Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/kIeMOWJK7eOSnhfM2Vh4wpKy81E.cer
File: kIeMOWJK7eOSnhfM2Vh4wpKy81E.cer (raw, json)
Hash identifier: oBzrzfDeKAtm9xou9CiVh2fYS4ow8uqzbYr1/FsMcJI=
Subject key identifier: 90:87:8C:39:62:4A:ED:E3:92:9E:17:CC:D9:58:78:C2:92:B2:F3:51
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018F0A63F1DFABB8FCC196E5F3DAE2C1E9AF
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/0f/5d31cb-46c6-4b58-8279-d5aefccc9522/1/kIeMOWJK7eOSnhfM2Vh4wpKy81E.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/0f/5d31cb-46c6-4b58-8279-d5aefccc9522/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 23 Apr 2024 09:57:53 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 41135
IP: 81.201.80.0/20
IP: 185.47.148.0/22
IP: 2a03:b500::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:0a:63:f1:df:ab:b8:fc:c1:96:e5:f3:da:e2:c1:e9:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Apr 23 09:57:53 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=90878c39624aede3929e17ccd95878c292b2f351
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:32:7a:97:c7:b6:c5:3b:01:25:be:e5:b9:c7:
63:23:65:c1:fd:aa:16:5c:83:ce:46:65:07:30:e0:
bc:7b:91:cf:9f:38:d3:ec:66:3e:14:c7:9a:a7:06:
b5:6b:10:72:3f:10:83:cb:68:c3:34:4d:6e:7c:52:
21:f1:cc:86:ed:ac:72:fc:10:ef:27:57:87:6d:7f:
26:ed:1a:c8:03:ea:8b:31:dd:52:24:06:ce:c3:bb:
f1:97:a5:94:dc:d2:e9:b4:db:9c:68:cc:31:03:b7:
88:62:d4:ca:a6:e0:eb:70:c3:bd:3d:53:67:67:36:
cf:19:a7:25:68:32:45:f4:a9:4f:a2:b0:05:74:a2:
2a:3d:91:8d:eb:66:c0:bf:24:81:06:d7:f4:4a:43:
cf:9a:14:6a:87:d3:87:28:25:13:49:9b:0e:06:69:
9d:a0:a5:4b:91:40:c4:55:b4:4e:ee:7b:24:d4:2a:
70:64:9f:0f:23:89:22:60:0e:ba:b4:be:07:cf:e3:
01:33:2d:5b:1b:2e:fb:e7:dd:53:cb:f7:76:f4:c0:
57:f0:ba:7c:fd:2a:fc:60:9f:3b:74:4a:4a:09:24:
7f:ff:99:cd:b6:da:cb:cd:e7:57:6b:f1:cd:c1:97:
49:cd:93:e9:97:76:13:b9:98:49:71:26:20:d0:af:
80:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:87:8C:39:62:4A:ED:E3:92:9E:17:CC:D9:58:78:C2:92:B2:F3:51
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/5d31cb-46c6-4b58-8279-d5aefccc9522/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/5d31cb-46c6-4b58-8279-d5aefccc9522/1/kIeMOWJK7eOSnhfM2Vh4wpKy81E.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.201.80.0/20
185.47.148.0/22
IPv6:
2a03:b500::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
41135
Signature Algorithm: sha256WithRSAEncryption
64:84:57:5d:dd:d5:78:40:81:82:6f:29:8f:35:d0:6b:23:7c:
d4:34:0e:bf:86:4f:c1:68:51:aa:14:9c:05:d2:f3:f8:3e:1c:
78:24:db:7a:e5:6f:1a:aa:02:9d:4c:82:86:47:51:99:db:90:
9a:83:85:3d:93:48:34:71:ac:02:55:9e:70:2e:77:78:25:66:
4f:eb:58:c8:61:34:24:44:7b:05:09:3d:19:d5:9a:83:7c:c4:
9c:50:b7:3f:bf:8c:2c:4a:49:03:d0:dd:bc:30:b5:cc:de:8a:
ba:41:6b:19:01:07:bd:d9:31:e4:52:b1:c9:c8:02:ad:ed:32:
6c:ea:94:cf:1d:00:0f:29:7b:af:20:88:5c:e3:d4:7c:46:97:
5b:48:6d:2f:32:0f:fa:86:05:06:03:4a:8b:70:38:f7:7f:26:
e6:7f:f1:05:c8:5d:e2:4e:18:1a:d1:c6:47:7b:e9:cf:0e:70:
cd:19:0e:45:5f:3c:a6:f4:b0:33:cd:d5:ea:82:08:80:a7:bb:
ff:7d:2d:8e:05:33:f4:0f:48:48:39:34:01:0d:d5:a2:22:9e:
05:a9:a4:00:2a:7d:9a:9b:5f:ac:12:98:c6:0a:03:2c:93:24:
82:1c:af:87:be:c4:ee:88:69:f1:fd:58:74:a8:2e:9d:88:e9:
ea:44:d1:65
-----BEGIN CERTIFICATE-----
MIIFqTCCBJGgAwIBAgISAY8KY/Hfq7j8wZbl89riwemvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwNDIzMDk1NzUzWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5MDg3OGMzOTYyNGFlZGUzOTI5ZTE3Y2NkOTU4NzhjMjkyYjJmMzUxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvjJ6l8e2xTsBJb7lucdjI2XB/aoW
XIPORmUHMOC8e5HPnzjT7GY+FMeapwa1axByPxCDy2jDNE1ufFIh8cyG7axy/BDv
J1eHbX8m7RrIA+qLMd1SJAbOw7vxl6WU3NLptNucaMwxA7eIYtTKpuDrcMO9PVNn
ZzbPGaclaDJF9KlPorAFdKIqPZGN62bAvySBBtf0SkPPmhRqh9OHKCUTSZsOBmmd
oKVLkUDEVbRO7nsk1CpwZJ8PI4kiYA66tL4Hz+MBMy1bGy77591Ty/d29MBX8Lp8
/Sr8YJ87dEpKCSR//5nNttrLzedXa/HNwZdJzZPpl3YTuZhJcSYg0K+AnQIDAQAB
o4ICtTCCArEwHQYDVR0OBBYEFJCHjDliSu3jkp4XzNlYeMKSsvNRMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzBmLzVkMzFj
Yi00NmM2LTRiNTgtODI3OS1kNWFlZmNjYzk1MjIvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMGYvNWQzMWNi
LTQ2YzYtNGI1OC04Mjc5LWQ1YWVmY2NjOTUyMi8xL2tJZU1PV0pLN2VPU25oZk0y
Vmg0d3BLeTgxRS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDQGCCsGAQUF
BwEHAQH/BCUwIzASBAIAATAMAwQEUclQAwQCuS+UMA0EAgACMAcDBQAqA7UAMBoG
CCsGAQUFBwEIAQH/BAswCaAHMAUCAwCgrzANBgkqhkiG9w0BAQsFAAOCAQEAZIRX
Xd3VeECBgm8pjzXQayN81DQOv4ZPwWhRqhScBdLz+D4ceCTbeuVvGqoCnUyChkdR
mduQmoOFPZNINHGsAlWecC53eCVmT+tYyGE0JER7BQk9GdWag3zEnFC3P7+MLEpJ
A9DdvDC1zN6KukFrGQEHvdkx5FKxycgCre0ybOqUzx0ADyl7ryCIXOPUfEaXW0ht
LzIP+oYFBgNKi3A4938m5n/xBchd4k4YGtHGR3vpzw5wzRkORV88pvSwM83V6oII
gKe7/30tjgUz9A9ISDk0AQ3VoiKeBamkACp9mptfrBKYxgoDLJMkghyvh77E7ohp
8f1YdKgunYjp6kTRZQ==
-----END CERTIFICATE-----
Generated at Fri Nov 22 18:30:02 2024 by rpki-client on console-fra.rpki-client.org