Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/oq41aWif9UKpEdcJi4JGbm6p_IU.cer
File: oq41aWif9UKpEdcJi4JGbm6p_IU.cer (raw, json)
Hash identifier: MXJaJHMYMR8damOZs9/Tv+xAsY5E+lSXIjUfYjCV7hA=
Subject key identifier: A2:AE:35:69:68:9F:F5:42:A9:11:D7:09:8B:82:46:6E:6E:A9:FC:85
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC86FE0F26763EBE162D2963F4CE060A8
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/c5/98867c-856e-46c9-8925-6ea5d8b75411/1/oq41aWif9UKpEdcJi4JGbm6p_IU.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/c5/98867c-856e-46c9-8925-6ea5d8b75411/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 04:30:24 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 211668
IP: 80.249.132.0/24
IP: 2a10:b5c0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:e0:f2:67:63:eb:e1:62:d2:96:3f:4c:e0:60:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 04:30:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a2ae3569689ff542a911d7098b82466e6ea9fc85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:6b:4e:b2:de:59:7b:5e:bd:43:1a:8c:36:10:
e4:96:c1:20:d3:d4:21:35:70:e4:8a:7c:bf:58:3b:
68:49:15:d3:04:a8:63:a8:13:2c:8d:ac:c1:2c:03:
17:7e:13:fe:f6:b4:7c:63:89:35:60:98:48:c7:c9:
21:a1:ef:56:5e:63:26:b6:3b:b7:a0:3c:e6:ca:27:
ce:99:e2:6d:69:ba:08:82:0c:6f:b1:17:7e:bf:c5:
ac:19:33:b8:5b:55:7b:81:de:3e:1b:3b:3b:15:54:
7b:cf:8d:6b:8d:f8:ad:84:58:83:20:1e:1a:93:e1:
b7:46:5e:45:c5:80:48:72:53:6c:00:a7:57:c6:a7:
4f:64:0b:29:b0:7c:69:75:f9:fd:23:74:8d:a4:97:
ec:6f:18:17:a1:cc:93:09:bf:23:b4:16:0e:60:a3:
00:9b:ef:6e:d2:60:bb:5b:3d:7b:4a:c4:1b:62:ac:
74:3b:0c:7d:f2:fd:3b:be:e8:0c:8f:21:f9:ab:67:
ff:d5:a4:cd:1f:14:41:b6:23:46:5d:06:30:b8:d4:
d1:41:27:c5:7c:2c:a5:de:64:1f:04:ef:e5:8b:3d:
f9:17:33:0d:72:e5:61:27:82:4b:15:74:00:51:74:
fb:2c:9f:a9:d8:a1:33:02:5f:84:8b:15:54:66:a0:
07:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:AE:35:69:68:9F:F5:42:A9:11:D7:09:8B:82:46:6E:6E:A9:FC:85
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/98867c-856e-46c9-8925-6ea5d8b75411/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/98867c-856e-46c9-8925-6ea5d8b75411/1/oq41aWif9UKpEdcJi4JGbm6p_IU.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.249.132.0/24
IPv6:
2a10:b5c0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
211668
Signature Algorithm: sha256WithRSAEncryption
94:c6:f7:0a:79:3c:dd:8d:37:fe:8b:bb:b6:42:71:20:68:db:
46:68:1a:58:a4:df:b6:dc:e0:62:a8:0c:65:ad:e4:9b:8e:c4:
2f:53:95:17:aa:81:de:b7:27:68:98:52:ec:98:2e:d5:5d:3c:
7f:b9:fc:aa:a1:6a:ae:97:34:a3:41:04:ee:97:83:1e:56:74:
12:a1:d8:27:bc:cb:aa:23:0d:63:c7:b6:22:8a:ab:22:07:4f:
9b:60:f2:5c:63:0d:d2:30:c2:ec:24:db:5f:23:1d:fb:bb:12:
87:a4:86:67:67:71:b3:06:69:2f:40:66:14:d5:06:9f:8c:4e:
71:db:3f:d5:46:54:b5:7b:b2:29:51:a1:51:bd:41:e5:ff:ad:
f8:26:44:12:a2:99:52:2e:ba:30:91:c1:0e:64:ba:ab:b5:c4:
d4:31:33:32:56:f9:13:71:00:5a:34:22:3b:7a:4b:6d:31:68:
7d:7b:6f:44:af:51:6f:f5:42:cd:57:67:7f:66:cb:98:aa:a4:
c3:d4:3e:49:f8:4e:79:b4:1d:17:30:45:ef:55:15:e3:f9:64:
de:4f:03:bb:a5:9b:57:9a:3c:97:96:66:b1:8e:d6:6f:e2:23:
fc:78:ec:d1:44:a1:c0:19:2c:16:84:46:81:d4:f7:be:f6:7e:
84:ad:13:05
-----BEGIN CERTIFICATE-----
MIIFozCCBIugAwIBAgISAYzIb+DyZ2Pr4WLSlj9M4GCoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAyMDQzMDI0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhMmFlMzU2OTY4OWZmNTQyYTkxMWQ3MDk4YjgyNDY2ZTZlYTlmYzg1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1WtOst5Ze169QxqMNhDklsEg09Qh
NXDkiny/WDtoSRXTBKhjqBMsjazBLAMXfhP+9rR8Y4k1YJhIx8khoe9WXmMmtju3
oDzmyifOmeJtaboIggxvsRd+v8WsGTO4W1V7gd4+Gzs7FVR7z41rjfithFiDIB4a
k+G3Rl5FxYBIclNsAKdXxqdPZAspsHxpdfn9I3SNpJfsbxgXocyTCb8jtBYOYKMA
m+9u0mC7Wz17SsQbYqx0Owx98v07vugMjyH5q2f/1aTNHxRBtiNGXQYwuNTRQSfF
fCyl3mQfBO/liz35FzMNcuVhJ4JLFXQAUXT7LJ+p2KEzAl+EixVUZqAHYQIDAQAB
o4ICrzCCAqswHQYDVR0OBBYEFKKuNWlon/VCqRHXCYuCRm5uqfyFMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2M1Lzk4ODY3
Yy04NTZlLTQ2YzktODkyNS02ZWE1ZDhiNzU0MTEvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzUvOTg4Njdj
LTg1NmUtNDZjOS04OTI1LTZlYTVkOGI3NTQxMS8xL29xNDFhV2lmOVVLcEVkY0pp
NEpHYm02cF9JVS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF
BwEHAQH/BB8wHTAMBAIAATAGAwQAUPmEMA0EAgACMAcDBQMqELXAMBoGCCsGAQUF
BwEIAQH/BAswCaAHMAUCAwM61DANBgkqhkiG9w0BAQsFAAOCAQEAlMb3Cnk83Y03
/ou7tkJxIGjbRmgaWKTfttzgYqgMZa3km47EL1OVF6qB3rcnaJhS7Jgu1V08f7n8
qqFqrpc0o0EE7peDHlZ0EqHYJ7zLqiMNY8e2IoqrIgdPm2DyXGMN0jDC7CTbXyMd
+7sSh6SGZ2dxswZpL0BmFNUGn4xOcds/1UZUtXuyKVGhUb1B5f+t+CZEEqKZUi66
MJHBDmS6q7XE1DEzMlb5E3EAWjQiO3pLbTFofXtvRK9Rb/VCzVdnf2bLmKqkw9Q+
SfhOebQdFzBF71UV4/lk3k8Du6WbV5o8l5ZmsY7Wb+Ij/Hjs0UShwBksFoRGgdT3
vvZ+hK0TBQ==
-----END CERTIFICATE-----
Generated at Wed Nov 27 00:42:41 2024 by rpki-client on console-ams.rpki-client.org