Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cfxj7vZnTya1A6gwpd-pU9L_qr4.cer
File: cfxj7vZnTya1A6gwpd-pU9L_qr4.cer (raw, json)
Hash identifier: zszJLRVUYCWWcInLzouonq7k/0CnBja4Z7t86D/x5wI=
Subject key identifier: 71:FC:63:EE:F6:67:4F:26:B5:03:A8:30:A5:DF:A9:53:D2:FF:AA:BE
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC8DEE9EB69F3064B601BD81F8A33AAC1
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/b9/f8010e-6a3f-4ff0-95e7-d418248e5728/1/cfxj7vZnTya1A6gwpd-pU9L_qr4.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/b9/f8010e-6a3f-4ff0-95e7-d418248e5728/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 06:31:41 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 59536
AS: 209065
IP: 213.178.156.0/22
IP: 2a0e:7e00::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:de:e9:eb:69:f3:06:4b:60:1b:d8:1f:8a:33:aa:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 06:31:41 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=71fc63eef6674f26b503a830a5dfa953d2ffaabe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:12:10:db:d2:86:e3:9f:91:0a:a2:67:ef:3d:
ee:72:f7:de:2c:6e:94:42:70:49:04:49:3a:a8:50:
81:c8:b5:65:be:5b:52:54:3c:07:4a:8d:20:15:5a:
63:89:72:b3:d7:01:16:95:d3:e0:df:a7:54:96:16:
65:06:73:18:15:12:ab:3b:c6:70:dd:7a:08:f4:88:
ac:76:e5:c6:5e:d5:df:01:91:8a:16:30:38:68:b3:
cf:e8:5c:21:c7:f0:a8:82:75:b5:c4:b7:cb:06:56:
4c:cf:4d:de:c9:e6:13:5d:6f:58:cc:d9:4f:a0:f3:
12:dd:e2:64:71:dd:bd:41:cc:ea:79:66:2c:e1:c4:
bd:f3:51:e4:d7:cb:78:0d:75:cf:c7:81:4f:71:aa:
c1:6f:4b:f2:9e:aa:b0:93:9d:09:d9:d7:1a:1a:24:
60:cc:ad:73:19:bc:23:59:95:34:38:ef:43:50:6b:
e2:51:a0:55:71:ba:09:3f:7e:62:af:e9:36:ed:2c:
8e:cf:52:e5:a9:b3:0f:2a:c7:a3:fb:73:61:e8:73:
de:c9:62:a1:d6:d5:8f:e1:87:71:7d:a3:79:0b:b2:
5a:01:07:41:fb:55:56:8b:7d:41:c9:6d:85:2a:73:
86:ae:37:9b:1c:d3:b2:63:52:1a:e4:51:24:88:b1:
62:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:FC:63:EE:F6:67:4F:26:B5:03:A8:30:A5:DF:A9:53:D2:FF:AA:BE
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/f8010e-6a3f-4ff0-95e7-d418248e5728/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/f8010e-6a3f-4ff0-95e7-d418248e5728/1/cfxj7vZnTya1A6gwpd-pU9L_qr4.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.178.156.0/22
IPv6:
2a0e:7e00::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
59536
209065
Signature Algorithm: sha256WithRSAEncryption
79:5e:0d:c8:8a:2d:ac:f1:35:d0:5b:b2:d0:28:30:f8:cb:dd:
c6:c0:73:f6:02:94:37:3a:70:36:00:b3:43:4b:04:5f:32:29:
68:92:c8:ae:24:d9:55:58:3d:44:43:ea:84:72:d6:47:3a:1c:
18:8e:7d:09:79:ff:1e:62:9b:f2:c9:9b:83:76:64:34:cc:34:
8e:23:22:57:3c:df:df:df:21:74:c4:26:98:20:07:0d:9c:1a:
0e:5b:ff:1b:2f:d1:fd:7c:cc:f6:79:81:5f:81:5a:a9:ef:43:
99:92:5c:08:76:1a:f1:85:07:26:a7:53:3d:17:03:80:eb:fd:
17:a7:79:d9:d9:02:9f:16:5e:81:d3:3a:64:a3:ba:7a:7f:ce:
5c:aa:63:0a:f5:d1:d0:80:50:d2:93:2c:87:51:67:75:00:52:
6c:e9:75:b4:39:6b:b9:b9:af:b5:34:13:0d:f2:dd:b0:74:78:
27:4b:7b:f1:51:23:4d:35:e7:42:6a:ba:ae:05:c8:be:a6:8c:
fc:89:3c:ed:46:d7:26:89:f3:a4:76:98:e7:2c:85:7b:1d:80:
35:59:93:a6:dc:cd:48:fe:49:7a:aa:54:39:42:4c:62:b6:98:
08:96:99:46:30:b8:c4:29:03:5c:65:d8:eb:b8:c5:88:d4:28:
f5:f0:4a:e8
-----BEGIN CERTIFICATE-----
MIIFqDCCBJCgAwIBAgISAYzI3unrafMGS2Ab2B+KM6rBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAyMDYzMTQxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3MWZjNjNlZWY2Njc0ZjI2YjUwM2E4MzBhNWRmYTk1M2QyZmZhYWJlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAshIQ29KG45+RCqJn7z3ucvfeLG6U
QnBJBEk6qFCByLVlvltSVDwHSo0gFVpjiXKz1wEWldPg36dUlhZlBnMYFRKrO8Zw
3XoI9IisduXGXtXfAZGKFjA4aLPP6Fwhx/CognW1xLfLBlZMz03eyeYTXW9YzNlP
oPMS3eJkcd29QczqeWYs4cS981Hk18t4DXXPx4FPcarBb0vynqqwk50J2dcaGiRg
zK1zGbwjWZU0OO9DUGviUaBVcboJP35ir+k27SyOz1LlqbMPKsej+3Nh6HPeyWKh
1tWP4YdxfaN5C7JaAQdB+1VWi31ByW2FKnOGrjebHNOyY1Ia5FEkiLFiaQIDAQAB
o4ICtDCCArAwHQYDVR0OBBYEFHH8Y+72Z08mtQOoMKXfqVPS/6q+MB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2I5L2Y4MDEw
ZS02YTNmLTRmZjAtOTVlNy1kNDE4MjQ4ZTU3MjgvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjkvZjgwMTBl
LTZhM2YtNGZmMC05NWU3LWQ0MTgyNDhlNTcyOC8xL2NmeGo3dlpuVHlhMUE2Z3dw
ZC1wVTlMX3FyNC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF
BwEHAQH/BB8wHTAMBAIAATAGAwQC1bKcMA0EAgACMAcDBQMqDn4AMB8GCCsGAQUF
BwEIAQH/BBAwDqAMMAoCAwDokAIDAzCpMA0GCSqGSIb3DQEBCwUAA4IBAQB5Xg3I
ii2s8TXQW7LQKDD4y93GwHP2ApQ3OnA2ALNDSwRfMiloksiuJNlVWD1EQ+qEctZH
OhwYjn0Jef8eYpvyyZuDdmQ0zDSOIyJXPN/f3yF0xCaYIAcNnBoOW/8bL9H9fMz2
eYFfgVqp70OZklwIdhrxhQcmp1M9FwOA6/0Xp3nZ2QKfFl6B0zpko7p6f85cqmMK
9dHQgFDSkyyHUWd1AFJs6XW0OWu5ua+1NBMN8t2wdHgnS3vxUSNNNedCarquBci+
poz8iTztRtcmifOkdpjnLIV7HYA1WZOm3M1I/kl6qlQ5QkxitpgIlplGMLjEKQNc
ZdjruMWI1Cj18Ero
-----END CERTIFICATE-----
Generated at Fri May 3 07:56:30 2024 by rpki-client on console-fra.rpki-client.org