Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/gwdvOrPvqmMo8KOPz0p_ljAEt3c.cer
File: gwdvOrPvqmMo8KOPz0p_ljAEt3c.cer (raw, json)
Hash identifier: RTb/yN16AezqCeTDtcbnuMmgRuSpOymdZ/dVN0abL6o=
Subject key identifier: 83:07:6F:3A:B3:EF:AA:63:28:F0:A3:8F:CF:4A:7F:96:30:04:B7:77
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC26D50AD779797B059D20A8A531D5CBF
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/ab/b88e0c-24cf-4fec-b118-9a6df39592c7/1/gwdvOrPvqmMo8KOPz0p_ljAEt3c.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/ab/b88e0c-24cf-4fec-b118-9a6df39592c7/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 00:29:53 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 203673
IP: 84.38.8.0/21
IP: 185.127.168.0/22
IP: 2a03:97e0::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:6d:50:ad:77:97:97:b0:59:d2:0a:8a:53:1d:5c:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 00:29:53 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=83076f3ab3efaa6328f0a38fcf4a7f963004b777
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:0c:dd:e0:66:d1:b3:23:ed:94:ca:6a:b6:ce:
f7:2c:9f:13:66:b5:79:6c:15:ca:10:bf:f2:2d:f5:
7b:d7:f2:b0:36:3d:68:18:34:27:2b:cf:09:1a:2b:
6c:4a:93:95:fb:3f:96:99:8f:28:e5:0a:ce:1a:5d:
27:17:11:c2:df:1f:9b:f0:58:b7:20:76:5a:aa:98:
53:98:a7:d3:43:77:69:0e:38:62:7a:f8:c2:bc:87:
de:54:08:40:9f:bf:1d:cc:3c:f6:bb:ab:8d:ee:44:
0d:5d:66:0d:f1:f2:c9:43:24:38:86:f6:2f:e9:b7:
44:6e:32:39:9f:d9:94:82:5d:50:3b:8a:46:3a:4e:
de:6d:b0:d2:5b:96:c0:f0:c6:d0:ab:01:5a:5c:9d:
be:8f:8f:f2:15:02:8a:3e:c8:af:cc:e6:e7:59:80:
8f:83:3f:54:21:fd:8c:5d:a0:47:6e:4e:95:df:9e:
f1:a6:16:c1:1f:02:6a:b8:5f:5f:83:08:bd:89:e9:
0c:29:71:08:d6:d4:d4:5a:bf:09:96:f3:7c:8d:f0:
8d:b8:c5:a2:26:ab:be:3d:fa:89:91:82:19:c9:7b:
4c:ad:61:38:82:12:b2:e1:c8:a5:e7:62:5a:e4:55:
8f:ab:e3:7f:cb:56:3e:af:f3:9f:5c:db:38:79:58:
57:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:07:6F:3A:B3:EF:AA:63:28:F0:A3:8F:CF:4A:7F:96:30:04:B7:77
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/b88e0c-24cf-4fec-b118-9a6df39592c7/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/b88e0c-24cf-4fec-b118-9a6df39592c7/1/gwdvOrPvqmMo8KOPz0p_ljAEt3c.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.38.8.0/21
185.127.168.0/22
IPv6:
2a03:97e0::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
203673
Signature Algorithm: sha256WithRSAEncryption
9a:7c:4b:a5:a1:2a:f1:9f:3a:9d:86:1f:3c:1b:ec:2c:51:a7:
08:f6:f6:d5:f4:40:4e:86:32:52:a2:b2:9d:1d:de:6b:d6:ef:
d6:b9:00:c7:99:79:37:76:86:84:21:1d:b4:63:8a:91:6b:bd:
50:91:c0:a2:c7:fb:96:ea:52:dd:75:c2:f9:e0:d7:ea:40:1b:
b7:25:f8:ef:b4:62:cb:b6:df:85:04:d9:67:24:7f:77:ab:dd:
d8:62:7f:6c:b4:64:c5:1b:b8:df:f5:46:60:f1:ea:1f:64:4d:
37:f9:3f:65:52:3f:58:43:11:88:09:71:03:6f:e6:94:be:99:
dc:04:ee:8d:43:65:72:ac:7e:cb:e5:ae:19:0c:b8:4c:89:e2:
7e:42:ca:74:95:f4:0e:78:68:08:d0:ec:fa:0d:b5:20:69:63:
33:c1:14:05:c8:a6:1f:56:95:9d:70:eb:70:30:8a:f6:06:9c:
fb:7d:58:16:2f:ef:39:43:5a:53:6b:42:ed:5a:5a:23:49:0e:
ce:45:12:5e:78:ab:63:3c:2c:65:67:25:2f:a9:03:77:45:67:
d8:77:8c:9d:8e:08:2b:be:1f:91:05:c4:94:ba:2a:a2:99:57:
13:85:31:11:e9:06:09:7d:83:44:ae:99:86:01:47:54:c8:51:
c9:96:76:5b
-----BEGIN CERTIFICATE-----
MIIFqTCCBJGgAwIBAgISAYzCbVCtd5eXsFnSCopTHVy/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAxMDAyOTUzWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MzA3NmYzYWIzZWZhYTYzMjhmMGEzOGZjZjRhN2Y5NjMwMDRiNzc3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqwzd4GbRsyPtlMpqts73LJ8TZrV5
bBXKEL/yLfV71/KwNj1oGDQnK88JGitsSpOV+z+WmY8o5QrOGl0nFxHC3x+b8Fi3
IHZaqphTmKfTQ3dpDjhievjCvIfeVAhAn78dzDz2u6uN7kQNXWYN8fLJQyQ4hvYv
6bdEbjI5n9mUgl1QO4pGOk7ebbDSW5bA8MbQqwFaXJ2+j4/yFQKKPsivzObnWYCP
gz9UIf2MXaBHbk6V357xphbBHwJquF9fgwi9iekMKXEI1tTUWr8JlvN8jfCNuMWi
Jqu+PfqJkYIZyXtMrWE4ghKy4cil52Ja5FWPq+N/y1Y+r/OfXNs4eVhXrwIDAQAB
o4ICtTCCArEwHQYDVR0OBBYEFIMHbzqz76pjKPCjj89Kf5YwBLd3MB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2FiL2I4OGUw
Yy0yNGNmLTRmZWMtYjExOC05YTZkZjM5NTkyYzcvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYWIvYjg4ZTBj
LTI0Y2YtNGZlYy1iMTE4LTlhNmRmMzk1OTJjNy8xL2d3ZHZPclB2cW1NbzhLT1B6
MHBfbGpBRXQzYy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDQGCCsGAQUF
BwEHAQH/BCUwIzASBAIAATAMAwQDVCYIAwQCuX+oMA0EAgACMAcDBQAqA5fgMBoG
CCsGAQUFBwEIAQH/BAswCaAHMAUCAwMbmTANBgkqhkiG9w0BAQsFAAOCAQEAmnxL
paEq8Z86nYYfPBvsLFGnCPb21fRAToYyUqKynR3ea9bv1rkAx5l5N3aGhCEdtGOK
kWu9UJHAosf7lupS3XXC+eDX6kAbtyX477Riy7bfhQTZZyR/d6vd2GJ/bLRkxRu4
3/VGYPHqH2RNN/k/ZVI/WEMRiAlxA2/mlL6Z3ATujUNlcqx+y+WuGQy4TInifkLK
dJX0DnhoCNDs+g21IGljM8EUBcimH1aVnXDrcDCK9gac+31YFi/vOUNaU2tC7Vpa
I0kOzkUSXnirYzwsZWclL6kDd0Vn2HeMnY4IK74fkQXElLoqoplXE4UxEekGCX2D
RK6ZhgFHVMhRyZZ2Ww==
-----END CERTIFICATE-----
Generated at Sat Nov 23 11:02:23 2024 by rpki-client on console-ams.rpki-client.org