Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bWjTPT2hTTu8_PwuSS3BZzhJqmw.cer
File: bWjTPT2hTTu8_PwuSS3BZzhJqmw.cer (raw, json)
Hash identifier: Qq7xHtHBp6tFhb8zk2cLR42NQFpAQTnucgisqW3iSAw=
Subject key identifier: 6D:68:D3:3D:3D:A1:4D:3B:BC:FC:FC:2E:49:2D:C1:67:38:49:AA:6C
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018D30D65A627B7650DDD1C86A96DB8DF3C1
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/52/d63178-5d53-41e4-a70e-2a1e39dd633c/1/bWjTPT2hTTu8_PwuSS3BZzhJqmw.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/52/d63178-5d53-41e4-a70e-2a1e39dd633c/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 22 Jan 2024 11:02:50 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 200723
IP: 217.26.219.0/24
IP: 2a13:4a40::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:30:d6:5a:62:7b:76:50:dd:d1:c8:6a:96:db:8d:f3:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 22 11:02:50 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6d68d33d3da14d3bbcfcfc2e492dc1673849aa6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:59:42:55:64:91:4c:15:45:0c:f2:6c:79:12:
a0:67:97:d2:f8:8b:35:a4:c6:4a:4c:3d:96:1b:25:
32:8c:1b:89:e6:71:1b:62:4c:a1:4d:4b:99:bd:9c:
07:69:0c:8d:4d:7f:03:d8:93:00:13:35:29:b2:dc:
f6:ef:25:48:1f:6c:4f:98:b6:41:bd:1e:b6:64:a5:
7e:78:60:0e:77:21:45:6f:d7:23:ee:26:2d:9b:f5:
ee:2e:f8:ef:9f:f7:45:30:08:08:9f:c6:00:a0:bc:
66:f8:dd:d8:2c:ef:26:12:92:8d:5e:57:6e:67:98:
9d:91:47:a1:04:c5:4a:50:9a:cb:2e:73:c6:7e:03:
cf:18:93:04:a5:b6:ae:83:45:1a:c2:7c:06:68:8f:
98:69:60:b2:55:9f:01:53:8c:e0:fb:4d:4c:42:60:
63:8d:0d:16:8d:31:3f:c2:f0:41:4b:33:3f:52:dc:
d3:2c:e5:50:2f:49:52:e2:b7:be:2f:33:1a:5b:28:
b7:c2:08:8f:0f:16:9f:48:d1:c7:d0:54:81:74:62:
f2:c4:ba:b4:bc:36:92:e9:c4:84:d4:88:90:21:cd:
4b:6b:ee:10:74:e8:0b:a7:ae:5b:85:57:47:60:a1:
c5:05:be:4a:e2:e5:98:9d:fd:35:3e:a0:6e:79:3c:
60:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:68:D3:3D:3D:A1:4D:3B:BC:FC:FC:2E:49:2D:C1:67:38:49:AA:6C
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/d63178-5d53-41e4-a70e-2a1e39dd633c/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/d63178-5d53-41e4-a70e-2a1e39dd633c/1/bWjTPT2hTTu8_PwuSS3BZzhJqmw.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.26.219.0/24
IPv6:
2a13:4a40::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
200723
Signature Algorithm: sha256WithRSAEncryption
05:17:29:86:91:7a:70:18:95:e7:49:0a:1a:92:52:80:ad:21:
ac:ae:d2:5b:d3:81:19:05:51:5d:51:5f:f5:cb:83:76:cf:37:
86:77:b4:f0:5b:82:1a:79:f1:6f:13:ae:de:bd:b1:5f:ad:87:
d6:de:53:0b:8d:16:39:9e:19:92:49:68:23:16:74:12:4a:7f:
55:bb:0b:70:80:8f:8b:9e:ae:d7:ae:19:aa:76:76:71:15:53:
85:ab:ce:39:ca:fd:c8:58:bb:97:94:ee:d7:f0:d6:34:db:65:
68:52:bf:3d:25:cd:26:9c:78:5c:ae:4d:23:c3:58:f4:0a:b1:
fe:b2:b5:bd:6f:55:76:94:5b:d6:40:3d:af:50:36:33:34:eb:
e6:fe:ec:1b:c5:48:91:45:18:da:9d:c4:0e:04:02:c4:97:bb:
9a:99:7a:1c:0a:b2:a1:8d:d7:96:cd:f5:4b:06:b5:9f:b8:21:
6d:21:db:0a:3a:1f:14:59:3a:73:8b:4e:30:bd:4f:12:1c:c6:
b7:c8:96:36:4a:91:87:aa:37:ad:2d:ea:bd:ee:21:cb:04:8e:
89:8b:52:c6:3a:c2:ed:c1:bc:30:c1:7e:f2:cc:84:c1:2f:47:
4c:b8:1e:83:27:66:dd:69:0f:37:d9:46:77:ea:5a:66:ce:c0:
80:4d:23:a4
-----BEGIN CERTIFICATE-----
MIIFozCCBIugAwIBAgISAY0w1lpie3ZQ3dHIapbbjfPBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTIyMTEwMjUwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2ZDY4ZDMzZDNkYTE0ZDNiYmNmY2ZjMmU0OTJkYzE2NzM4NDlhYTZjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjFlCVWSRTBVFDPJseRKgZ5fS+Is1
pMZKTD2WGyUyjBuJ5nEbYkyhTUuZvZwHaQyNTX8D2JMAEzUpstz27yVIH2xPmLZB
vR62ZKV+eGAOdyFFb9cj7iYtm/XuLvjvn/dFMAgIn8YAoLxm+N3YLO8mEpKNXldu
Z5idkUehBMVKUJrLLnPGfgPPGJMEpbaug0UawnwGaI+YaWCyVZ8BU4zg+01MQmBj
jQ0WjTE/wvBBSzM/UtzTLOVQL0lS4re+LzMaWyi3wgiPDxafSNHH0FSBdGLyxLq0
vDaS6cSE1IiQIc1La+4QdOgLp65bhVdHYKHFBb5K4uWYnf01PqBueTxgpwIDAQAB
o4ICrzCCAqswHQYDVR0OBBYEFG1o0z09oU07vPz8LkktwWc4SapsMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzUyL2Q2MzE3
OC01ZDUzLTQxZTQtYTcwZS0yYTFlMzlkZDYzM2MvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTIvZDYzMTc4
LTVkNTMtNDFlNC1hNzBlLTJhMWUzOWRkNjMzYy8xL2JXalRQVDJoVFR1OF9Qd3VT
UzNCWnpoSnFtdy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF
BwEHAQH/BB8wHTAMBAIAATAGAwQA2RrbMA0EAgACMAcDBQMqE0pAMBoGCCsGAQUF
BwEIAQH/BAswCaAHMAUCAwMQEzANBgkqhkiG9w0BAQsFAAOCAQEABRcphpF6cBiV
50kKGpJSgK0hrK7SW9OBGQVRXVFf9cuDds83hne08FuCGnnxbxOu3r2xX62H1t5T
C40WOZ4ZkkloIxZ0Ekp/VbsLcICPi56u164ZqnZ2cRVThavOOcr9yFi7l5Tu1/DW
NNtlaFK/PSXNJpx4XK5NI8NY9Aqx/rK1vW9VdpRb1kA9r1A2MzTr5v7sG8VIkUUY
2p3EDgQCxJe7mpl6HAqyoY3Xls31Swa1n7ghbSHbCjofFFk6c4tOML1PEhzGt8iW
NkqRh6o3rS3qve4hywSOiYtSxjrC7cG8MMF+8syEwS9HTLgegydm3WkPN9lGd+pa
Zs7AgE0jpA==
-----END CERTIFICATE-----
Generated at Sat Nov 23 10:55:10 2024 by rpki-client on console-ams.rpki-client.org