Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/jtmMBXCv6fGq69DZ6i_CjB39mIk.cer
File: jtmMBXCv6fGq69DZ6i_CjB39mIk.cer (raw, json)
Hash identifier: borsvbKihzwiDBZlpHih45gq6FDridCr+Sa2UDltr4U=
Subject key identifier: 8E:D9:8C:05:70:AF:E9:F1:AA:EB:D0:D9:EA:2F:C2:8C:1D:FD:98:89
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC348EC631415BD1222A7D98A39E87FDA
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/ef/498a6b-8512-493b-86c3-40f8a8cd1bdd/1/jtmMBXCv6fGq69DZ6i_CjB39mIk.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/ef/498a6b-8512-493b-86c3-40f8a8cd1bdd/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 04:29:45 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 211028
IP: 194.39.108.0/24
IP: 2a11:2200::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:48:ec:63:14:15:bd:12:22:a7:d9:8a:39:e8:7f:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 04:29:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8ed98c0570afe9f1aaebd0d9ea2fc28c1dfd9889
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:14:02:34:26:42:51:6d:4d:86:d8:d1:71:a6:
4c:85:fb:8f:38:f9:88:f5:c4:57:ac:37:ec:2d:a3:
89:a1:97:2c:c9:9a:4a:2a:7f:1b:92:51:3f:e6:6c:
ec:1e:e2:78:9c:01:61:2d:ed:4d:26:2a:ee:df:d9:
0a:c6:c6:14:83:b6:16:21:b4:86:8a:57:a1:02:bc:
8f:d4:b5:b8:6e:9f:42:d4:00:54:dd:ae:a2:a1:f9:
3f:25:c8:e3:93:8d:99:e1:9c:fe:20:c1:6e:32:65:
e5:d3:de:f5:e9:85:bc:73:30:ef:5d:40:4b:ca:98:
80:c9:23:4d:5d:d0:50:ff:a6:45:d6:2c:ef:0f:ac:
7f:4d:bd:92:ae:5a:d6:ca:e8:61:67:83:58:58:83:
f3:88:57:94:a1:54:1f:4b:7f:ad:08:fd:9e:d9:3b:
da:4f:f2:7d:d2:68:cb:7e:cd:0d:19:d9:bc:2b:ad:
06:b4:89:f0:31:2a:22:7f:14:17:11:22:1f:72:a6:
9c:52:0c:c2:74:83:fa:1d:28:4b:7e:70:9d:ee:d9:
cb:2d:cd:54:03:00:4d:95:13:7b:10:06:aa:45:15:
cd:6d:cd:bd:ed:36:23:10:fe:ce:a2:f4:3c:4d:2e:
23:d9:6e:f4:43:b3:2f:7a:8a:95:c1:28:00:74:ae:
92:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:D9:8C:05:70:AF:E9:F1:AA:EB:D0:D9:EA:2F:C2:8C:1D:FD:98:89
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/498a6b-8512-493b-86c3-40f8a8cd1bdd/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/498a6b-8512-493b-86c3-40f8a8cd1bdd/1/jtmMBXCv6fGq69DZ6i_CjB39mIk.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.39.108.0/24
IPv6:
2a11:2200::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
211028
Signature Algorithm: sha256WithRSAEncryption
a6:80:f0:e9:67:ed:7f:27:ae:c5:bf:aa:26:22:ad:cd:cb:63:
84:1e:8c:6a:a2:25:1b:1f:7f:7d:3f:63:b1:22:9f:05:ab:7c:
15:5d:60:5b:97:13:c5:e9:33:0e:47:48:37:ab:77:09:b9:8f:
45:c5:f7:ca:88:eb:97:5f:f6:7d:f0:81:3c:6f:67:a6:03:2e:
b5:33:31:b5:31:31:af:7b:f5:a7:ca:7c:16:fc:36:3d:4d:76:
89:8c:08:d9:73:20:13:e1:ba:6c:34:2e:d3:da:7c:da:9b:b3:
57:20:80:f7:41:75:73:2d:ed:d7:ee:d6:0b:99:a8:9e:54:f5:
bb:e8:18:dd:61:97:3d:76:45:c9:70:5f:95:89:28:4c:50:87:
36:02:21:06:5a:77:9e:cc:7c:06:0f:e7:8d:0b:36:9c:ad:04:
5a:75:a3:c9:39:c7:89:82:13:48:ab:6b:b0:13:e4:ab:3e:58:
e9:52:4b:7b:b8:ce:0e:a2:f3:d1:96:0d:b3:ff:7e:95:cf:5e:
54:03:ef:49:06:ed:c5:7e:be:cc:2c:a9:f1:e1:e7:d6:6b:90:
7f:8d:63:d5:ff:88:e8:ee:9c:db:06:3b:5d:83:1a:45:f4:9a:
38:fc:49:df:06:79:2e:90:2e:2a:a4:45:df:c2:be:22:6e:1a:
99:d0:42:f4
-----BEGIN CERTIFICATE-----
MIIFozCCBIugAwIBAgISAYzDSOxjFBW9EiKn2Yo56H/aMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAxMDQyOTQ1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4ZWQ5OGMwNTcwYWZlOWYxYWFlYmQwZDllYTJmYzI4YzFkZmQ5ODg5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArBQCNCZCUW1NhtjRcaZMhfuPOPmI
9cRXrDfsLaOJoZcsyZpKKn8bklE/5mzsHuJ4nAFhLe1NJiru39kKxsYUg7YWIbSG
ilehAryP1LW4bp9C1ABU3a6iofk/Jcjjk42Z4Zz+IMFuMmXl09716YW8czDvXUBL
ypiAySNNXdBQ/6ZF1izvD6x/Tb2SrlrWyuhhZ4NYWIPziFeUoVQfS3+tCP2e2Tva
T/J90mjLfs0NGdm8K60GtInwMSoifxQXESIfcqacUgzCdIP6HShLfnCd7tnLLc1U
AwBNlRN7EAaqRRXNbc297TYjEP7OovQ8TS4j2W70Q7MveoqVwSgAdK6SKwIDAQAB
o4ICrzCCAqswHQYDVR0OBBYEFI7ZjAVwr+nxquvQ2eovwowd/ZiJMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2VmLzQ5OGE2
Yi04NTEyLTQ5M2ItODZjMy00MGY4YThjZDFiZGQvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZWYvNDk4YTZi
LTg1MTItNDkzYi04NmMzLTQwZjhhOGNkMWJkZC8xL2p0bU1CWEN2NmZHcTY5RFo2
aV9DakIzOW1Jay5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF
BwEHAQH/BB8wHTAMBAIAATAGAwQAwidsMA0EAgACMAcDBQMqESIAMBoGCCsGAQUF
BwEIAQH/BAswCaAHMAUCAwM4VDANBgkqhkiG9w0BAQsFAAOCAQEApoDw6Wftfyeu
xb+qJiKtzctjhB6MaqIlGx9/fT9jsSKfBat8FV1gW5cTxekzDkdIN6t3CbmPRcX3
yojrl1/2ffCBPG9npgMutTMxtTExr3v1p8p8Fvw2PU12iYwI2XMgE+G6bDQu09p8
2puzVyCA90F1cy3t1+7WC5monlT1u+gY3WGXPXZFyXBflYkoTFCHNgIhBlp3nsx8
Bg/njQs2nK0EWnWjyTnHiYITSKtrsBPkqz5Y6VJLe7jODqLz0ZYNs/9+lc9eVAPv
SQbtxX6+zCyp8eHn1muQf41j1f+I6O6c2wY7XYMaRfSaOPxJ3wZ5LpAuKqRF38K+
Im4amdBC9A==
-----END CERTIFICATE-----
Generated at Fri May 3 02:11:22 2024 by rpki-client on console-ams.rpki-client.org