Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/k89OeSfhBJZOTJb0QWSc40F0zjo.cer
File: k89OeSfhBJZOTJb0QWSc40F0zjo.cer (raw, json)
Hash identifier: 1iZebDJFnSir4qsVaXWYMb/uqai6MmoLFKk0LqpItqo=
Subject key identifier: 93:CF:4E:79:27:E1:04:96:4E:4C:96:F4:41:64:9C:E3:41:74:CE:3A
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CCA2A6EBD4804EF8F463B88F933E77FE2
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/46/0b0007-d30a-4994-ab00-bd5b4e54712b/1/k89OeSfhBJZOTJb0QWSc40F0zjo.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/46/0b0007-d30a-4994-ab00-bd5b4e54712b/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 12:33:47 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 56349
IP: 46.227.176.0/21
IP: 2a02:6380::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:2a:6e:bd:48:04:ef:8f:46:3b:88:f9:33:e7:7f:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 12:33:47 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=93cf4e7927e104964e4c96f441649ce34174ce3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:da:53:f1:bc:5a:5b:57:c8:69:c9:8d:c3:d7:
c5:36:c5:8b:16:be:e7:64:ad:17:dc:09:6c:2d:6f:
e0:72:f5:c6:fe:ec:91:bf:8b:ed:61:25:a5:b1:fd:
0b:0a:52:7c:7b:6f:10:ff:2b:38:be:8b:45:01:e6:
06:d7:f8:ec:f6:bb:31:f7:71:81:fe:5a:f9:13:ee:
d9:25:2c:d4:17:fe:e2:bc:6c:02:75:01:13:5d:90:
b5:d7:d6:d7:2e:c7:61:1f:dd:19:be:b4:bf:d3:f8:
f2:a4:aa:37:3c:4e:35:99:eb:3d:43:41:35:46:ee:
95:0e:5e:b5:26:63:e4:e8:10:bf:07:73:27:c8:f0:
15:26:92:9c:b4:f5:26:86:3b:f7:3d:26:ac:8b:33:
0f:cf:69:b1:10:d3:b1:74:b5:86:4c:f0:da:55:e7:
a7:0f:ff:78:2e:b4:5e:e9:60:dd:ce:59:45:61:55:
e1:5a:d1:b4:6b:61:f4:56:73:58:73:89:59:ab:1c:
bf:40:0b:1e:6a:a6:e8:8d:4a:27:63:a5:a8:94:db:
98:f2:79:ae:fe:32:65:68:64:0f:24:1e:bf:f6:b0:
91:43:36:f6:b1:e0:8c:34:43:6a:41:94:3e:97:a1:
42:f3:00:c2:1e:78:15:5a:9b:77:3f:d5:47:38:e1:
a2:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:CF:4E:79:27:E1:04:96:4E:4C:96:F4:41:64:9C:E3:41:74:CE:3A
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/0b0007-d30a-4994-ab00-bd5b4e54712b/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/0b0007-d30a-4994-ab00-bd5b4e54712b/1/k89OeSfhBJZOTJb0QWSc40F0zjo.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.227.176.0/21
IPv6:
2a02:6380::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
56349
Signature Algorithm: sha256WithRSAEncryption
81:15:c1:65:0c:45:e3:32:42:c4:62:e2:25:fd:a5:87:7c:b4:
e0:7d:0a:42:c9:d1:52:f7:14:ae:40:1c:80:de:d2:2d:c6:36:
dd:6a:7b:a5:a4:63:f6:51:ea:7c:92:f5:0e:c7:f9:c5:7f:99:
74:c2:78:ef:97:ce:a4:86:8f:3a:20:c9:37:c9:3d:f6:73:26:
96:15:4f:90:88:2a:4a:29:ad:cd:fc:4c:34:17:d4:51:1c:4f:
54:f0:e5:9d:f4:c9:50:03:1c:d6:d8:3a:12:8b:20:8d:ed:ea:
a3:dd:92:36:f6:f3:ac:0d:0f:ed:a5:73:02:d0:39:ab:93:1e:
0f:97:66:6e:25:07:17:52:d0:ad:2d:ff:b8:33:c4:6b:41:4b:
82:d0:31:84:91:9c:16:56:d1:93:66:17:0a:1b:59:9b:fd:19:
fe:83:e9:ed:95:65:19:1e:52:e0:43:47:c7:e8:ee:3e:2b:b5:
b5:d5:be:f8:eb:a8:8f:fe:71:2b:48:3a:3e:e8:d7:fc:7c:f3:
74:1a:62:7a:3b:f5:fe:f3:21:2e:3f:e9:48:bf:8a:7e:f6:41:
07:34:43:ac:6a:d4:22:76:5b:f5:ef:4a:87:20:ae:b6:6b:8b:
3b:06:23:30:ae:8f:d8:9c:68:97:c6:47:c1:4d:5e:fe:65:2f:
85:7a:35:75
-----BEGIN CERTIFICATE-----
MIIFozCCBIugAwIBAgISAYzKKm69SATvj0Y7iPkz53/iMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAyMTIzMzQ3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5M2NmNGU3OTI3ZTEwNDk2NGU0Yzk2ZjQ0MTY0OWNlMzQxNzRjZTNhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj9pT8bxaW1fIacmNw9fFNsWLFr7n
ZK0X3AlsLW/gcvXG/uyRv4vtYSWlsf0LClJ8e28Q/ys4votFAeYG1/js9rsx93GB
/lr5E+7ZJSzUF/7ivGwCdQETXZC119bXLsdhH90ZvrS/0/jypKo3PE41mes9Q0E1
Ru6VDl61JmPk6BC/B3MnyPAVJpKctPUmhjv3PSasizMPz2mxENOxdLWGTPDaVeen
D/94LrRe6WDdzllFYVXhWtG0a2H0VnNYc4lZqxy/QAseaqbojUonY6WolNuY8nmu
/jJlaGQPJB6/9rCRQzb2seCMNENqQZQ+l6FC8wDCHngVWpt3P9VHOOGirwIDAQAB
o4ICrzCCAqswHQYDVR0OBBYEFJPPTnkn4QSWTkyW9EFknONBdM46MB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzQ2LzBiMDAw
Ny1kMzBhLTQ5OTQtYWIwMC1iZDViNGU1NDcxMmIvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDYvMGIwMDA3
LWQzMGEtNDk5NC1hYjAwLWJkNWI0ZTU0NzEyYi8xL2s4OU9lU2ZoQkpaT1RKYjBR
V1NjNDBGMHpqby5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF
BwEHAQH/BB8wHTAMBAIAATAGAwQDLuOwMA0EAgACMAcDBQAqAmOAMBoGCCsGAQUF
BwEIAQH/BAswCaAHMAUCAwDcHTANBgkqhkiG9w0BAQsFAAOCAQEAgRXBZQxF4zJC
xGLiJf2lh3y04H0KQsnRUvcUrkAcgN7SLcY23Wp7paRj9lHqfJL1Dsf5xX+ZdMJ4
75fOpIaPOiDJN8k99nMmlhVPkIgqSimtzfxMNBfUURxPVPDlnfTJUAMc1tg6Eosg
je3qo92SNvbzrA0P7aVzAtA5q5MeD5dmbiUHF1LQrS3/uDPEa0FLgtAxhJGcFlbR
k2YXChtZm/0Z/oPp7ZVlGR5S4ENHx+juPiu1tdW++Ouoj/5xK0g6PujX/HzzdBpi
ejv1/vMhLj/pSL+KfvZBBzRDrGrUInZb9e9KhyCutmuLOwYjMK6P2Jxol8ZHwU1e
/mUvhXo1dQ==
-----END CERTIFICATE-----
Generated at Fri May 3 08:14:00 2024 by rpki-client on console-fra.rpki-client.org