Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ewGNKlH-8tdsYmAFVsZtV8t-knA.cer
File: ewGNKlH-8tdsYmAFVsZtV8t-knA.cer (raw, json)
Hash identifier: vqwPsMq6xRp2ulnX5KjeDB6+6SER12oApA5eTMBiNmY=
Subject key identifier: 7B:01:8D:2A:51:FE:F2:D7:6C:62:60:05:56:C6:6D:57:CB:7E:92:70
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC349237F7D65FF3F482B8C2344D12997
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/80/e6fd0d-a02b-49c2-9a2c-4dc2dd56d57f/1/ewGNKlH-8tdsYmAFVsZtV8t-knA.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/80/e6fd0d-a02b-49c2-9a2c-4dc2dd56d57f/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 04:29:59 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 201596
AS: 207700
IP: 141.195.32.0/19
IP: 185.47.248.0/22
IP: 185.58.136.0/22
IP: 2a01:80e0::/29
IP: 2a02:6420::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:49:23:7f:7d:65:ff:3f:48:2b:8c:23:44:d1:29:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 04:29:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7b018d2a51fef2d76c62600556c66d57cb7e9270
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:75:7e:ac:1e:4a:df:0b:00:d1:bc:54:b8:92:
3c:da:44:fe:bc:c2:13:54:85:35:0e:bd:87:fe:45:
d6:bc:64:f4:e2:e7:20:d2:1c:51:49:0a:b5:66:35:
47:f0:9c:fc:e4:f3:b7:e4:ab:9b:5e:31:b4:19:9a:
a1:2b:19:d5:ba:a2:8e:1f:77:3a:e1:9b:ec:d1:20:
a0:5d:e7:71:de:40:e4:d0:d6:0f:de:59:0f:cd:3f:
d7:23:c4:53:d1:75:28:94:70:55:fa:50:e4:4d:9a:
e0:2b:21:25:81:c7:8d:36:e5:00:25:da:fa:2e:f8:
1f:10:ff:80:97:6d:94:27:90:8a:f4:62:b0:9f:88:
69:2a:e0:dc:29:9d:e2:39:e6:38:a2:87:09:c4:9c:
eb:1b:21:b3:78:c5:6c:71:4f:4a:47:05:cd:b2:ba:
a7:e6:60:a8:85:4c:3b:c5:39:1c:37:9f:c2:69:d9:
ce:ec:68:2a:a2:e0:d0:80:0d:f4:25:f4:ef:92:73:
18:fd:da:96:47:52:7f:2c:c8:a1:70:c1:70:18:90:
c3:a3:81:06:02:c7:be:f8:09:5a:cc:f3:b5:f4:46:
31:0e:02:6e:6b:61:7c:2d:bf:08:3d:83:c6:92:43:
c5:42:01:9d:1a:d3:88:97:59:61:b8:cd:94:37:a9:
ac:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:01:8D:2A:51:FE:F2:D7:6C:62:60:05:56:C6:6D:57:CB:7E:92:70
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/e6fd0d-a02b-49c2-9a2c-4dc2dd56d57f/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/e6fd0d-a02b-49c2-9a2c-4dc2dd56d57f/1/ewGNKlH-8tdsYmAFVsZtV8t-knA.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.195.32.0/19
185.47.248.0/22
185.58.136.0/22
IPv6:
2a01:80e0::/29
2a02:6420::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
201596
207700
Signature Algorithm: sha256WithRSAEncryption
34:7e:0b:39:0c:17:5f:db:57:e9:e8:9b:a6:19:25:a7:26:b0:
ec:2a:ea:f0:47:9c:fb:e5:50:56:c2:9d:82:f6:19:01:19:9f:
10:d5:44:82:ad:c3:3e:ca:63:56:f5:fa:50:d9:dd:bc:b4:8f:
1f:b7:77:b6:f2:94:84:72:46:ab:99:43:a2:39:8c:49:75:f0:
0c:04:8a:f1:13:8c:af:7b:c4:23:e3:ad:29:13:f8:e5:a6:10:
1b:87:80:4e:47:0d:96:d3:69:ad:20:98:40:a9:6a:38:3e:33:
c9:98:87:98:14:e9:8f:7d:a6:44:47:f3:cd:79:23:44:52:3a:
89:1c:85:38:eb:48:57:66:55:ef:ed:97:08:d0:87:90:86:56:
2a:cc:c2:b0:c4:95:ee:9c:98:80:70:8e:84:ec:67:d2:8f:83:
f7:9c:f5:93:c6:df:a9:db:c6:a1:04:d6:16:90:ac:cc:4f:a7:
39:fc:ab:1a:42:8f:a0:68:2a:7f:63:67:e6:61:7b:b6:6c:ec:
80:ea:85:22:6f:7d:5f:01:90:c4:27:24:68:1f:21:fe:92:82:
75:f9:11:04:5c:2e:78:b6:99:08:b2:78:8f:50:03:4c:cc:de:
02:20:70:bd:11:33:9c:8b:15:c8:7e:b2:10:9e:f3:9d:85:32:
34:61:a4:f2
-----BEGIN CERTIFICATE-----
MIIFuzCCBKOgAwIBAgISAYzDSSN/fWX/P0grjCNE0SmXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAxMDQyOTU5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3YjAxOGQyYTUxZmVmMmQ3NmM2MjYwMDU1NmM2NmQ1N2NiN2U5MjcwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu3V+rB5K3wsA0bxUuJI82kT+vMIT
VIU1Dr2H/kXWvGT04ucg0hxRSQq1ZjVH8Jz85PO35KubXjG0GZqhKxnVuqKOH3c6
4Zvs0SCgXedx3kDk0NYP3lkPzT/XI8RT0XUolHBV+lDkTZrgKyElgceNNuUAJdr6
LvgfEP+Al22UJ5CK9GKwn4hpKuDcKZ3iOeY4oocJxJzrGyGzeMVscU9KRwXNsrqn
5mCohUw7xTkcN5/CadnO7GgqouDQgA30JfTvknMY/dqWR1J/LMihcMFwGJDDo4EG
Ase++AlazPO19EYxDgJua2F8Lb8IPYPGkkPFQgGdGtOIl1lhuM2UN6msxwIDAQAB
o4ICxzCCAsMwHQYDVR0OBBYEFHsBjSpR/vLXbGJgBVbGbVfLfpJwMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzgwL2U2ZmQw
ZC1hMDJiLTQ5YzItOWEyYy00ZGMyZGQ1NmQ1N2YvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODAvZTZmZDBk
LWEwMmItNDljMi05YTJjLTRkYzJkZDU2ZDU3Zi8xL2V3R05LbEgtOHRkc1ltQUZW
c1p0Vjh0LWtuQS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMEEGCCsGAQUF
BwEHAQH/BDIwMDAYBAIAATASAwQFjcMgAwQCuS/4AwQCuTqIMBQEAgACMA4DBQMq
AYDgAwUAKgJkIDAfBggrBgEFBQcBCAEB/wQQMA6gDDAKAgMDE3wCAwMrVDANBgkq
hkiG9w0BAQsFAAOCAQEANH4LOQwXX9tX6eibphklpyaw7Crq8Eec++VQVsKdgvYZ
ARmfENVEgq3DPspjVvX6UNndvLSPH7d3tvKUhHJGq5lDojmMSXXwDASK8ROMr3vE
I+OtKRP45aYQG4eATkcNltNprSCYQKlqOD4zyZiHmBTpj32mREfzzXkjRFI6iRyF
OOtIV2ZV7+2XCNCHkIZWKszCsMSV7pyYgHCOhOxn0o+D95z1k8bfqdvGoQTWFpCs
zE+nOfyrGkKPoGgqf2Nn5mF7tmzsgOqFIm99XwGQxCckaB8h/pKCdfkRBFwueLaZ
CLJ4j1ADTMzeAiBwvREznIsVyH6yEJ7znYUyNGGk8g==
-----END CERTIFICATE-----
Generated at Fri May 3 10:46:24 2024 by rpki-client on console-fra.rpki-client.org