHZ/bgUdhG4egg1UUHw0M/BQdHUnFcQzJvlov2z7pNaAM
hBewqcM3z4lq+0RYf/rBVley2pGCx4htxyXztcxFBZF3fapRb9kp7kzX+QIDAQAB
o4ICujCCArYwHQYDVR0OBBYEFGsggYsYawucsJr1Qg0eWuM0/jl0MB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzlhLzAyZjk1
ZS01ZmU1LTRjOWEtODRkNy1lNWM5YzJlOGU5YmYvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOWEvMDJmOTVl
LTVmZTUtNGM5YS04NGQ3LWU1YzljMmU4ZTliZi8xL2F5Q0JpeGhyQzV5d212VkNE
UjVhNHpULU9YUS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDkGCCsGAQUF
BwEHAQH/BCowKDAXBAIAATARAwMABcUDBASV/5ADBAK5knAwDQQCAAIwBwMFAyoL
+cAwGgYIKwYBBQUHAQgBAf8ECzAJoAcwBQIDAN/NMA0GCSqGSIb3DQEBCwUAA4IB
AQCud0Af5pn0TQ7/cneD8z/L5y4idMO5TbQ9WMI86zqLyIG6bfbKNC5mQNLPSvnn
1upQNaI03qly4TnOWa2ncjcvk4gO9ByiW/AlnMHYpINliPXJMJPThPXt9IbEW+HW
74gK8XzeUgUWmKEcsGG/nuX59qZgZLEcklvfwyRvLNKh1G4KZcm8qs0I3gkbd/iZ
h5k6t8nTDfSlO8l4naLq2nfjyQ7PgLG9p4/qhFJZOjXWMARhnwf3SOeu50Nn3mZ4
OGSc42K6BYolDp9NZcmVt42sh117mY/W4NanYs6xVWBW6aIO0MZXNnVU94qdiiq2
Lu1SGOJ4anbc5GsABKnRODgX
-----END CERTIFICATE-----
Generated at Fri May 3 13:30:07 2024 by rpki-client on console-fra.rpki-client.org