Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/goIekswnAHYZMDmOI4DCOqR1XxY.cer
File: goIekswnAHYZMDmOI4DCOqR1XxY.cer (raw, json)
Hash identifier: Cso4d5/O6O+xC9YG/6v82Ew6fD8EYzY0+Q4RCik6ILI=
Subject key identifier: 82:82:1E:92:CC:27:00:76:19:30:39:8E:23:80:C2:3A:A4:75:5F:16
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC80111AA16413970A6AA70729202D3E6
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/0f/1b3bc0-faed-48fb-b3f0-08b62b8efe71/1/goIekswnAHYZMDmOI4DCOqR1XxY.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/0f/1b3bc0-faed-48fb-b3f0-08b62b8efe71/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 02:29:22 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 204136
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:11:aa:16:41:39:70:a6:aa:70:72:92:02:d3:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 02:29:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=82821e92cc2700761930398e2380c23aa4755f16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:eb:e8:53:c6:d0:a0:e5:5e:09:50:01:97:8d:
77:68:e1:d1:6c:9f:9e:c1:21:11:70:8b:c0:cb:a3:
fa:11:ed:02:99:8e:27:19:44:8d:73:ab:78:0b:a7:
81:e6:b9:ff:87:37:a2:eb:e1:e0:b9:7f:db:86:5a:
40:b6:8e:fb:a2:b3:40:f7:56:7c:d4:21:29:76:f5:
90:3a:a3:17:2b:0e:f3:18:96:ca:87:4b:3f:ee:c6:
1d:2f:d4:0b:b3:e3:91:f7:45:7b:e6:65:87:e0:f4:
af:85:ee:a8:b5:ad:aa:0c:d4:a0:89:0a:e3:70:44:
fb:a7:d6:88:fa:b6:a4:3e:2e:c0:fc:2e:a9:c7:f0:
6f:e4:6f:9c:4e:e0:02:30:a7:09:d9:b1:f0:a4:fe:
90:c2:a7:44:6b:06:5d:07:37:c9:38:05:e5:1c:ce:
7b:91:26:f5:e7:ab:3c:8b:e1:93:c8:04:1d:50:8e:
03:bb:b8:44:27:8d:b1:03:de:c1:19:78:91:ad:a4:
a8:03:02:80:d4:67:55:fd:74:0b:e3:29:91:26:45:
0c:8a:fc:72:bf:d7:f7:ed:8e:2c:b2:9a:37:f1:d3:
b1:a5:43:c2:ca:e9:d2:72:06:df:63:2e:40:68:e2:
28:7d:54:cc:83:8c:ce:2d:32:1e:6e:37:88:ec:db:
08:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:82:1E:92:CC:27:00:76:19:30:39:8E:23:80:C2:3A:A4:75:5F:16
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/1b3bc0-faed-48fb-b3f0-08b62b8efe71/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/1b3bc0-faed-48fb-b3f0-08b62b8efe71/1/goIekswnAHYZMDmOI4DCOqR1XxY.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
204136
Signature Algorithm: sha256WithRSAEncryption
72:bc:88:63:c6:15:7c:47:d7:a7:61:82:ab:52:5b:20:37:8a:
70:52:03:33:14:ef:5b:37:7e:33:80:4a:54:89:27:87:54:b4:
51:61:cd:65:d1:0c:37:6d:fc:7b:c7:b8:16:00:71:86:df:34:
ca:0a:43:1e:68:96:2f:c1:bd:b4:8a:e0:c2:14:18:b5:3d:76:
78:64:8e:94:2d:69:d4:d7:49:44:01:03:fd:77:d3:ed:88:b9:
9d:56:ef:86:a4:16:c9:16:9e:c4:75:1b:3c:4f:0b:b0:83:06:
c3:2e:b6:f9:de:00:0f:c7:ac:7d:4a:b7:91:3c:17:fe:b0:58:
6b:cb:d9:5e:a8:ff:28:17:76:aa:79:d7:b7:1f:38:93:b2:cd:
11:7f:f6:ec:66:c7:ca:95:ce:93:4c:a8:cb:af:8d:cf:a5:e7:
a6:82:97:be:f5:9f:2d:bc:7b:cf:ef:74:b1:91:0f:7b:a0:fd:
39:66:61:9b:7f:41:9f:09:85:6a:7f:94:ed:65:c1:45:b4:44:
1f:b6:26:54:d7:47:e6:9c:d4:be:c4:d4:2b:aa:03:e7:35:c7:
04:1e:ef:f1:95:9f:2b:ce:e0:8a:d0:9d:fa:b3:26:a4:88:77:
06:e0:a1:05:18:5d:54:9f:37:9e:3f:50:94:39:ee:84:8a:04:
81:3d:b0:9f
-----BEGIN CERTIFICATE-----
MIIFczCCBFugAwIBAgISAYzIARGqFkE5cKaqcHKSAtPmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAyMDIyOTIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MjgyMWU5MmNjMjcwMDc2MTkzMDM5OGUyMzgwYzIzYWE0NzU1ZjE2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApOvoU8bQoOVeCVABl413aOHRbJ+e
wSERcIvAy6P6Ee0CmY4nGUSNc6t4C6eB5rn/hzei6+HguX/bhlpAto77orNA91Z8
1CEpdvWQOqMXKw7zGJbKh0s/7sYdL9QLs+OR90V75mWH4PSvhe6ota2qDNSgiQrj
cET7p9aI+rakPi7A/C6px/Bv5G+cTuACMKcJ2bHwpP6QwqdEawZdBzfJOAXlHM57
kSb156s8i+GTyAQdUI4Du7hEJ42xA97BGXiRraSoAwKA1GdV/XQL4ymRJkUMivxy
v9f37Y4sspo38dOxpUPCyunScgbfYy5AaOIofVTMg4zOLTIebjeI7NsIOwIDAQAB
o4ICfzCCAnswHQYDVR0OBBYEFIKCHpLMJwB2GTA5jiOAwjqkdV8WMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzBmLzFiM2Jj
MC1mYWVkLTQ4ZmItYjNmMC0wOGI2MmI4ZWZlNzEvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMGYvMWIzYmMw
LWZhZWQtNDhmYi1iM2YwLTA4YjYyYjhlZmU3MS8xL2dvSWVrc3duQUhZWk1EbU9J
NERDT3FSMVh4WS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMBoGCCsGAQUF
BwEIAQH/BAswCaAHMAUCAwMdaDANBgkqhkiG9w0BAQsFAAOCAQEAcryIY8YVfEfX
p2GCq1JbIDeKcFIDMxTvWzd+M4BKVIknh1S0UWHNZdEMN238e8e4FgBxht80ygpD
HmiWL8G9tIrgwhQYtT12eGSOlC1p1NdJRAED/XfT7Yi5nVbvhqQWyRaexHUbPE8L
sIMGwy62+d4AD8esfUq3kTwX/rBYa8vZXqj/KBd2qnnXtx84k7LNEX/27GbHypXO
k0yoy6+Nz6XnpoKXvvWfLbx7z+90sZEPe6D9OWZhm39BnwmFan+U7WXBRbREH7Ym
VNdH5pzUvsTUK6oD5zXHBB7v8ZWfK87gitCd+rMmpIh3BuChBRhdVJ83nj9QlDnu
hIoEgT2wnw==
-----END CERTIFICATE-----
Generated at Fri May 3 02:09:34 2024 by rpki-client on console-ams.rpki-client.org