Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/jsIqh2Rb03Xm2yqguBbooGEOelY.cer
File: jsIqh2Rb03Xm2yqguBbooGEOelY.cer (raw, json)
Hash identifier: FlGtxBcVXtAMGTt4nbITc5kJZ29EtCE4gcDkwWYI0ek=
Subject key identifier: 8E:C2:2A:87:64:5B:D3:75:E6:DB:2A:A0:B8:16:E8:A0:61:0E:7A:56
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC94E4D5E1BFE37E52DC69C92AB8770F4
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/d1/1298ea-a467-45b9-9117-8798ed75f289/1/jsIqh2Rb03Xm2yqguBbooGEOelY.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/d1/1298ea-a467-45b9-9117-8798ed75f289/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 08:33:21 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 216150
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4e:4d:5e:1b:fe:37:e5:2d:c6:9c:92:ab:87:70:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 08:33:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8ec22a87645bd375e6db2aa0b816e8a0610e7a56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:6a:1e:73:d1:46:ef:ac:c0:3f:c9:5f:c4:d4:
c7:97:c9:1a:81:7f:c2:ab:73:2d:fe:0a:cb:11:af:
c4:2a:c9:9b:2c:22:09:0a:49:84:82:e6:6b:82:00:
5d:25:58:a3:eb:d2:c8:89:3d:e1:d3:ad:70:f7:0c:
82:75:f8:86:a1:97:4c:3e:2f:3a:c5:7c:43:fc:4e:
bc:a8:8f:38:0c:a7:f4:f0:be:53:a7:74:f5:ed:52:
a1:54:5e:f0:41:33:fb:9a:bc:b3:07:7a:dd:93:78:
62:e7:c9:85:0a:c6:e9:f5:6d:36:e0:7e:37:d2:21:
16:f6:07:16:d7:a1:34:d5:ff:99:da:75:db:da:cd:
e4:cb:aa:63:42:ce:89:af:30:2a:73:10:84:e1:75:
b1:61:c3:2f:57:27:e6:ab:20:95:28:c2:98:33:8a:
ff:23:c5:ec:55:86:64:38:41:d1:2b:3b:40:ad:dd:
1c:5c:9f:c8:9b:52:a2:ab:57:17:c4:99:12:21:a2:
d8:d9:db:af:d7:84:a9:66:75:5d:2a:8b:bb:42:c2:
02:8b:b5:b5:84:1c:70:f6:e6:6e:c7:27:a6:c6:2a:
4d:e5:83:19:8e:28:08:d2:df:2c:9b:1b:13:f2:6a:
db:88:4b:58:e1:f0:4f:8f:ec:9c:e5:83:db:78:e7:
96:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:C2:2A:87:64:5B:D3:75:E6:DB:2A:A0:B8:16:E8:A0:61:0E:7A:56
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/1298ea-a467-45b9-9117-8798ed75f289/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/1298ea-a467-45b9-9117-8798ed75f289/1/jsIqh2Rb03Xm2yqguBbooGEOelY.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
216150
Signature Algorithm: sha256WithRSAEncryption
89:78:d3:97:28:3a:bd:f9:dc:24:b7:dc:8c:3b:7e:94:a4:db:
fc:08:89:bc:55:a1:a4:3f:7e:e2:c1:b0:fc:b5:8c:dd:f5:31:
5b:04:c6:b3:9c:72:79:ed:af:f5:a3:00:67:3e:9e:b7:ab:8a:
a5:45:82:84:e0:9e:ce:e0:ff:ff:9b:95:5f:08:2e:ca:8c:df:
81:ef:ed:2c:91:6a:30:8c:03:0a:a0:f8:0e:fc:72:c9:eb:93:
50:c1:bd:71:be:7e:48:75:13:95:04:d4:25:d1:1b:dc:7c:31:
75:ac:79:db:51:fc:d3:11:00:76:45:69:c6:7f:51:d5:ba:5d:
33:95:d5:00:76:74:d1:44:78:b1:dd:71:c8:fd:c3:f6:ca:e4:
5a:9a:1c:06:a0:40:f6:10:46:70:ca:7b:d3:7f:2c:e6:e4:1d:
df:3a:5c:0e:c7:4c:92:ec:a4:08:d0:e1:8f:69:9c:0e:c8:bf:
61:2a:b9:cd:03:8a:87:24:23:80:c7:00:10:ef:8c:58:f4:82:
c2:aa:62:d3:93:58:9e:1e:69:d4:f4:ad:84:c9:e2:30:e0:ae:
1c:95:a1:59:64:7b:57:e4:76:52:dc:a5:61:c9:7c:a7:dd:d2:
8d:7d:c2:60:03:db:5b:90:13:d4:6b:ce:52:42:61:c1:af:d7:
b7:c2:29:26
-----BEGIN CERTIFICATE-----
MIIFczCCBFugAwIBAgISAYzJTk1eG/435S3GnJKrh3D0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAyMDgzMzIxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4ZWMyMmE4NzY0NWJkMzc1ZTZkYjJhYTBiODE2ZThhMDYxMGU3YTU2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtWoec9FG76zAP8lfxNTHl8kagX/C
q3Mt/grLEa/EKsmbLCIJCkmEguZrggBdJVij69LIiT3h061w9wyCdfiGoZdMPi86
xXxD/E68qI84DKf08L5Tp3T17VKhVF7wQTP7mryzB3rdk3hi58mFCsbp9W024H43
0iEW9gcW16E01f+Z2nXb2s3ky6pjQs6JrzAqcxCE4XWxYcMvVyfmqyCVKMKYM4r/
I8XsVYZkOEHRKztArd0cXJ/Im1Kiq1cXxJkSIaLY2duv14SpZnVdKou7QsICi7W1
hBxw9uZuxyemxipN5YMZjigI0t8smxsT8mrbiEtY4fBPj+yc5YPbeOeWZQIDAQAB
o4ICfzCCAnswHQYDVR0OBBYEFI7CKodkW9N15tsqoLgW6KBhDnpWMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2QxLzEyOThl
YS1hNDY3LTQ1YjktOTExNy04Nzk4ZWQ3NWYyODkvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDEvMTI5OGVh
LWE0NjctNDViOS05MTE3LTg3OThlZDc1ZjI4OS8xL2pzSXFoMlJiMDNYbTJ5cWd1
QmJvb0dFT2VsWS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMBoGCCsGAQUF
BwEIAQH/BAswCaAHMAUCAwNMVjANBgkqhkiG9w0BAQsFAAOCAQEAiXjTlyg6vfnc
JLfcjDt+lKTb/AiJvFWhpD9+4sGw/LWM3fUxWwTGs5xyee2v9aMAZz6et6uKpUWC
hOCezuD//5uVXwguyozfge/tLJFqMIwDCqD4DvxyyeuTUMG9cb5+SHUTlQTUJdEb
3Hwxdax521H80xEAdkVpxn9R1bpdM5XVAHZ00UR4sd1xyP3D9srkWpocBqBA9hBG
cMp7038s5uQd3zpcDsdMkuykCNDhj2mcDsi/YSq5zQOKhyQjgMcAEO+MWPSCwqpi
05NYnh5p1PSthMniMOCuHJWhWWR7V+R2UtylYcl8p93SjX3CYAPbW5AT1GvOUkJh
wa/Xt8IpJg==
-----END CERTIFICATE-----
Generated at Fri May 3 02:11:21 2024 by rpki-client on console-ams.rpki-client.org