Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/jWTkPHW9xRHVJPDIXQCcunaVYUQ.cer
File: jWTkPHW9xRHVJPDIXQCcunaVYUQ.cer (raw, json)
Hash identifier: EMZ2xTAAdNn+gvP2pTCTH/e+lDDO7h8oV9Zsg7KlR8c=
Subject key identifier: 8D:64:E4:3C:75:BD:C5:11:D5:24:F0:C8:5D:00:9C:BA:76:95:61:44
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC6B8FC6E8852762ECC8442E2E063C23D
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/59/6f9b09-a59e-4f90-87c7-72448352b807/1/jWTkPHW9xRHVJPDIXQCcunaVYUQ.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/59/6f9b09-a59e-4f90-87c7-72448352b807/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 20:31:01 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 61349
IP: 45.153.0.0/22
IP: 91.199.236.0/24
IP: 91.205.212.0/22
IP: 185.29.200.0/22
IP: 185.173.12.0/22
IP: 193.178.196.0/22
IP: 2a04:4340::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b8:fc:6e:88:52:76:2e:cc:84:42:e2:e0:63:c2:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 20:31:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8d64e43c75bdc511d524f0c85d009cba76956144
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:78:ca:08:cc:13:3c:d7:37:cb:21:dc:db:60:
8d:b3:ee:05:c3:42:8b:2a:26:38:d9:b9:10:3c:68:
99:24:48:73:28:7e:23:df:e2:94:73:51:4f:d2:c2:
25:bd:a2:eb:88:79:e8:24:56:65:7d:82:85:4c:ca:
ae:79:ce:2e:10:3c:cd:5b:ba:04:b0:bd:71:cd:18:
f6:6a:e2:81:4f:7c:da:a6:0b:ba:ba:1d:82:e0:54:
14:99:0e:fc:26:f8:a6:04:15:ba:7c:18:e8:6a:e7:
85:a1:6d:ef:d7:1e:57:c6:d8:c8:c9:19:f0:49:f8:
2a:5a:8d:b3:97:17:19:42:f0:a5:02:bf:09:35:0f:
41:2c:19:84:f0:72:b2:be:95:1c:c5:ec:d2:85:16:
78:08:23:7f:d1:35:ec:a5:56:04:b9:0d:84:7a:2e:
83:8a:33:3a:c2:ef:e3:27:df:1f:92:f8:7b:a9:13:
b2:18:1e:8d:21:df:ce:6c:20:ee:6e:3f:47:0a:34:
fa:61:ed:28:c3:3a:16:7d:d1:14:c7:aa:f7:49:b5:
60:e2:3e:2b:0f:f3:ea:1f:77:95:f1:6d:c5:2e:a0:
ef:a7:c8:c4:f4:7b:0f:f2:3f:08:8b:c5:08:19:bc:
e5:f0:d9:c6:fb:6c:31:90:73:3d:b8:ee:d3:c1:94:
4a:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:64:E4:3C:75:BD:C5:11:D5:24:F0:C8:5D:00:9C:BA:76:95:61:44
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/6f9b09-a59e-4f90-87c7-72448352b807/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/6f9b09-a59e-4f90-87c7-72448352b807/1/jWTkPHW9xRHVJPDIXQCcunaVYUQ.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.153.0.0/22
91.199.236.0/24
91.205.212.0/22
185.29.200.0/22
185.173.12.0/22
193.178.196.0/22
IPv6:
2a04:4340::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
61349
Signature Algorithm: sha256WithRSAEncryption
95:cf:df:ed:77:ef:0b:d9:12:bb:69:87:56:3b:3a:b4:7a:16:
a7:f2:2d:f7:95:36:ae:1a:b1:0f:9d:cd:26:ea:9f:61:78:5b:
16:72:43:62:53:d0:15:ba:92:2c:f5:0a:4f:86:2a:11:30:36:
7a:98:16:d5:89:d0:26:40:a4:12:97:69:09:ba:f4:a9:a7:c9:
ea:08:80:69:51:ba:89:a8:c6:ed:11:06:b8:83:8e:f6:46:c0:
8b:9e:90:9f:79:f5:4f:0c:80:cc:be:ab:da:74:ea:ee:58:ae:
da:e8:46:d6:3e:38:99:2a:63:21:c6:1d:4b:9c:ad:fc:5d:b9:
71:bf:bf:c3:f8:0c:7c:31:3b:89:0d:db:43:86:0a:a8:99:79:
cf:5b:94:83:50:8d:26:2d:88:dc:5e:03:49:27:a6:9e:b2:65:
43:16:cd:13:59:b2:5f:3d:d4:a1:67:0e:83:32:a9:27:05:11:
35:28:30:a8:22:9b:64:bf:53:2f:33:09:da:98:0b:c5:a6:fc:
f7:b6:b2:af:66:58:eb:8e:aa:b9:37:98:c4:4c:e9:00:27:c4:
7f:de:07:b8:3c:63:65:68:c6:8e:94:f0:5d:81:a7:53:6a:9b:
0a:0a:91:ac:95:72:76:1f:ae:a2:b6:76:c1:be:f2:8f:c1:a6:
7e:cc:39:ca
-----BEGIN CERTIFICATE-----
MIIFwTCCBKmgAwIBAgISAYzGuPxuiFJ2LsyEQuLgY8I9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAxMjAzMTAxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4ZDY0ZTQzYzc1YmRjNTExZDUyNGYwYzg1ZDAwOWNiYTc2OTU2MTQ0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+HjKCMwTPNc3yyHc22CNs+4Fw0KL
KiY42bkQPGiZJEhzKH4j3+KUc1FP0sIlvaLriHnoJFZlfYKFTMquec4uEDzNW7oE
sL1xzRj2auKBT3zapgu6uh2C4FQUmQ78JvimBBW6fBjoaueFoW3v1x5XxtjIyRnw
SfgqWo2zlxcZQvClAr8JNQ9BLBmE8HKyvpUcxezShRZ4CCN/0TXspVYEuQ2Eei6D
ijM6wu/jJ98fkvh7qROyGB6NId/ObCDubj9HCjT6Ye0owzoWfdEUx6r3SbVg4j4r
D/PqH3eV8W3FLqDvp8jE9HsP8j8Ii8UIGbzl8NnG+2wxkHM9uO7TwZRK0wIDAQAB
o4ICzTCCAskwHQYDVR0OBBYEFI1k5Dx1vcUR1STwyF0AnLp2lWFEMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzU5LzZmOWIw
OS1hNTllLTRmOTAtODdjNy03MjQ0ODM1MmI4MDcvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTkvNmY5YjA5
LWE1OWUtNGY5MC04N2M3LTcyNDQ4MzUyYjgwNy8xL2pXVGtQSFc5eFJIVkpQRElY
UUNjdW5hVllVUS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMEwGCCsGAQUF
BwEHAQH/BD0wOzAqBAIAATAkAwQCLZkAAwQAW8fsAwQCW83UAwQCuR3IAwQCua0M
AwQCwbLEMA0EAgACMAcDBQMqBENAMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwDv
pTANBgkqhkiG9w0BAQsFAAOCAQEAlc/f7XfvC9kSu2mHVjs6tHoWp/It95U2rhqx
D53NJuqfYXhbFnJDYlPQFbqSLPUKT4YqETA2epgW1YnQJkCkEpdpCbr0qafJ6giA
aVG6iajG7REGuIOO9kbAi56Qn3n1TwyAzL6r2nTq7liu2uhG1j44mSpjIcYdS5yt
/F25cb+/w/gMfDE7iQ3bQ4YKqJl5z1uUg1CNJi2I3F4DSSemnrJlQxbNE1myXz3U
oWcOgzKpJwURNSgwqCKbZL9TLzMJ2pgLxab897ayr2ZY646quTeYxEzpACfEf94H
uDxjZWjGjpTwXYGnU2qbCgqRrJVydh+uorZ2wb7yj8Gmfsw5yg==
-----END CERTIFICATE-----
Generated at Sat Nov 23 03:44:45 2024 by rpki-client on console-fra.rpki-client.org