Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/lRibFY2NYBG6X5YlLTAmanDT4GY.cer
File: lRibFY2NYBG6X5YlLTAmanDT4GY.cer (raw, json)
Hash identifier: bgpWDuRSAvETo63kaJb7HVFK+JXSQWe48PGhjcfgQK0=
Subject key identifier: 95:18:9B:15:8D:8D:60:11:BA:5F:96:25:2D:30:26:6A:70:D3:E0:66
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC56E9E23DBABDEAEB7F9B16208C560ED
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/db/d27ad0-55c2-4904-a8c5-ace180ff9b19/1/lRibFY2NYBG6X5YlLTAmanDT4GY.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/db/d27ad0-55c2-4904-a8c5-ace180ff9b19/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 14:30:10 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 204302
IP: 2001:678:640::/48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:9e:23:db:ab:de:ae:b7:f9:b1:62:08:c5:60:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 14:30:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=95189b158d8d6011ba5f96252d30266a70d3e066
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:46:21:9d:be:9f:9f:5b:39:6e:38:50:21:f9:
68:72:3d:a9:db:9e:b3:9c:ed:02:28:b2:09:0e:24:
c6:fd:96:8a:4b:65:e1:e4:a0:72:e5:b1:ce:3f:e8:
4f:87:41:af:a7:bd:40:bc:ac:db:16:b1:5a:fc:5d:
6a:d9:1c:be:52:ea:22:59:14:40:08:11:dd:8e:d9:
3e:10:01:46:bf:9f:da:ca:83:e2:71:67:29:c1:a1:
a5:f4:cb:c3:b6:5a:8b:1c:5e:f6:f4:fd:9d:47:41:
b7:fd:8b:25:96:fe:b6:36:f3:c7:96:33:a4:c6:60:
e9:23:5c:b5:ea:d6:02:f5:83:a6:08:c8:0b:61:d1:
65:81:fb:a7:44:56:7f:d6:26:cd:84:82:8d:73:36:
bd:40:c0:22:3b:eb:b7:c4:3b:83:6f:87:23:33:ab:
86:8d:23:4d:b7:10:a2:86:0a:e2:3c:bd:03:80:29:
61:05:23:a5:90:1a:54:b2:13:2a:a0:ae:1b:71:57:
fe:50:55:e2:d4:82:73:3a:c0:30:27:59:f5:97:40:
e3:8a:d7:71:5b:6b:1e:88:37:60:ab:02:e1:c4:17:
da:b2:ef:4e:55:dc:4e:53:bb:1d:57:bc:23:4d:7b:
7e:83:cc:44:17:b5:d2:92:1c:05:47:f8:12:5f:02:
f5:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:18:9B:15:8D:8D:60:11:BA:5F:96:25:2D:30:26:6A:70:D3:E0:66
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/d27ad0-55c2-4904-a8c5-ace180ff9b19/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/d27ad0-55c2-4904-a8c5-ace180ff9b19/1/lRibFY2NYBG6X5YlLTAmanDT4GY.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:640::/48
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
204302
Signature Algorithm: sha256WithRSAEncryption
25:15:cf:65:d3:3d:86:b8:ee:79:58:c9:34:a9:a5:28:74:d9:
0f:be:6e:46:ce:71:c7:d7:ec:f0:56:bd:d0:ef:26:ef:41:d4:
8a:4f:5b:ee:d4:f2:76:87:06:50:7e:a5:f5:26:0f:2d:41:33:
41:16:61:4e:a4:39:9e:20:3a:77:2d:3b:47:66:d0:66:f6:41:
58:f3:cd:8f:0d:bd:14:30:6c:6e:37:de:52:62:ec:d1:9a:ed:
a8:12:91:e8:af:38:70:f1:14:fb:b1:df:56:c2:20:a5:cc:c7:
ff:7e:8c:cd:de:d7:ae:a5:31:4c:cc:5f:fc:3f:06:fd:fb:2a:
cb:ce:00:cd:4a:ed:2b:c2:ee:88:e4:d1:15:b0:f0:20:ca:9c:
94:92:58:da:d7:d4:f9:b5:b2:38:52:b7:b4:9b:84:05:e6:01:
8d:66:30:58:c8:2d:75:ab:62:66:12:d2:c0:43:91:71:74:b9:
a0:b7:03:6b:04:cf:1b:25:92:4d:01:6d:db:6e:81:81:d2:21:
24:58:e7:71:83:5c:c5:63:6c:65:49:f1:06:b5:7b:d7:66:1c:
57:23:4a:d1:6e:eb:6f:64:36:c7:7a:96:ef:d7:bf:3d:a2:2b:
c5:eb:25:fd:3a:f3:bd:18:b4:14:23:70:a0:c2:e2:3d:a7:5f:
35:34:eb:18
-----BEGIN CERTIFICATE-----
MIIFlzCCBH+gAwIBAgISAYzFbp4j26verrf5sWIIxWDtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAxMTQzMDEwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5NTE4OWIxNThkOGQ2MDExYmE1Zjk2MjUyZDMwMjY2YTcwZDNlMDY2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnkYhnb6fn1s5bjhQIflocj2p256z
nO0CKLIJDiTG/ZaKS2Xh5KBy5bHOP+hPh0Gvp71AvKzbFrFa/F1q2Ry+UuoiWRRA
CBHdjtk+EAFGv5/ayoPicWcpwaGl9MvDtlqLHF729P2dR0G3/Ysllv62NvPHljOk
xmDpI1y16tYC9YOmCMgLYdFlgfunRFZ/1ibNhIKNcza9QMAiO+u3xDuDb4cjM6uG
jSNNtxCihgriPL0DgClhBSOlkBpUshMqoK4bcVf+UFXi1IJzOsAwJ1n1l0Djitdx
W2seiDdgqwLhxBfasu9OVdxOU7sdV7wjTXt+g8xEF7XSkhwFR/gSXwL1swIDAQAB
o4ICozCCAp8wHQYDVR0OBBYEFJUYmxWNjWARul+WJS0wJmpw0+BmMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2RiL2QyN2Fk
MC01NWMyLTQ5MDQtYThjNS1hY2UxODBmZjliMTkvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZGIvZDI3YWQw
LTU1YzItNDkwNC1hOGM1LWFjZTE4MGZmOWIxOS8xL2xSaWJGWTJOWUJHNlg1WWxM
VEFtYW5EVDRHWS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF
BwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGeAZAMBoGCCsGAQUFBwEIAQH/BAswCaAH
MAUCAwMeDjANBgkqhkiG9w0BAQsFAAOCAQEAJRXPZdM9hrjueVjJNKmlKHTZD75u
Rs5xx9fs8Fa90O8m70HUik9b7tTydocGUH6l9SYPLUEzQRZhTqQ5niA6dy07R2bQ
ZvZBWPPNjw29FDBsbjfeUmLs0ZrtqBKR6K84cPEU+7HfVsIgpczH/36Mzd7XrqUx
TMxf/D8G/fsqy84AzUrtK8LuiOTRFbDwIMqclJJY2tfU+bWyOFK3tJuEBeYBjWYw
WMgtdatiZhLSwEORcXS5oLcDawTPGyWSTQFt226BgdIhJFjncYNcxWNsZUnxBrV7
12YcVyNK0W7rb2Q2x3qW79e/PaIrxesl/TrzvRi0FCNwoMLiPadfNTTrGA==
-----END CERTIFICATE-----
Generated at Fri May 3 08:15:09 2024 by rpki-client on console-fra.rpki-client.org