Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6Ix0pxKI7PpixSBPawJg-OjQFk.cer
File: e6Ix0pxKI7PpixSBPawJg-OjQFk.cer (raw, json)
Hash identifier: FJfJ2mZ+rpkj0UO/zobbOkMUDJ96mnlupvyo3op7yCQ=
Subject key identifier: 7B:A2:31:D2:9C:4A:23:B3:E9:8B:14:81:3D:AC:09:83:E3:A3:40:59
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018D0168D34FD0E384C8BB6E3578C1C01479
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/de/65b1ae-7d9f-4d70-9f8b-5124e9515b14/1/e6Ix0pxKI7PpixSBPawJg-OjQFk.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/de/65b1ae-7d9f-4d70-9f8b-5124e9515b14/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Sat 13 Jan 2024 06:01:03 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 42291
IP: 91.192.20.0/22
IP: 176.62.176.0/20
IP: 185.13.44.0/22
IP: 2a01:4080::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:01:68:d3:4f:d0:e3:84:c8:bb:6e:35:78:c1:c0:14:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 13 06:01:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7ba231d29c4a23b3e98b14813dac0983e3a34059
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:7c:5b:8c:aa:86:c9:dc:f2:e4:b4:f7:02:4c:
54:6c:fc:93:5c:06:94:39:9a:b5:69:56:80:bc:b7:
95:8d:6c:f8:20:2a:c9:85:be:e8:14:48:b8:c8:ce:
70:08:b0:ad:4c:26:a5:ac:b0:9d:f4:a7:f4:77:d6:
40:06:d2:ce:01:46:54:c3:96:a5:f7:cc:04:4f:40:
97:57:c3:6f:41:e5:5b:72:f2:94:f5:03:0a:f5:5b:
da:a9:7c:29:f4:03:a6:20:87:4b:5d:bf:20:77:ad:
e5:dd:d6:77:eb:ed:8f:3d:e0:f4:0a:40:28:3f:02:
c5:59:76:6d:12:65:b5:68:53:c9:56:79:d4:a1:51:
65:af:9b:26:14:5c:86:db:c2:3a:7f:ae:a7:8c:b6:
49:10:77:0c:74:6f:31:29:7d:f0:77:84:5b:ee:11:
f0:ef:5c:8e:f5:45:1f:e2:e1:bf:91:88:54:c9:ee:
ab:71:59:e1:6f:c9:42:54:d3:34:be:ce:df:3c:93:
f1:2c:87:c4:b6:ef:a1:bb:4c:63:a3:ee:3b:cf:7d:
c2:d9:89:90:34:48:4a:cd:61:a0:94:bf:b8:41:cb:
89:a3:6d:01:09:35:64:15:89:45:bd:9e:17:1a:db:
d0:aa:55:13:65:61:39:91:0b:38:2b:13:b3:e9:cc:
bb:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:A2:31:D2:9C:4A:23:B3:E9:8B:14:81:3D:AC:09:83:E3:A3:40:59
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/65b1ae-7d9f-4d70-9f8b-5124e9515b14/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/65b1ae-7d9f-4d70-9f8b-5124e9515b14/1/e6Ix0pxKI7PpixSBPawJg-OjQFk.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.192.20.0/22
176.62.176.0/20
185.13.44.0/22
IPv6:
2a01:4080::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
42291
Signature Algorithm: sha256WithRSAEncryption
1b:bf:a6:66:4d:50:ea:24:5f:c2:d0:81:cc:bf:b6:cd:1a:ab:
2a:6e:0e:5c:9d:4e:ee:1c:63:6e:a9:33:90:1e:9d:d3:b4:dd:
c9:6a:ef:1e:4b:bf:a6:f0:4a:e5:b4:07:71:3b:80:9e:80:a6:
19:77:e2:f0:af:e1:39:a8:9e:32:ee:a5:c5:e2:15:43:57:0a:
0a:c2:4a:5c:e0:ca:76:17:a4:fc:d3:e6:24:cd:bb:83:78:72:
bd:9e:df:76:89:10:f0:70:9a:b6:cc:8a:d9:e8:ea:e0:24:33:
97:0c:e7:fb:bf:5e:fa:80:64:f2:a7:8c:9e:9e:00:7a:e7:d8:
4b:10:91:47:e1:ec:55:5c:7f:31:09:cf:42:6c:88:53:d5:70:
b9:2d:fd:a0:85:92:56:ff:13:68:9e:1a:6e:54:61:c1:1d:9c:
d6:1a:ee:3c:ec:78:39:c9:44:0d:e2:aa:79:f3:61:55:46:8f:
ad:24:1d:b7:5c:e4:f0:b9:bc:02:0d:f9:cf:5f:71:2b:a7:77:
69:d0:16:22:41:2d:ac:31:57:1b:ad:45:1a:35:44:07:1b:79:
b1:d7:f4:da:af:f3:4d:01:f4:23:ee:01:ac:a5:2b:dd:34:f0:
3f:22:8c:61:2a:b3:7c:49:db:a2:7a:9b:b8:59:26:1f:c5:bd:
60:0e:2a:46
-----BEGIN CERTIFICATE-----
MIIFrzCCBJegAwIBAgISAY0BaNNP0OOEyLtuNXjBwBR5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTEzMDYwMTAzWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3YmEyMzFkMjljNGEyM2IzZTk4YjE0ODEzZGFjMDk4M2UzYTM0MDU5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsXxbjKqGydzy5LT3AkxUbPyTXAaU
OZq1aVaAvLeVjWz4ICrJhb7oFEi4yM5wCLCtTCalrLCd9Kf0d9ZABtLOAUZUw5al
98wET0CXV8NvQeVbcvKU9QMK9VvaqXwp9AOmIIdLXb8gd63l3dZ36+2PPeD0CkAo
PwLFWXZtEmW1aFPJVnnUoVFlr5smFFyG28I6f66njLZJEHcMdG8xKX3wd4Rb7hHw
71yO9UUf4uG/kYhUye6rcVnhb8lCVNM0vs7fPJPxLIfEtu+hu0xjo+47z33C2YmQ
NEhKzWGglL+4QcuJo20BCTVkFYlFvZ4XGtvQqlUTZWE5kQs4KxOz6cy7JQIDAQAB
o4ICuzCCArcwHQYDVR0OBBYEFHuiMdKcSiOz6YsUgT2sCYPjo0BZMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2RlLzY1YjFh
ZS03ZDlmLTRkNzAtOWY4Yi01MTI0ZTk1MTViMTQvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZGUvNjViMWFl
LTdkOWYtNGQ3MC05ZjhiLTUxMjRlOTUxNWIxNC8xL2U2SXgwcHhLSTdQcGl4U0JQ
YXdKZy1PalFGay5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDoGCCsGAQUF
BwEHAQH/BCswKTAYBAIAATASAwQCW8AUAwQEsD6wAwQCuQ0sMA0EAgACMAcDBQAq
AUCAMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwClMzANBgkqhkiG9w0BAQsFAAOC
AQEAG7+mZk1Q6iRfwtCBzL+2zRqrKm4OXJ1O7hxjbqkzkB6d07TdyWrvHku/pvBK
5bQHcTuAnoCmGXfi8K/hOaieMu6lxeIVQ1cKCsJKXODKdhek/NPmJM27g3hyvZ7f
dokQ8HCatsyK2ejq4CQzlwzn+79e+oBk8qeMnp4AeufYSxCRR+HsVVx/MQnPQmyI
U9VwuS39oIWSVv8TaJ4ablRhwR2c1hruPOx4OclEDeKqefNhVUaPrSQdt1zk8Lm8
Ag35z19xK6d3adAWIkEtrDFXG61FGjVEBxt5sdf02q/zTQH0I+4BrKUr3TTwPyKM
YSqzfEnbonqbuFkmH8W9YA4qRg==
-----END CERTIFICATE-----
Generated at Fri May 3 02:04:16 2024 by rpki-client on console-ams.rpki-client.org