Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/m7xCOcnLmB8ZpJXmM9O-yIn8vok.cer
File: m7xCOcnLmB8ZpJXmM9O-yIn8vok.cer (raw, json)
Hash identifier: Jwx8gSFrlojMlB22AzLtHPf2fcd6sS+xC/nMXiQeTpg=
Subject key identifier: 9B:BC:42:39:C9:CB:98:1F:19:A4:95:E6:33:D3:BE:C8:89:FC:BE:89
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018E087FC3D77D6C1B80C21F99C0C298F1C2
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/3b/c84a4d-9e57-4756-bdbb-01aa056b1f6f/1/m7xCOcnLmB8ZpJXmM9O-yIn8vok.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/3b/c84a4d-9e57-4756-bdbb-01aa056b1f6f/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 04 Mar 2024 08:06:14 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 43940
AS: 201777
IP: 62.4.32.0/19
IP: 109.72.96.0/20
IP: 185.64.0.0/22
IP: 185.179.92.0/22
IP: 185.215.88.0/22
IP: 213.133.0.0/19
IP: 213.196.64.0/19
IP: 2a03:7a0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:08:7f:c3:d7:7d:6c:1b:80:c2:1f:99:c0:c2:98:f1:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Mar 4 08:06:14 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9bbc4239c9cb981f19a495e633d3bec889fcbe89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:13:c6:17:25:60:3e:b9:f5:b5:89:cd:fa:7b:
ed:2c:4c:8d:c8:02:ce:a7:88:a8:27:4c:4e:6e:4d:
70:44:81:36:45:64:be:42:72:fe:4c:8a:82:1b:85:
23:79:9a:51:f1:c3:52:e0:eb:66:73:f3:b6:2d:44:
58:83:f0:06:05:5c:87:8c:8f:99:85:6e:7b:c2:84:
f7:db:f7:e5:e8:33:40:a2:ef:36:3f:4b:2d:18:52:
cf:e8:17:c2:7e:68:e0:d7:b9:ca:f3:97:cc:f5:22:
c6:2d:60:ec:ca:3e:60:6f:fc:4f:46:55:5a:38:f1:
7e:0d:14:91:70:52:54:ff:ed:fb:76:98:e9:7c:83:
d9:1c:82:75:cb:c6:d9:0c:b9:ae:14:96:d9:67:af:
5c:2f:f1:b5:cf:f6:9f:8a:19:a2:7d:77:df:73:fa:
5a:df:20:3f:66:10:bb:77:68:75:65:1e:74:0f:95:
35:a3:c4:d8:c6:91:52:c9:0a:df:25:7a:6b:16:35:
8a:4e:89:24:1a:ec:c2:bd:6d:8f:3e:f5:82:1b:ac:
9d:70:46:65:c1:ba:10:a9:d2:f4:60:6e:fd:c2:c4:
de:02:03:3a:59:5d:c0:05:37:72:59:9b:9a:9c:91:
2f:21:8c:51:cf:7c:aa:80:5f:15:84:2d:20:87:36:
d9:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:BC:42:39:C9:CB:98:1F:19:A4:95:E6:33:D3:BE:C8:89:FC:BE:89
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/c84a4d-9e57-4756-bdbb-01aa056b1f6f/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/c84a4d-9e57-4756-bdbb-01aa056b1f6f/1/m7xCOcnLmB8ZpJXmM9O-yIn8vok.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.4.32.0/19
109.72.96.0/20
185.64.0.0/22
185.179.92.0/22
185.215.88.0/22
213.133.0.0/19
213.196.64.0/19
IPv6:
2a03:7a0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
43940
201777
Signature Algorithm: sha256WithRSAEncryption
74:41:7f:79:a2:d1:18:02:0e:31:19:49:63:dc:fb:f7:5d:66:
4f:32:3d:b2:1b:aa:86:6e:11:a6:f7:7b:be:ba:62:01:b5:40:
03:21:51:70:3f:0c:ea:94:c0:8a:d2:3b:45:86:18:fd:1d:43:
08:32:1e:9d:74:56:5e:91:d3:49:7f:a7:65:ec:25:16:45:6a:
80:54:45:ae:1b:ab:80:56:7e:56:d4:6a:d3:99:29:58:5c:3f:
cd:8c:45:f9:e8:78:35:54:7e:f7:b0:33:6c:a3:09:39:26:de:
be:f7:5b:9a:d0:ce:53:46:21:6f:ce:dd:8c:30:06:5b:64:a5:
c6:3a:4d:78:f4:23:39:17:75:22:9e:fd:ac:28:28:a1:14:ae:
2f:c3:15:71:07:14:7b:0b:46:0e:52:2a:95:30:22:10:4f:79:
3d:0f:5c:b2:26:2a:e8:a8:4d:98:9c:97:d9:70:fc:51:15:2d:
8d:bd:c7:56:66:58:5c:ac:5b:c2:7b:5f:f6:f4:75:05:9b:6d:
63:48:0d:1e:cc:e3:8e:1a:5c:5e:f4:a9:00:c8:1c:08:84:6e:
af:b7:7a:70:b4:15:7a:ff:b7:97:23:c7:49:98:23:37:cd:93:
32:2c:15:0b:27:67:1b:fb:0f:ff:44:77:af:ab:2e:c4:14:e3:
04:53:d4:d8
-----BEGIN CERTIFICATE-----
MIIFzDCCBLSgAwIBAgISAY4If8PXfWwbgMIfmcDCmPHCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMzA0MDgwNjE0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5YmJjNDIzOWM5Y2I5ODFmMTlhNDk1ZTYzM2QzYmVjODg5ZmNiZTg5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwhPGFyVgPrn1tYnN+nvtLEyNyALO
p4ioJ0xObk1wRIE2RWS+QnL+TIqCG4UjeZpR8cNS4Otmc/O2LURYg/AGBVyHjI+Z
hW57woT32/fl6DNAou82P0stGFLP6BfCfmjg17nK85fM9SLGLWDsyj5gb/xPRlVa
OPF+DRSRcFJU/+37dpjpfIPZHIJ1y8bZDLmuFJbZZ69cL/G1z/afihmifXffc/pa
3yA/ZhC7d2h1ZR50D5U1o8TYxpFSyQrfJXprFjWKTokkGuzCvW2PPvWCG6ydcEZl
wboQqdL0YG79wsTeAgM6WV3ABTdyWZuanJEvIYxRz3yqgF8VhC0ghzbZOQIDAQAB
o4IC2DCCAtQwHQYDVR0OBBYEFJu8QjnJy5gfGaSV5jPTvsiJ/L6JMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzNiL2M4NGE0
ZC05ZTU3LTQ3NTYtYmRiYi0wMWFhMDU2YjFmNmYvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvM2IvYzg0YTRk
LTllNTctNDc1Ni1iZGJiLTAxYWEwNTZiMWY2Zi8xL203eENPY25MbUI4WnBKWG1N
OU8teUluOHZvay5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFIGCCsGAQUF
BwEHAQH/BEMwQTAwBAIAATAqAwQFPgQgAwQEbUhgAwQCuUAAAwQCubNcAwQCuddY
AwQF1YUAAwQF1cRAMA0EAgACMAcDBQMqAwegMB8GCCsGAQUFBwEIAQH/BBAwDqAM
MAoCAwCrpAIDAxQxMA0GCSqGSIb3DQEBCwUAA4IBAQB0QX95otEYAg4xGUlj3Pv3
XWZPMj2yG6qGbhGm93u+umIBtUADIVFwPwzqlMCK0jtFhhj9HUMIMh6ddFZekdNJ
f6dl7CUWRWqAVEWuG6uAVn5W1GrTmSlYXD/NjEX56Hg1VH73sDNsowk5Jt6+91ua
0M5TRiFvzt2MMAZbZKXGOk149CM5F3Uinv2sKCihFK4vwxVxBxR7C0YOUiqVMCIQ
T3k9D1yyJiroqE2YnJfZcPxRFS2NvcdWZlhcrFvCe1/29HUFm21jSA0ezOOOGlxe
9KkAyBwIhG6vt3pwtBV6/7eXI8dJmCM3zZMyLBULJ2cb+w//RHevqy7EFOMEU9TY
-----END CERTIFICATE-----
Generated at Fri Nov 22 18:30:25 2024 by rpki-client on console-fra.rpki-client.org