Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/caJzmyDCWcXRs4jRRT9vF5nyj2w.cer
File: caJzmyDCWcXRs4jRRT9vF5nyj2w.cer (raw, json)
Hash identifier: NRQ7kzM4ZoB/0XUNUbwsnNeuHmisoOul+e7kSReJsLI=
Subject key identifier: 71:A2:73:9B:20:C2:59:C5:D1:B3:88:D1:45:3F:6F:17:99:F2:8F:6C
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0191DBB57A7C0E82640B911275CA1D87534D
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/ad/499df3-bd4f-4e40-8f82-a3855505ea2e/1/caJzmyDCWcXRs4jRRT9vF5nyj2w.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/ad/499df3-bd4f-4e40-8f82-a3855505ea2e/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 10 Sep 2024 11:33:09 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 214321
IP: 84.54.13.0/24
IP: 176.98.41.0/24
IP: 193.31.116.0/24
IP: 213.226.119.0/24
IP: 2a01:e480::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:db:b5:7a:7c:0e:82:64:0b:91:12:75:ca:1d:87:53:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Sep 10 11:33:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=71a2739b20c259c5d1b388d1453f6f1799f28f6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:3a:e1:d2:50:1f:d7:4f:18:b1:b6:80:24:38:
b2:c3:0c:98:4b:bb:87:c3:be:f2:3d:75:0b:9a:0a:
9d:5f:86:f4:bb:ca:1e:31:53:3f:b5:8d:ce:6e:59:
72:e6:5e:3a:e6:9a:ba:cc:b0:4e:0f:7b:8b:05:e5:
06:d6:ea:ac:67:3b:64:37:bb:58:06:ac:2c:34:3f:
e3:ac:2a:2f:db:ed:44:01:43:07:ff:2c:ef:7f:9e:
21:e9:a8:2b:b4:a8:35:e2:05:b6:71:48:ba:db:b5:
1d:88:dc:c3:f6:3b:44:db:50:b6:80:61:bf:83:f6:
96:cb:46:b7:1a:9d:69:18:92:b3:3f:57:d6:e3:f8:
1b:b2:48:77:79:ad:3f:7c:19:76:55:a7:45:b5:4c:
db:5a:81:47:11:a2:12:dd:8f:b1:5c:4d:fc:3f:43:
2e:83:f9:37:e9:20:6a:f2:86:85:95:45:70:90:ea:
b1:ea:52:b1:48:54:4c:d3:0f:ce:d7:ac:00:22:cf:
2b:c4:eb:f0:49:30:e1:a7:f6:19:97:fe:46:bb:92:
60:90:77:69:25:c4:00:78:ec:11:c1:d5:ed:aa:1f:
fb:18:5f:4d:d7:c3:0e:37:5b:30:52:c3:43:b0:ca:
80:eb:7a:26:18:a1:f3:e8:0e:2f:7d:4f:18:21:e9:
00:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:A2:73:9B:20:C2:59:C5:D1:B3:88:D1:45:3F:6F:17:99:F2:8F:6C
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/499df3-bd4f-4e40-8f82-a3855505ea2e/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/499df3-bd4f-4e40-8f82-a3855505ea2e/1/caJzmyDCWcXRs4jRRT9vF5nyj2w.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.54.13.0/24
176.98.41.0/24
193.31.116.0/24
213.226.119.0/24
IPv6:
2a01:e480::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
214321
Signature Algorithm: sha256WithRSAEncryption
03:45:c5:25:b5:a3:11:54:35:ab:5b:7c:0e:dd:78:7d:19:05:
53:62:e1:70:45:14:44:b3:90:dd:72:a9:d5:83:68:59:c4:ca:
b0:64:8d:1c:7d:d7:5c:60:27:50:13:a3:11:45:46:cf:94:49:
09:d8:ad:37:6b:6f:ce:fd:76:25:9f:d0:a1:db:22:2c:b2:33:
d5:f7:04:a3:b3:ea:85:83:63:9c:b4:9d:1d:3c:26:cd:44:1c:
67:90:94:2f:09:81:02:4e:a6:b7:21:86:90:6d:1f:42:3e:bb:
67:c9:65:cf:03:cf:af:a7:06:13:6f:07:d2:21:79:0f:05:d6:
d4:86:ba:af:37:e0:3e:73:9e:39:57:13:6c:0a:87:23:45:c9:
b6:10:7c:5f:c8:f4:cb:91:a6:10:31:32:17:a6:72:4b:73:95:
57:cc:65:49:cf:26:c7:21:7f:33:7a:42:4d:25:02:8a:6b:11:
8f:84:e2:08:ce:58:ba:a7:df:cb:60:d2:1e:79:24:f0:0a:21:
28:3b:a4:78:e4:a9:ca:e4:7c:5e:f3:5b:1d:70:df:08:d2:cc:
74:e0:74:ca:30:5e:20:b4:8e:5f:af:c6:17:64:a2:91:82:79:
4d:e7:d1:58:e9:21:e2:a1:db:ec:d1:b4:04:4c:a9:3a:f3:07:
73:f3:07:25
-----BEGIN CERTIFICATE-----
MIIFtTCCBJ2gAwIBAgISAZHbtXp8DoJkC5ESdcodh1NNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwOTEwMTEzMzA5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3MWEyNzM5YjIwYzI1OWM1ZDFiMzg4ZDE0NTNmNmYxNzk5ZjI4ZjZjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqjrh0lAf108YsbaAJDiywwyYS7uH
w77yPXULmgqdX4b0u8oeMVM/tY3Oblly5l465pq6zLBOD3uLBeUG1uqsZztkN7tY
BqwsND/jrCov2+1EAUMH/yzvf54h6agrtKg14gW2cUi627UdiNzD9jtE21C2gGG/
g/aWy0a3Gp1pGJKzP1fW4/gbskh3ea0/fBl2VadFtUzbWoFHEaIS3Y+xXE38P0Mu
g/k36SBq8oaFlUVwkOqx6lKxSFRM0w/O16wAIs8rxOvwSTDhp/YZl/5Gu5JgkHdp
JcQAeOwRwdXtqh/7GF9N18MON1swUsNDsMqA63omGKHz6A4vfU8YIekAPwIDAQAB
o4ICwTCCAr0wHQYDVR0OBBYEFHGic5sgwlnF0bOI0UU/bxeZ8o9sMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2FkLzQ5OWRm
My1iZDRmLTRlNDAtOGY4Mi1hMzg1NTUwNWVhMmUvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYWQvNDk5ZGYz
LWJkNGYtNGU0MC04ZjgyLWEzODU1NTA1ZWEyZS8xL2NhSnpteURDV2NYUnM0alJS
VDl2RjVueWoydy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMEAGCCsGAQUF
BwEHAQH/BDEwLzAeBAIAATAYAwQAVDYNAwQAsGIpAwQAwR90AwQA1eJ3MA0EAgAC
MAcDBQMqAeSAMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwNFMTANBgkqhkiG9w0B
AQsFAAOCAQEAA0XFJbWjEVQ1q1t8Dt14fRkFU2LhcEUURLOQ3XKp1YNoWcTKsGSN
HH3XXGAnUBOjEUVGz5RJCditN2tvzv12JZ/QodsiLLIz1fcEo7PqhYNjnLSdHTwm
zUQcZ5CULwmBAk6mtyGGkG0fQj67Z8llzwPPr6cGE28H0iF5DwXW1Ia6rzfgPnOe
OVcTbAqHI0XJthB8X8j0y5GmEDEyF6ZyS3OVV8xlSc8mxyF/M3pCTSUCimsRj4Ti
CM5Yuqffy2DSHnkk8AohKDukeOSpyuR8XvNbHXDfCNLMdOB0yjBeILSOX6/GF2Si
kYJ5TefRWOkh4qHb7NG0BEypOvMHc/MHJQ==
-----END CERTIFICATE-----
Generated at Fri Nov 22 18:24:48 2024 by rpki-client on console-fra.rpki-client.org