Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/jX3LNj2aw0vcm2mA8mht0hnVAlc.cer
File: jX3LNj2aw0vcm2mA8mht0hnVAlc.cer (raw, json)
Hash identifier: oV+pI4i8cLG84Dr2ydKBApY61JSPTcNVDYjfdWlkOp8=
Subject key identifier: 8D:7D:CB:36:3D:9A:C3:4B:DC:9B:69:80:F2:68:6D:D2:19:D5:02:57
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC56EA10A016E1C6A05963FF235F99742
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/96/cad244-3995-4d41-886b-ac463e221974/1/jX3LNj2aw0vcm2mA8mht0hnVAlc.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/96/cad244-3995-4d41-886b-ac463e221974/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 14:30:10 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 35189
IP: 78.24.32.0/21
IP: 185.198.76.0/22
IP: 2a01:470::/29
IP: 2a0a:85c0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:a1:0a:01:6e:1c:6a:05:96:3f:f2:35:f9:97:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 14:30:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8d7dcb363d9ac34bdc9b6980f2686dd219d50257
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:4b:da:83:a7:28:c7:1a:56:ef:3c:37:9f:e8:
04:1e:97:b0:7e:e1:48:8d:4d:a3:18:8d:f5:25:36:
b6:10:32:ab:1d:92:32:b0:87:a5:4a:96:1b:5f:1d:
73:2f:8d:1d:11:09:97:e6:b8:c1:3d:14:06:5b:cb:
57:bc:c8:d1:95:9c:f7:0d:50:d5:77:6a:c5:43:ff:
ba:84:f2:86:52:67:60:07:83:25:21:57:f7:e5:87:
04:ff:43:9f:59:e7:c5:32:68:ed:95:ce:d6:ec:2a:
f4:7e:89:84:f0:13:c1:38:ba:ee:c4:38:a4:80:4b:
32:95:d2:eb:c0:4b:9f:28:62:f5:51:54:91:85:4b:
79:e1:da:41:8c:9f:0a:2c:5f:b5:d8:97:9d:17:61:
4c:d5:00:e3:47:45:46:72:9f:e1:16:46:49:8f:7d:
70:0e:3f:a8:d3:c6:98:aa:6f:cb:97:c1:d3:42:f9:
53:6f:db:2e:43:15:00:4b:0e:c1:74:2e:de:54:ec:
4e:b8:c9:8e:02:13:6b:00:05:d8:61:cb:66:9d:54:
3f:08:0f:c4:ee:c3:75:0f:c3:7b:4c:d9:a5:5e:f4:
af:a0:2d:56:64:b6:12:d3:65:5a:7d:8c:49:00:ba:
76:4a:61:16:4d:32:96:4a:e2:fa:d8:fa:d8:dd:5c:
6b:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:7D:CB:36:3D:9A:C3:4B:DC:9B:69:80:F2:68:6D:D2:19:D5:02:57
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/96/cad244-3995-4d41-886b-ac463e221974/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/96/cad244-3995-4d41-886b-ac463e221974/1/jX3LNj2aw0vcm2mA8mht0hnVAlc.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.24.32.0/21
185.198.76.0/22
IPv6:
2a01:470::/29
2a0a:85c0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
35189
Signature Algorithm: sha256WithRSAEncryption
a5:ce:a7:e7:99:c7:c7:08:fd:c0:a4:9e:22:24:fa:b6:a7:41:
d9:9c:91:d1:52:d7:7f:60:b9:73:87:59:b9:10:5d:d0:0d:1f:
70:dd:7f:0c:2b:a0:79:17:c7:66:a7:67:c0:6b:8d:f1:69:18:
7f:eb:59:3a:14:6b:92:16:d9:4e:25:86:4e:d2:6e:9a:bc:f0:
6a:be:17:d0:2a:99:13:35:7b:8a:06:d9:33:17:89:09:31:25:
ca:fe:09:1c:c9:d7:b3:26:52:24:06:4b:c2:f0:54:c1:a4:e3:
08:18:0c:c1:da:8a:ef:26:32:40:a5:c8:71:2d:1e:89:5e:43:
13:90:b9:83:4d:31:f8:17:1d:a6:b1:94:1c:66:7c:df:dc:f3:
6a:79:60:b7:d9:70:18:8f:6a:f3:37:4c:e4:15:71:0e:3c:e3:
00:37:f9:e2:70:22:94:ad:ed:d4:a8:06:43:04:36:a6:28:73:
74:1a:3e:b8:86:76:e9:7b:da:d9:33:27:7f:ed:6b:57:f6:8c:
54:95:a5:82:1b:0c:21:0a:99:63:0c:d1:00:0e:20:d6:08:ea:
f0:1b:79:2e:f3:85:c8:6e:39:a1:6b:71:9d:04:8b:fe:0d:12:
ad:76:1b:8d:75:68:4e:b8:0f:10:b2:0e:8f:a4:6d:33:52:07:
4c:a8:68:69
-----BEGIN CERTIFICATE-----
MIIFsDCCBJigAwIBAgISAYzFbqEKAW4cagWWP/I1+ZdCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAxMTQzMDEwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4ZDdkY2IzNjNkOWFjMzRiZGM5YjY5ODBmMjY4NmRkMjE5ZDUwMjU3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqkvag6coxxpW7zw3n+gEHpewfuFI
jU2jGI31JTa2EDKrHZIysIelSpYbXx1zL40dEQmX5rjBPRQGW8tXvMjRlZz3DVDV
d2rFQ/+6hPKGUmdgB4MlIVf35YcE/0OfWefFMmjtlc7W7Cr0fomE8BPBOLruxDik
gEsyldLrwEufKGL1UVSRhUt54dpBjJ8KLF+12JedF2FM1QDjR0VGcp/hFkZJj31w
Dj+o08aYqm/Ll8HTQvlTb9suQxUASw7BdC7eVOxOuMmOAhNrAAXYYctmnVQ/CA/E
7sN1D8N7TNmlXvSvoC1WZLYS02VafYxJALp2SmEWTTKWSuL62PrY3VxrYwIDAQAB
o4ICvDCCArgwHQYDVR0OBBYEFI19yzY9msNL3JtpgPJobdIZ1QJXMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzk2L2NhZDI0
NC0zOTk1LTRkNDEtODg2Yi1hYzQ2M2UyMjE5NzQvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTYvY2FkMjQ0
LTM5OTUtNGQ0MS04ODZiLWFjNDYzZTIyMTk3NC8xL2pYM0xOajJhdzB2Y20ybUE4
bWh0MGhuVkFsYy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDsGCCsGAQUF
BwEHAQH/BCwwKjASBAIAATAMAwQDThggAwQCucZMMBQEAgACMA4DBQMqAQRwAwUD
KgqFwDAaBggrBgEFBQcBCAEB/wQLMAmgBzAFAgMAiXUwDQYJKoZIhvcNAQELBQAD
ggEBAKXOp+eZx8cI/cCkniIk+ranQdmckdFS139guXOHWbkQXdANH3DdfwwroHkX
x2anZ8BrjfFpGH/rWToUa5IW2U4lhk7Sbpq88Gq+F9AqmRM1e4oG2TMXiQkxJcr+
CRzJ17MmUiQGS8LwVMGk4wgYDMHaiu8mMkClyHEtHoleQxOQuYNNMfgXHaaxlBxm
fN/c82p5YLfZcBiPavM3TOQVcQ484wA3+eJwIpSt7dSoBkMENqYoc3QaPriGdul7
2tkzJ3/ta1f2jFSVpYIbDCEKmWMM0QAOINYI6vAbeS7zhchuOaFrcZ0Ei/4NEq12
G411aE64DxCyDo+kbTNSB0yoaGk=
-----END CERTIFICATE-----
Generated at Sat Nov 23 11:03:04 2024 by rpki-client on console-ams.rpki-client.org