Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/madzR6fTnzfwTrT1hftt_NsubSY.cer
File: madzR6fTnzfwTrT1hftt_NsubSY.cer (raw, json)
Hash identifier: 9DdLFsy1zNI1b7D5CDQSqntd334/+YgT5PhefjCd+uk=
Subject key identifier: 99:A7:73:47:A7:D3:9F:37:F0:4E:B4:F5:85:FB:6D:FC:DB:2E:6D:26
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01908E3AABA0F36FA0FB72BF72032C80370F
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki-repo.as207960.net/repo/rpki_ca_d0f2db99fe1d4b36b9301c821220fe3a/1/99A77347A7D39F37F04EB4F585FB6DFCDB2E6D26.mft
caRepository: rsync://rpki-repo.as207960.net/repo/rpki_ca_d0f2db99fe1d4b36b9301c821220fe3a/1/
Notify URL: https://rpki.as207960.net/rrdp/notification.xml
Certificate not before: Sun 07 Jul 2024 17:25:28 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 210561
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Sep 2024 14:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:8e:3a:ab:a0:f3:6f:a0:fb:72:bf:72:03:2c:80:37:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jul 7 17:25:28 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=99a77347a7d39f37f04eb4f585fb6dfcdb2e6d26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:4c:42:2e:16:c0:c4:8d:3a:bc:d1:5e:f3:4f:
04:4a:48:84:34:68:73:c9:c8:06:72:45:6b:17:a1:
24:1a:ad:bc:90:c4:4b:4a:4d:40:49:36:7f:45:52:
61:21:05:22:1a:b8:8d:e0:4e:03:10:6b:19:7a:5a:
fe:05:ea:3a:65:ef:6c:a8:95:63:0a:0e:75:f2:24:
6b:ba:a9:7a:d7:69:95:33:03:ba:84:06:50:54:51:
de:b8:a3:3a:e0:87:ca:0d:4e:fa:65:35:16:1d:2a:
01:20:12:54:fa:69:72:ee:b6:47:bd:72:76:46:40:
71:1f:77:4c:72:3f:96:3e:f5:ce:9d:f5:b0:80:c0:
f6:12:6f:63:23:9f:4d:23:28:eb:83:a3:0e:b8:8f:
cc:12:4f:a2:36:4e:10:99:56:ef:fa:bc:ed:6e:bd:
ac:e3:36:32:21:3c:e8:46:49:92:9a:05:2d:0c:d7:
46:83:9c:cf:31:c5:37:92:eb:c1:2d:6c:73:4a:b6:
9b:e5:0a:ec:af:bc:74:13:56:14:14:93:9b:24:eb:
ed:df:57:74:4e:b5:2f:5a:88:f2:77:7c:f9:b1:42:
59:d8:1c:2e:81:46:b3:87:e4:f9:04:57:a8:60:9f:
9f:42:e9:c9:56:ee:44:71:8b:ae:47:13:8f:62:49:
b0:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:A7:73:47:A7:D3:9F:37:F0:4E:B4:F5:85:FB:6D:FC:DB:2E:6D:26
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_d0f2db99fe1d4b36b9301c821220fe3a/1/
RPKI Manifest - URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_d0f2db99fe1d4b36b9301c821220fe3a/1/99A77347A7D39F37F04EB4F585FB6DFCDB2E6D26.mft
RPKI Notify - URI:https://rpki.as207960.net/rrdp/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
210561
Signature Algorithm: sha256WithRSAEncryption
7e:ea:c7:59:8b:38:9f:87:3c:4a:25:e8:06:9a:17:8c:03:eb:
a0:b9:3a:98:9e:31:c2:81:17:90:1f:5a:c5:d0:5a:c3:74:65:
cf:87:23:72:43:a2:19:3f:af:67:85:47:c4:83:cb:83:cf:71:
9f:20:f2:ed:bd:8d:88:d6:3c:ae:dd:70:61:36:81:f9:29:47:
83:9d:be:12:ad:62:82:66:66:f4:e3:f8:e8:1b:e0:2e:7a:64:
02:35:50:f1:83:5e:8b:7c:8b:f4:26:be:03:12:34:78:64:bd:
d6:e0:e7:6e:1d:47:7f:9b:51:ce:6c:82:4a:5a:0e:74:fb:0f:
68:cb:88:4d:ba:e2:a6:e6:59:22:2b:0d:b3:4a:b8:72:14:17:
9b:7b:f7:b0:2f:a8:4b:f4:86:a8:61:a7:b5:29:f3:43:c3:f0:
f4:a4:84:cf:14:09:f3:2d:17:b3:39:73:e8:83:ad:f1:3d:30:
cc:4d:30:57:6e:4d:97:3d:bf:9f:e8:d0:bd:90:2e:89:8b:8e:
08:ed:f7:6c:3d:a5:b6:91:85:2a:df:74:14:a8:4c:e6:c6:b5:
46:79:38:a0:b1:88:cc:ce:ec:8c:b3:9d:3a:60:5e:7e:67:47:
b3:a4:07:f6:1a:12:85:64:9d:54:39:84:a9:99:b9:ce:1b:db:
60:86:66:29
-----BEGIN CERTIFICATE-----
MIIFhjCCBG6gAwIBAgISAZCOOqug82+g+3K/cgMsgDcPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwNzA3MTcyNTI4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5OWE3NzM0N2E3ZDM5ZjM3ZjA0ZWI0ZjU4NWZiNmRmY2RiMmU2ZDI2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv0xCLhbAxI06vNFe808ESkiENGhz
ycgGckVrF6EkGq28kMRLSk1ASTZ/RVJhIQUiGriN4E4DEGsZelr+Beo6Ze9sqJVj
Cg518iRruql612mVMwO6hAZQVFHeuKM64IfKDU76ZTUWHSoBIBJU+mly7rZHvXJ2
RkBxH3dMcj+WPvXOnfWwgMD2Em9jI59NIyjrg6MOuI/MEk+iNk4QmVbv+rztbr2s
4zYyITzoRkmSmgUtDNdGg5zPMcU3kuvBLWxzSrab5Qrsr7x0E1YUFJObJOvt31d0
TrUvWojyd3z5sUJZ2BwugUazh+T5BFeoYJ+fQunJVu5EcYuuRxOPYkmwkwIDAQAB
o4ICkjCCAo4wHQYDVR0OBBYEFJmnc0en05838E609YX7bfzbLm0mMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggE2BggrBgEFBQcBCwSCASgwggEkMFsGCCsGAQUFBzAFhk9y
c3luYzovL3Jwa2ktcmVwby5hczIwNzk2MC5uZXQvcmVwby9ycGtpX2NhX2QwZjJk
Yjk5ZmUxZDRiMzZiOTMwMWM4MjEyMjBmZTNhLzEvMIGHBggrBgEFBQcwCoZ7cnN5
bmM6Ly9ycGtpLXJlcG8uYXMyMDc5NjAubmV0L3JlcG8vcnBraV9jYV9kMGYyZGI5
OWZlMWQ0YjM2YjkzMDFjODIxMjIwZmUzYS8xLzk5QTc3MzQ3QTdEMzlGMzdGMDRF
QjRGNTg1RkI2REZDREIyRTZEMjYubWZ0MDsGCCsGAQUFBzANhi9odHRwczovL3Jw
a2kuYXMyMDc5NjAubmV0L3JyZHAvbm90aWZpY2F0aW9uLnhtbDBZBgNVHR8EUjBQ
ME6gTKBKhkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0twU28zVlZLNXdFSElKbkhDMlFIVlYzZDVtay5jcmwwGAYDVR0gAQH/BA4wDDAK
BggrBgEFBQcOAjAaBggrBgEFBQcBCAEB/wQLMAmgBzAFAgMDNoEwDQYJKoZIhvcN
AQELBQADggEBAH7qx1mLOJ+HPEol6AaaF4wD66C5OpieMcKBF5AfWsXQWsN0Zc+H
I3JDohk/r2eFR8SDy4PPcZ8g8u29jYjWPK7dcGE2gfkpR4OdvhKtYoJmZvTj+Ogb
4C56ZAI1UPGDXot8i/QmvgMSNHhkvdbg524dR3+bUc5sgkpaDnT7D2jLiE264qbm
WSIrDbNKuHIUF5t797AvqEv0hqhhp7Up80PD8PSkhM8UCfMtF7M5c+iDrfE9MMxN
MFduTZc9v5/o0L2QLomLjgjt92w9pbaRhSrfdBSoTObGtUZ5OKCxiMzO7IyznTpg
Xn5nR7OkB/YaEoVknVQ5hKmZuc4b22CGZik=
-----END CERTIFICATE-----
Generated at Sat Sep 7 21:22:04 2024 by rpki-client on console-ams.rpki-client.org