Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/l9I64ozYYMjt_WGDVvizH15NySg.cer
File: l9I64ozYYMjt_WGDVvizH15NySg.cer (raw, json)
Hash identifier: MJik1s0dBD0tRAN+jjFznLT0wwe0szK8DtWipl3PO8g=
Subject key identifier: 97:D2:3A:E2:8C:D8:60:C8:ED:FD:61:83:56:F8:B3:1F:5E:4D:C9:28
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CFD203F47DEB489F839094B2FD3EE78C7
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/b0/ca641f-db3a-4f64-a25b-cfa6a91481e2/1/l9I64ozYYMjt_WGDVvizH15NySg.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/b0/ca641f-db3a-4f64-a25b-cfa6a91481e2/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Fri 12 Jan 2024 10:03:18 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 201409
IP: 78.41.139.0/24
IP: 2a13:29c0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:fd:20:3f:47:de:b4:89:f8:39:09:4b:2f:d3:ee:78:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 12 10:03:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=97d23ae28cd860c8edfd618356f8b31f5e4dc928
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:c7:41:c3:6c:5d:c2:4b:25:96:61:e9:13:60:
3f:cb:7e:96:82:04:82:94:54:85:10:35:dc:45:84:
08:48:c5:48:fd:83:eb:f7:2c:52:e6:cd:c0:5d:2c:
3f:18:7f:aa:b9:ca:79:bf:67:cc:59:76:2a:bb:ba:
eb:5f:ba:dd:f0:71:20:79:57:96:86:31:7b:73:32:
87:32:cc:de:9b:bf:b6:c7:05:3e:85:27:ab:a9:08:
81:46:0b:9c:62:80:25:ba:3e:a3:43:28:7b:1b:2a:
3a:74:41:f4:3a:96:0c:a0:de:49:62:d0:8e:09:84:
68:f0:15:c9:7a:cd:c0:03:d2:6c:87:62:07:f8:5f:
ab:c8:1a:c6:87:e0:63:0c:af:bb:3f:b2:d1:63:0c:
fb:5e:24:e4:c9:5d:8f:fc:38:a4:54:7c:e4:60:38:
99:7c:ad:36:e7:69:16:9f:03:3e:48:a5:b7:33:c0:
fa:45:2b:d9:04:e4:52:b5:49:b9:5f:58:81:fa:1c:
82:94:95:f3:5b:1b:53:85:a4:08:25:b1:13:b8:1b:
42:0f:99:0c:10:0e:69:2d:d2:ee:27:08:c4:16:e8:
d6:f1:04:e1:47:8f:a9:38:72:78:2b:d5:a4:a4:3b:
84:31:59:3d:44:6b:1b:56:d9:8d:7d:78:c9:96:4a:
82:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:D2:3A:E2:8C:D8:60:C8:ED:FD:61:83:56:F8:B3:1F:5E:4D:C9:28
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/ca641f-db3a-4f64-a25b-cfa6a91481e2/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/ca641f-db3a-4f64-a25b-cfa6a91481e2/1/l9I64ozYYMjt_WGDVvizH15NySg.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.41.139.0/24
IPv6:
2a13:29c0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
201409
Signature Algorithm: sha256WithRSAEncryption
2f:7b:d1:03:8f:bb:13:07:fa:d8:b3:92:fb:97:36:a6:80:4b:
ea:10:60:47:a1:15:50:9b:31:a6:ed:86:13:e8:0b:db:9a:27:
9b:99:4c:6e:24:8a:5a:1e:42:c3:11:33:09:01:98:a5:89:8e:
24:5a:b7:7b:27:b9:c6:bd:5e:f8:8b:94:c7:35:25:ba:d5:10:
0c:6d:c6:79:7a:05:1d:f2:fd:cb:69:96:62:a6:a5:af:c4:9b:
8b:3b:01:3d:9c:da:6f:60:02:de:bf:82:96:b5:fd:24:5f:40:
e9:1e:f2:77:1d:7e:f6:7e:b1:42:2d:de:ee:04:cc:5f:00:96:
ad:d8:e4:f6:36:55:a8:ee:09:90:d2:7a:dc:c8:91:6b:2e:ed:
d1:3d:e0:cf:b6:10:9c:f8:03:56:77:51:82:d5:33:d7:bb:89:
56:0a:89:e2:ec:c6:03:1e:1f:cd:0a:d4:f6:39:41:12:96:41:
c0:91:4e:26:a6:7f:2b:fa:36:a4:a9:76:61:c1:d7:04:e4:9a:
c7:6e:d6:fb:90:7a:43:ea:cf:21:e0:d1:5c:63:55:42:c2:39:
3a:78:b9:01:72:cf:36:2b:1c:a7:bb:5c:ca:e4:f1:03:f9:79:
98:eb:50:1d:c0:2f:04:a6:45:ad:81:2d:cf:ff:58:df:de:46:
ee:9e:c1:c7
-----BEGIN CERTIFICATE-----
MIIFozCCBIugAwIBAgISAYz9ID9H3rSJ+DkJSy/T7njHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTEyMTAwMzE4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5N2QyM2FlMjhjZDg2MGM4ZWRmZDYxODM1NmY4YjMxZjVlNGRjOTI4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArcdBw2xdwksllmHpE2A/y36WggSC
lFSFEDXcRYQISMVI/YPr9yxS5s3AXSw/GH+qucp5v2fMWXYqu7rrX7rd8HEgeVeW
hjF7czKHMszem7+2xwU+hSerqQiBRgucYoAluj6jQyh7Gyo6dEH0OpYMoN5JYtCO
CYRo8BXJes3AA9Jsh2IH+F+ryBrGh+BjDK+7P7LRYwz7XiTkyV2P/DikVHzkYDiZ
fK0252kWnwM+SKW3M8D6RSvZBORStUm5X1iB+hyClJXzWxtThaQIJbETuBtCD5kM
EA5pLdLuJwjEFujW8QThR4+pOHJ4K9WkpDuEMVk9RGsbVtmNfXjJlkqC/QIDAQAB
o4ICrzCCAqswHQYDVR0OBBYEFJfSOuKM2GDI7f1hg1b4sx9eTckoMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2IwL2NhNjQx
Zi1kYjNhLTRmNjQtYTI1Yi1jZmE2YTkxNDgxZTIvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjAvY2E2NDFm
LWRiM2EtNGY2NC1hMjViLWNmYTZhOTE0ODFlMi8xL2w5STY0b3pZWU1qdF9XR0RW
dml6SDE1TnlTZy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF
BwEHAQH/BB8wHTAMBAIAATAGAwQATimLMA0EAgACMAcDBQMqEynAMBoGCCsGAQUF
BwEIAQH/BAswCaAHMAUCAwMSwTANBgkqhkiG9w0BAQsFAAOCAQEAL3vRA4+7Ewf6
2LOS+5c2poBL6hBgR6EVUJsxpu2GE+gL25onm5lMbiSKWh5CwxEzCQGYpYmOJFq3
eye5xr1e+IuUxzUlutUQDG3GeXoFHfL9y2mWYqalr8SbizsBPZzab2AC3r+ClrX9
JF9A6R7ydx1+9n6xQi3e7gTMXwCWrdjk9jZVqO4JkNJ63MiRay7t0T3gz7YQnPgD
VndRgtUz17uJVgqJ4uzGAx4fzQrU9jlBEpZBwJFOJqZ/K/o2pKl2YcHXBOSax27W
+5B6Q+rPIeDRXGNVQsI5Oni5AXLPNiscp7tcyuTxA/l5mOtQHcAvBKZFrYEtz/9Y
395G7p7Bxw==
-----END CERTIFICATE-----
Generated at Fri Nov 22 18:12:07 2024 by rpki-client on console-ams.rpki-client.org