Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/nLxTKkq1Xwb3wbZwGSJPjczaZTQ.cer
File: nLxTKkq1Xwb3wbZwGSJPjczaZTQ.cer (raw, json)
Hash identifier: pBSTsfTGZObYiIjP53cFAYnmJmKFkO/5iK5kaReR5rE=
Subject key identifier: 9C:BC:53:2A:4A:B5:5F:06:F7:C1:B6:70:19:22:4F:8D:CC:DA:65:34
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC86F3B6D6BBD13A2C67657E358DF881D
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/81/da5c0d-5944-4963-adec-fb66742045ed/1/nLxTKkq1Xwb3wbZwGSJPjczaZTQ.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/81/da5c0d-5944-4963-adec-fb66742045ed/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 04:29:42 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 207810
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:3b:6d:6b:bd:13:a2:c6:76:57:e3:58:df:88:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 04:29:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9cbc532a4ab55f06f7c1b67019224f8dccda6534
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:cc:f3:d3:fe:8c:c7:05:61:34:9d:13:45:dd:
0d:62:6b:27:06:61:36:31:55:34:a3:6f:5d:c0:3d:
2b:ed:5f:d7:ee:04:4d:d7:91:05:81:23:33:8c:56:
c9:b7:3d:67:97:ff:5b:f0:e1:14:01:d8:3d:19:0b:
0f:90:16:a0:0b:75:0f:17:dc:4f:d1:71:53:36:67:
58:60:6e:a1:15:bd:6e:8e:ae:4a:eb:84:c2:85:29:
0b:e6:ea:a6:d8:4d:50:aa:ad:0f:bc:35:40:30:7c:
78:11:52:3d:8e:5e:f6:47:a5:49:e8:40:69:cf:35:
a3:44:cf:5b:dd:13:21:c0:a6:61:ce:3e:26:8b:dc:
b9:c1:96:13:82:c1:02:44:6a:cb:75:26:d3:18:e8:
90:42:53:48:dd:32:4e:66:64:ac:dc:43:b6:e5:ac:
6c:06:f8:98:f3:42:e2:54:29:c2:4f:bf:22:a1:0f:
00:03:a9:b5:01:77:b9:b2:04:2d:44:56:76:20:53:
2a:28:59:a1:24:a4:de:2e:0a:16:73:f2:19:bc:23:
f9:32:4d:9b:47:32:78:17:76:df:a3:cb:46:64:a0:
fd:61:46:12:ff:92:94:6b:c8:3e:36:e8:43:17:52:
e5:1a:ba:17:7d:81:f4:bd:aa:45:d4:4a:e7:26:81:
6c:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:BC:53:2A:4A:B5:5F:06:F7:C1:B6:70:19:22:4F:8D:CC:DA:65:34
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/da5c0d-5944-4963-adec-fb66742045ed/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/da5c0d-5944-4963-adec-fb66742045ed/1/nLxTKkq1Xwb3wbZwGSJPjczaZTQ.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
207810
Signature Algorithm: sha256WithRSAEncryption
4b:42:3c:90:98:76:9b:7d:14:0d:e4:2c:24:99:2c:e6:75:73:
69:2d:f7:8c:cf:2c:aa:d4:11:22:42:c8:8a:c1:16:36:ce:09:
34:f3:56:3d:a4:33:49:45:f3:f2:b0:e9:d4:56:84:b8:50:5f:
29:2e:86:95:65:57:13:ee:08:14:af:a2:8b:7e:0c:9f:a2:ef:
f9:21:77:20:96:ad:74:0c:5f:57:df:b3:c8:5b:35:e7:1c:3c:
5d:be:f2:55:09:bf:a8:4b:80:bc:a7:da:a7:ae:f9:39:90:ff:
39:9e:0d:1d:b7:aa:61:ab:aa:aa:30:87:7c:a6:8b:8b:e8:fe:
6c:fb:02:06:5a:96:de:43:e7:d4:a3:d5:7b:5f:2b:2a:9f:3a:
6d:f9:10:32:16:14:b0:42:2d:d7:73:05:ee:cd:22:f8:ab:c5:
d5:cc:ab:f6:69:45:d3:3c:90:0d:25:78:56:9a:21:53:b6:d3:
86:db:f3:4a:3f:36:3b:6e:74:27:8c:6b:55:56:45:ee:3f:07:
21:60:e0:15:13:f3:7b:ce:29:48:c5:96:b8:bd:ce:84:4a:7a:
64:4c:76:e9:71:46:ca:16:46:45:47:92:70:13:43:b2:9c:11:
d2:db:25:93:40:58:57:0f:88:bc:da:8c:33:d6:a1:5c:cf:1b:
74:49:59:0e
-----BEGIN CERTIFICATE-----
MIIFczCCBFugAwIBAgISAYzIbztta70TosZ2V+NY34gdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAyMDQyOTQyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5Y2JjNTMyYTRhYjU1ZjA2ZjdjMWI2NzAxOTIyNGY4ZGNjZGE2NTM0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA48zz0/6MxwVhNJ0TRd0NYmsnBmE2
MVU0o29dwD0r7V/X7gRN15EFgSMzjFbJtz1nl/9b8OEUAdg9GQsPkBagC3UPF9xP
0XFTNmdYYG6hFb1ujq5K64TChSkL5uqm2E1Qqq0PvDVAMHx4EVI9jl72R6VJ6EBp
zzWjRM9b3RMhwKZhzj4mi9y5wZYTgsECRGrLdSbTGOiQQlNI3TJOZmSs3EO25axs
BviY80LiVCnCT78ioQ8AA6m1AXe5sgQtRFZ2IFMqKFmhJKTeLgoWc/IZvCP5Mk2b
RzJ4F3bfo8tGZKD9YUYS/5KUa8g+NuhDF1LlGroXfYH0vapF1ErnJoFsQwIDAQAB
o4ICfzCCAnswHQYDVR0OBBYEFJy8UypKtV8G98G2cBkiT43M2mU0MB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzgxL2RhNWMw
ZC01OTQ0LTQ5NjMtYWRlYy1mYjY2NzQyMDQ1ZWQvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODEvZGE1YzBk
LTU5NDQtNDk2My1hZGVjLWZiNjY3NDIwNDVlZC8xL25MeFRLa3ExWHdiM3diWndH
U0pQamN6YVpUUS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMBoGCCsGAQUF
BwEIAQH/BAswCaAHMAUCAwMrwjANBgkqhkiG9w0BAQsFAAOCAQEAS0I8kJh2m30U
DeQsJJks5nVzaS33jM8sqtQRIkLIisEWNs4JNPNWPaQzSUXz8rDp1FaEuFBfKS6G
lWVXE+4IFK+ii34Mn6Lv+SF3IJatdAxfV9+zyFs15xw8Xb7yVQm/qEuAvKfap675
OZD/OZ4NHbeqYauqqjCHfKaLi+j+bPsCBlqW3kPn1KPVe18rKp86bfkQMhYUsEIt
13MF7s0i+KvF1cyr9mlF0zyQDSV4VpohU7bThtvzSj82O250J4xrVVZF7j8HIWDg
FRPze84pSMWWuL3OhEp6ZEx26XFGyhZGRUeScBNDspwR0tslk0BYVw+IvNqMM9ah
XM8bdElZDg==
-----END CERTIFICATE-----
Generated at Fri May 3 02:13:25 2024 by rpki-client on console-ams.rpki-client.org