Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/iMaZNJivBRiWLl9I1chG3BddGIQ.cer
File: iMaZNJivBRiWLl9I1chG3BddGIQ.cer (raw, json)
Hash identifier: Eyz/MjvO2F9YckpC59U4Jg35E3VrTvBsvb+bjoRqIwA=
Subject key identifier: 88:C6:99:34:98:AF:05:18:96:2E:5F:48:D5:C8:46:DC:17:5D:18:84
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC2DB62ED4BB1B7BD99709DCA98333A22
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/3d/81b00a-f68d-44f4-8825-982736b45bdf/1/iMaZNJivBRiWLl9I1chG3BddGIQ.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/3d/81b00a-f68d-44f4-8825-982736b45bdf/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 02:30:06 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 207801
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:db:62:ed:4b:b1:b7:bd:99:70:9d:ca:98:33:3a:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 02:30:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=88c6993498af0518962e5f48d5c846dc175d1884
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:9e:e0:d6:b3:e0:09:62:f8:d6:bf:74:bb:ca:
7b:f0:55:7a:d2:c4:a7:e3:66:48:e3:11:fa:38:e6:
71:3d:5f:c7:9a:bd:b5:4b:c9:24:c4:47:eb:16:47:
82:a7:5c:7b:b0:78:f4:38:19:d8:01:f8:ae:47:17:
ab:8a:7d:fd:3f:b2:92:b4:f0:73:4d:44:e2:dc:c6:
bd:f4:79:a4:f1:72:62:f7:2b:b7:31:fc:10:fe:9d:
e8:b2:88:ee:82:5e:84:e2:3e:e5:b4:a7:ed:e0:35:
b0:43:d6:1b:07:fc:5f:4b:55:aa:ac:09:93:7c:ed:
df:8f:74:51:0e:a5:2a:28:4c:b6:30:57:f4:04:88:
c5:2e:ea:d1:ec:4c:9c:a0:a5:b7:5f:71:0b:42:94:
9c:4b:18:0e:ba:b5:2d:1f:33:5f:c7:9e:5b:44:33:
15:f4:ee:74:7a:fb:ba:20:c0:76:0a:25:bf:ba:c9:
95:21:0d:1a:84:0f:bd:e1:42:61:fd:10:ab:da:88:
68:8a:ab:13:15:81:54:40:1b:86:fa:28:ec:12:91:
fd:25:5f:e4:9e:50:e0:de:39:d6:29:d9:72:0b:bd:
b0:21:2c:ba:d0:31:56:20:ad:06:7e:ee:8b:bd:40:
ee:de:09:b4:48:af:01:4c:9c:06:40:2b:a1:6d:dc:
90:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:C6:99:34:98:AF:05:18:96:2E:5F:48:D5:C8:46:DC:17:5D:18:84
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/81b00a-f68d-44f4-8825-982736b45bdf/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/81b00a-f68d-44f4-8825-982736b45bdf/1/iMaZNJivBRiWLl9I1chG3BddGIQ.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
207801
Signature Algorithm: sha256WithRSAEncryption
05:66:7a:4f:43:cd:99:0d:f1:23:c9:2f:8b:9f:04:fe:fc:28:
7f:f0:09:b2:45:8b:7b:ff:9c:15:ad:5e:d3:88:c8:57:df:51:
36:7d:8c:88:d0:fb:a8:bf:7f:3c:94:9b:22:bb:d3:29:7e:2d:
51:41:8c:84:78:c1:50:bc:f2:90:ff:20:1b:df:66:ed:34:8c:
6f:d3:58:0a:5b:a7:6d:2f:c4:8d:73:e7:45:11:0a:31:bc:c7:
9c:8e:15:5f:fd:03:47:4b:08:d2:15:af:63:a7:b6:af:35:8c:
ef:bf:79:5d:31:94:d9:38:f8:22:e3:13:2f:c1:15:53:cc:cc:
83:c9:ee:87:d4:84:31:62:a7:b1:c6:49:b3:ed:00:b9:14:02:
73:16:0d:90:66:c8:a5:59:2c:81:eb:33:37:e0:bf:8c:5e:99:
64:b0:9b:0d:1d:79:ed:14:08:6e:47:2d:19:6a:7f:a8:5d:99:
74:3b:71:2e:1b:68:22:f1:6c:d5:3d:cc:77:15:8d:c3:db:71:
d4:86:ce:a9:cd:e0:a8:07:f3:bc:94:2c:0c:df:a3:a7:77:ff:
cc:73:52:18:1e:44:e3:c2:2d:63:26:2a:98:e3:5a:0f:84:1b:
39:61:05:d0:07:a1:93:5a:7a:3d:71:84:dd:6e:24:bb:8a:46:
3d:da:ed:ee
-----BEGIN CERTIFICATE-----
MIIFczCCBFugAwIBAgISAYzC22LtS7G3vZlwncqYMzoiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAxMDIzMDA2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4OGM2OTkzNDk4YWYwNTE4OTYyZTVmNDhkNWM4NDZkYzE3NWQxODg0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy57g1rPgCWL41r90u8p78FV60sSn
42ZI4xH6OOZxPV/Hmr21S8kkxEfrFkeCp1x7sHj0OBnYAfiuRxerin39P7KStPBz
TUTi3Ma99Hmk8XJi9yu3MfwQ/p3osojugl6E4j7ltKft4DWwQ9YbB/xfS1WqrAmT
fO3fj3RRDqUqKEy2MFf0BIjFLurR7EycoKW3X3ELQpScSxgOurUtHzNfx55bRDMV
9O50evu6IMB2CiW/usmVIQ0ahA+94UJh/RCr2ohoiqsTFYFUQBuG+ijsEpH9JV/k
nlDg3jnWKdlyC72wISy60DFWIK0Gfu6LvUDu3gm0SK8BTJwGQCuhbdyQowIDAQAB
o4ICfzCCAnswHQYDVR0OBBYEFIjGmTSYrwUYli5fSNXIRtwXXRiEMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzNkLzgxYjAw
YS1mNjhkLTQ0ZjQtODgyNS05ODI3MzZiNDViZGYvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvM2QvODFiMDBh
LWY2OGQtNDRmNC04ODI1LTk4MjczNmI0NWJkZi8xL2lNYVpOSml2QlJpV0xsOUkx
Y2hHM0JkZEdJUS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMBoGCCsGAQUF
BwEIAQH/BAswCaAHMAUCAwMruTANBgkqhkiG9w0BAQsFAAOCAQEABWZ6T0PNmQ3x
I8kvi58E/vwof/AJskWLe/+cFa1e04jIV99RNn2MiND7qL9/PJSbIrvTKX4tUUGM
hHjBULzykP8gG99m7TSMb9NYClunbS/EjXPnRREKMbzHnI4VX/0DR0sI0hWvY6e2
rzWM7795XTGU2Tj4IuMTL8EVU8zMg8nuh9SEMWKnscZJs+0AuRQCcxYNkGbIpVks
geszN+C/jF6ZZLCbDR157RQIbkctGWp/qF2ZdDtxLhtoIvFs1T3MdxWNw9tx1IbO
qc3gqAfzvJQsDN+jp3f/zHNSGB5E48ItYyYqmONaD4QbOWEF0Aehk1p6PXGE3W4k
u4pGPdrt7g==
-----END CERTIFICATE-----
Generated at Fri May 3 03:37:04 2024 by rpki-client on console-fra.rpki-client.org