Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/g06Y-uclpT43QqjU7ehT9P9juRM.cer
File: g06Y-uclpT43QqjU7ehT9P9juRM.cer (raw, json)
Hash identifier: Il0BfCW5Cp7VlbIKG35y3pSF7u1LikKYa5onsfUjUuI=
Subject key identifier: 83:4E:98:FA:E7:25:A5:3E:37:42:A8:D4:ED:E8:53:F4:FF:63:B9:13
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0191268EB9175EAEA7934474282DDFF76A3D
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/87/576933-8a5b-4dcb-ac1f-1a529b2f5d97/1/g06Y-uclpT43QqjU7ehT9P9juRM.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/87/576933-8a5b-4dcb-ac1f-1a529b2f5d97/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 06 Aug 2024 07:19:33 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 42086
IP: 2001:678:cc4::/48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:26:8e:b9:17:5e:ae:a7:93:44:74:28:2d:df:f7:6a:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Aug 6 07:19:33 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=834e98fae725a53e3742a8d4ede853f4ff63b913
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:9e:24:ae:b2:e4:fc:7f:36:75:65:75:bf:7a:
d6:cf:05:c0:58:2f:ec:f6:89:6d:8e:49:f3:3d:b4:
13:b8:61:83:bb:0b:d2:d5:7f:fe:8b:00:df:0c:e3:
a4:f2:fb:d2:4a:9d:a8:b9:12:f4:05:b6:fa:d6:dc:
8c:41:c2:67:19:bb:93:98:76:cd:62:60:d3:2e:f6:
cc:cf:84:da:2b:e2:17:8d:d5:17:47:fc:dd:cf:f9:
fa:3d:1c:e3:48:b7:0c:1e:fd:e6:e8:d8:ce:95:e5:
65:2d:0f:a9:6a:17:12:1f:23:54:18:97:1c:ef:59:
18:21:77:0d:73:ac:2f:10:73:ff:07:f2:0b:5f:3a:
7d:f7:3a:a6:81:91:55:01:81:a1:a5:44:85:96:82:
d8:cd:45:6d:d1:fb:37:71:a3:b4:24:58:0f:62:0c:
f2:32:30:5f:84:87:a1:fe:47:eb:a9:09:f2:fe:40:
0d:38:b2:ca:b7:a1:88:de:a7:0e:bb:39:e3:16:66:
c0:0a:9b:da:ca:c8:ab:7f:ff:31:15:9c:63:b7:19:
bb:25:81:e5:10:9a:c6:50:1f:d3:ea:2b:f7:43:f8:
d2:40:da:4e:e5:ee:21:61:09:da:31:bf:08:fc:1f:
36:ba:2c:0f:85:3f:05:32:85:6e:6e:1a:d7:4e:af:
dd:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:4E:98:FA:E7:25:A5:3E:37:42:A8:D4:ED:E8:53:F4:FF:63:B9:13
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/576933-8a5b-4dcb-ac1f-1a529b2f5d97/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/576933-8a5b-4dcb-ac1f-1a529b2f5d97/1/g06Y-uclpT43QqjU7ehT9P9juRM.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:cc4::/48
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
42086
Signature Algorithm: sha256WithRSAEncryption
23:5a:5c:8f:2f:1d:e6:05:9d:43:47:8c:ee:a4:c2:49:f1:85:
80:80:17:5c:99:55:00:c9:b9:6a:87:b2:5e:94:64:d5:5c:49:
18:a3:27:55:f9:5c:57:4e:b6:3e:46:15:3d:09:d2:fb:bf:72:
0a:e5:dd:6c:48:6d:7b:19:e4:48:f5:13:75:a7:1a:fc:56:ac:
4d:14:15:94:47:37:d6:8e:cc:e2:a6:9d:c5:9d:62:eb:f7:4b:
02:2c:a2:c7:85:e7:8b:67:92:4a:fc:86:58:82:1a:20:80:32:
d0:5f:2d:fe:c4:76:c4:75:31:0f:c4:72:2d:48:17:77:40:7e:
25:45:36:af:a1:64:93:05:d1:60:f5:ce:0b:82:d4:68:98:a1:
38:97:bd:ae:e1:4a:a2:e2:a2:40:44:b8:a4:3d:0f:3b:ff:3c:
f3:3a:d2:be:a5:38:89:5b:34:61:f5:04:5d:74:1a:c6:9a:83:
0c:4a:35:2c:eb:4d:6f:b8:d2:40:87:63:2d:3e:bc:3e:9b:f3:
da:38:2a:25:7d:de:b5:40:e9:ff:2b:5c:56:7d:dc:0a:e1:dc:
03:76:a2:18:36:87:c0:3e:8e:19:23:ae:7b:9f:8e:2e:f5:81:
a1:31:36:19:00:5d:d0:ee:7f:7f:b1:f8:10:6a:8d:de:3e:ad:
91:bf:a8:87
-----BEGIN CERTIFICATE-----
MIIFlzCCBH+gAwIBAgISAZEmjrkXXq6nk0R0KC3f92o9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwODA2MDcxOTMzWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MzRlOThmYWU3MjVhNTNlMzc0MmE4ZDRlZGU4NTNmNGZmNjNiOTEzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtp4krrLk/H82dWV1v3rWzwXAWC/s
9oltjknzPbQTuGGDuwvS1X/+iwDfDOOk8vvSSp2ouRL0Bbb61tyMQcJnGbuTmHbN
YmDTLvbMz4TaK+IXjdUXR/zdz/n6PRzjSLcMHv3m6NjOleVlLQ+pahcSHyNUGJcc
71kYIXcNc6wvEHP/B/ILXzp99zqmgZFVAYGhpUSFloLYzUVt0fs3caO0JFgPYgzy
MjBfhIeh/kfrqQny/kANOLLKt6GI3qcOuznjFmbACpvaysirf/8xFZxjtxm7JYHl
EJrGUB/T6iv3Q/jSQNpO5e4hYQnaMb8I/B82uiwPhT8FMoVubhrXTq/d2QIDAQAB
o4ICozCCAp8wHQYDVR0OBBYEFINOmPrnJaU+N0Ko1O3oU/T/Y7kTMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzg3LzU3Njkz
My04YTViLTRkY2ItYWMxZi0xYTUyOWIyZjVkOTcvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODcvNTc2OTMz
LThhNWItNGRjYi1hYzFmLTFhNTI5YjJmNWQ5Ny8xL2cwNlktdWNscFQ0M1FxalU3
ZWhUOVA5anVSTS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF
BwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGeAzEMBoGCCsGAQUFBwEIAQH/BAswCaAH
MAUCAwCkZjANBgkqhkiG9w0BAQsFAAOCAQEAI1pcjy8d5gWdQ0eM7qTCSfGFgIAX
XJlVAMm5aoeyXpRk1VxJGKMnVflcV062PkYVPQnS+79yCuXdbEhtexnkSPUTdaca
/FasTRQVlEc31o7M4qadxZ1i6/dLAiyix4Xni2eSSvyGWIIaIIAy0F8t/sR2xHUx
D8RyLUgXd0B+JUU2r6FkkwXRYPXOC4LUaJihOJe9ruFKouKiQES4pD0PO/888zrS
vqU4iVs0YfUEXXQaxpqDDEo1LOtNb7jSQIdjLT68Ppvz2jgqJX3etUDp/ytcVn3c
CuHcA3aiGDaHwD6OGSOue5+OLvWBoTE2GQBd0O5/f7H4EGqN3j6tkb+ohw==
-----END CERTIFICATE-----
Generated at Sat Nov 23 03:43:45 2024 by rpki-client on console-fra.rpki-client.org