Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dz4yeLqiScFN5gXclkssJ1Xf7Po.cer
File: dz4yeLqiScFN5gXclkssJ1Xf7Po.cer (raw, json)
Hash identifier: dHlIHK9YqfswLhg4zdopezfocvAirVuK7h3bg6PK/lc=
Subject key identifier: 77:3E:32:78:BA:A2:49:C1:4D:E6:05:DC:96:4B:2C:27:55:DF:EC:FA
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC56EA35735B637D6720C9C11E6DF43D2
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/4c/42ec46-eb84-475a-a478-1f14ec805390/1/dz4yeLqiScFN5gXclkssJ1Xf7Po.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/4c/42ec46-eb84-475a-a478-1f14ec805390/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 14:30:11 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 202341
IP: 185.229.60.0/22
IP: 2a0d:7200::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:a3:57:35:b6:37:d6:72:0c:9c:11:e6:df:43:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 14:30:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=773e3278baa249c14de605dc964b2c2755dfecfa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:36:98:7a:c7:bb:7a:b6:a9:b6:85:e7:e9:cf:
e3:0b:31:49:08:2b:85:88:10:49:e8:9d:cb:8d:74:
51:04:d6:8a:0e:f0:4f:04:ab:5e:e5:1a:be:3b:f0:
b6:11:7c:41:3f:a4:63:9a:93:b5:b3:e1:a5:8d:08:
3d:8e:17:a4:89:2d:3c:64:35:9c:81:a6:a0:4d:c6:
89:81:81:71:11:0e:af:ca:cd:ff:75:f2:4b:3f:14:
64:94:71:7e:22:fa:c6:50:c9:12:1f:aa:b9:d0:20:
35:bd:f1:42:38:30:9f:28:31:fd:51:1d:f3:78:59:
fe:12:62:e7:84:47:1d:4b:d1:5b:eb:80:af:c9:1e:
f4:4e:45:ea:55:17:a5:69:49:de:b4:38:68:b4:e0:
48:22:71:12:b3:59:a5:6e:75:75:92:8f:81:38:c1:
24:cd:1b:b3:94:8d:75:22:0f:e6:d8:22:d1:16:c0:
ae:5c:37:e2:d2:d6:04:9b:dd:c0:03:8e:27:78:e2:
a7:a9:10:92:b5:70:27:8d:30:53:e2:3b:3b:b0:4b:
f0:db:3d:44:1f:88:13:4a:d5:38:9d:92:77:96:c5:
5f:f0:e0:f9:5a:9b:d9:e4:99:3f:6a:a4:c9:14:1a:
7c:86:97:31:3c:a0:7e:c2:a5:56:dd:98:35:f7:3d:
e1:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:3E:32:78:BA:A2:49:C1:4D:E6:05:DC:96:4B:2C:27:55:DF:EC:FA
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/42ec46-eb84-475a-a478-1f14ec805390/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/42ec46-eb84-475a-a478-1f14ec805390/1/dz4yeLqiScFN5gXclkssJ1Xf7Po.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.229.60.0/22
IPv6:
2a0d:7200::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
202341
Signature Algorithm: sha256WithRSAEncryption
15:b0:35:e1:fc:e6:76:cd:c2:0e:ed:54:a4:91:08:06:eb:87:
94:6c:35:e1:a8:16:77:20:1a:d9:0d:83:f1:60:76:31:1d:92:
24:9b:40:de:5d:5e:c5:1a:f4:4d:74:0b:a3:ad:e0:8e:df:93:
91:3b:15:f7:c4:44:e9:15:b2:61:74:90:5a:0e:f9:a1:1b:f6:
09:0e:c6:6a:f9:20:d5:ad:49:4b:c0:aa:94:92:ff:43:4d:c1:
ef:8b:04:f6:16:9b:ee:d5:e2:34:d3:45:98:96:2c:be:9f:dd:
56:5f:99:dd:ad:b2:84:5b:cb:5c:04:3a:7e:4a:13:96:ad:2b:
89:c1:db:a3:64:ff:68:fe:4a:1f:70:51:62:d4:56:6f:71:8e:
c9:6d:05:bd:16:b9:75:da:1d:29:a2:e0:0f:7a:91:b6:1b:3f:
f4:6e:fb:e3:7b:37:26:90:30:4b:96:28:ec:e4:e8:eb:85:c1:
82:49:08:48:7f:5b:58:26:9c:59:12:f6:62:f1:65:fe:1c:3c:
59:34:37:6c:b7:f8:02:fb:1c:b8:a1:f4:fb:d0:3b:0b:9d:2e:
55:f7:66:2b:34:fd:e2:1b:70:88:40:72:67:15:0b:28:33:fa:
ab:17:e7:a8:85:f0:70:2f:2d:41:03:55:29:aa:da:6c:1a:87:
a7:b5:1a:28
-----BEGIN CERTIFICATE-----
MIIFozCCBIugAwIBAgISAYzFbqNXNbY31nIMnBHm30PSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAxMTQzMDExWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NzNlMzI3OGJhYTI0OWMxNGRlNjA1ZGM5NjRiMmMyNzU1ZGZlY2ZhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvDaYese7eraptoXn6c/jCzFJCCuF
iBBJ6J3LjXRRBNaKDvBPBKte5Rq+O/C2EXxBP6RjmpO1s+GljQg9jhekiS08ZDWc
gaagTcaJgYFxEQ6vys3/dfJLPxRklHF+IvrGUMkSH6q50CA1vfFCODCfKDH9UR3z
eFn+EmLnhEcdS9Fb64CvyR70TkXqVRelaUnetDhotOBIInESs1mlbnV1ko+BOMEk
zRuzlI11Ig/m2CLRFsCuXDfi0tYEm93AA44neOKnqRCStXAnjTBT4js7sEvw2z1E
H4gTStU4nZJ3lsVf8OD5WpvZ5Jk/aqTJFBp8hpcxPKB+wqVW3Zg19z3hGwIDAQAB
o4ICrzCCAqswHQYDVR0OBBYEFHc+Mni6oknBTeYF3JZLLCdV3+z6MB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzRjLzQyZWM0
Ni1lYjg0LTQ3NWEtYTQ3OC0xZjE0ZWM4MDUzOTAvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNGMvNDJlYzQ2
LWViODQtNDc1YS1hNDc4LTFmMTRlYzgwNTM5MC8xL2R6NHllTHFpU2NGTjVnWGNs
a3NzSjFYZjdQby5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF
BwEHAQH/BB8wHTAMBAIAATAGAwQCueU8MA0EAgACMAcDBQMqDXIAMBoGCCsGAQUF
BwEIAQH/BAswCaAHMAUCAwMWZTANBgkqhkiG9w0BAQsFAAOCAQEAFbA14fzmds3C
Du1UpJEIBuuHlGw14agWdyAa2Q2D8WB2MR2SJJtA3l1exRr0TXQLo63gjt+TkTsV
98RE6RWyYXSQWg75oRv2CQ7Gavkg1a1JS8CqlJL/Q03B74sE9hab7tXiNNNFmJYs
vp/dVl+Z3a2yhFvLXAQ6fkoTlq0ricHbo2T/aP5KH3BRYtRWb3GOyW0FvRa5ddod
KaLgD3qRths/9G7743s3JpAwS5Yo7OTo64XBgkkISH9bWCacWRL2YvFl/hw8WTQ3
bLf4AvscuKH0+9A7C50uVfdmKzT94htwiEByZxULKDP6qxfnqIXwcC8tQQNVKara
bBqHp7UaKA==
-----END CERTIFICATE-----
Generated at Sat Nov 23 10:58:47 2024 by rpki-client on console-ams.rpki-client.org