Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/orzYisPgLP-tPADeRrXaM2vWRwI.cer
File: orzYisPgLP-tPADeRrXaM2vWRwI.cer (raw, json)
Hash identifier: 0EWWCLm/9HDknxgXlxImOe8kPitz+S4aKA006JXd5Hc=
Subject key identifier: A2:BC:D8:8A:C3:E0:2C:FF:AD:3C:00:DE:46:B5:DA:33:6B:D6:47:02
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CCA29EB7FCBC092A015F8188BA2DC1CDE
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/06/cf4db5-fb29-4b2a-a215-aab862861a09/1/orzYisPgLP-tPADeRrXaM2vWRwI.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/06/cf4db5-fb29-4b2a-a215-aab862861a09/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 12:33:14 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 25143
IP: 91.239.48.0/22
IP: 193.19.228.0/22
IP: 193.238.20.0/22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:29:eb:7f:cb:c0:92:a0:15:f8:18:8b:a2:dc:1c:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 12:33:14 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a2bcd88ac3e02cffad3c00de46b5da336bd64702
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:e0:2f:ad:79:c7:4e:60:86:a6:fb:a8:63:88:
ad:da:a4:5e:9c:5a:a3:9e:f5:9b:69:ca:f8:49:24:
0e:98:80:52:89:c0:b7:ef:99:4b:3c:44:c4:c7:4c:
ce:a1:f2:99:0f:44:9c:3f:f5:fe:ab:21:cc:a0:73:
f5:35:4e:69:5f:3f:ce:ef:89:55:c1:13:57:17:b7:
2d:13:4a:06:c4:c5:14:ef:6d:50:38:25:e0:8b:49:
ed:c2:d6:b7:b1:2e:a6:dc:64:c0:b2:a7:77:da:84:
15:04:07:fe:4f:3f:02:d9:b2:35:d2:65:38:e4:2e:
6a:8b:e5:62:10:c0:12:d8:6b:68:c0:0f:96:5d:98:
1e:bf:ad:49:11:56:fb:0d:4b:46:62:d9:07:98:44:
0d:91:13:c3:03:ca:77:55:5c:6c:5e:d9:42:39:b8:
b0:27:7f:ed:10:1b:5a:bc:05:cb:0b:5b:f0:66:da:
66:52:24:b8:38:2f:b6:66:11:a8:21:58:6c:98:37:
26:ae:48:9c:b6:d6:0d:5e:cb:01:e2:9f:80:b0:27:
cf:c8:36:bd:31:d9:68:8a:67:90:97:71:2b:ca:89:
49:39:dc:63:81:3b:04:a3:1f:ef:52:4c:09:c1:27:
c6:6d:1f:b0:6f:a1:5f:c8:10:bb:43:18:92:18:29:
35:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:BC:D8:8A:C3:E0:2C:FF:AD:3C:00:DE:46:B5:DA:33:6B:D6:47:02
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/cf4db5-fb29-4b2a-a215-aab862861a09/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/cf4db5-fb29-4b2a-a215-aab862861a09/1/orzYisPgLP-tPADeRrXaM2vWRwI.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.239.48.0/22
193.19.228.0/22
193.238.20.0/22
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
25143
Signature Algorithm: sha256WithRSAEncryption
36:5e:6c:23:33:df:1f:93:df:90:d6:f2:2f:96:18:4a:95:f8:
29:94:77:1a:5b:0a:98:4b:bc:86:9e:10:d8:06:a7:ce:0a:f0:
73:aa:ba:e2:d9:83:36:98:ab:44:61:20:6c:57:b2:43:29:e6:
c3:69:e9:11:9e:24:c3:29:37:34:9e:2c:09:73:94:d1:b8:7e:
aa:a1:5d:7a:27:de:e2:97:f3:f3:45:0d:30:34:2e:25:9d:c3:
4d:4a:e9:8f:44:18:7b:67:1a:47:7f:0b:a8:4e:6f:dd:11:93:
fd:bb:6e:25:26:19:f5:f3:16:cc:42:13:2a:57:a2:16:19:c1:
be:94:b1:d6:13:b4:41:87:2e:74:a3:fb:c0:81:fd:ad:cf:f0:
b5:fc:6d:31:29:fe:97:22:cf:c3:aa:c0:fc:29:19:ca:91:ee:
36:ef:bd:c2:c4:0b:c4:79:2a:eb:7c:cd:74:86:d7:11:4b:6a:
73:fa:90:83:71:d2:ff:c9:af:0e:c0:74:42:51:67:32:c8:9e:
40:29:73:e4:99:e2:12:17:85:f9:91:f2:6e:7e:dc:2d:8d:9e:
df:06:31:6c:38:82:71:d8:45:60:65:17:e9:90:dd:2a:56:01:
cd:c2:42:a2:1c:45:a3:ff:b2:05:34:01:53:a4:99:be:54:5c:
52:c3:bd:6a
-----BEGIN CERTIFICATE-----
MIIFnzCCBIegAwIBAgISAYzKKet/y8CSoBX4GIui3BzeMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAyMTIzMzE0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhMmJjZDg4YWMzZTAyY2ZmYWQzYzAwZGU0NmI1ZGEzMzZiZDY0NzAyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnuAvrXnHTmCGpvuoY4it2qRenFqj
nvWbacr4SSQOmIBSicC375lLPETEx0zOofKZD0ScP/X+qyHMoHP1NU5pXz/O74lV
wRNXF7ctE0oGxMUU721QOCXgi0ntwta3sS6m3GTAsqd32oQVBAf+Tz8C2bI10mU4
5C5qi+ViEMAS2GtowA+WXZgev61JEVb7DUtGYtkHmEQNkRPDA8p3VVxsXtlCObiw
J3/tEBtavAXLC1vwZtpmUiS4OC+2ZhGoIVhsmDcmrkicttYNXssB4p+AsCfPyDa9
MdloimeQl3EryolJOdxjgTsEox/vUkwJwSfGbR+wb6FfyBC7QxiSGCk1owIDAQAB
o4ICqzCCAqcwHQYDVR0OBBYEFKK82IrD4Cz/rTwA3ka12jNr1kcCMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzA2L2NmNGRi
NS1mYjI5LTRiMmEtYTIxNS1hYWI4NjI4NjFhMDkvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDYvY2Y0ZGI1
LWZiMjktNGIyYS1hMjE1LWFhYjg2Mjg2MWEwOS8xL29yellpc1BnTFAtdFBBRGVS
clhhTTJ2V1J3SS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCsGCCsGAQUF
BwEHAQH/BBwwGjAYBAIAATASAwQCW+8wAwQCwRPkAwQCwe4UMBkGCCsGAQUFBwEI
AQH/BAowCKAGMAQCAmI3MA0GCSqGSIb3DQEBCwUAA4IBAQA2XmwjM98fk9+Q1vIv
lhhKlfgplHcaWwqYS7yGnhDYBqfOCvBzqrri2YM2mKtEYSBsV7JDKebDaekRniTD
KTc0niwJc5TRuH6qoV16J97il/PzRQ0wNC4lncNNSumPRBh7ZxpHfwuoTm/dEZP9
u24lJhn18xbMQhMqV6IWGcG+lLHWE7RBhy50o/vAgf2tz/C1/G0xKf6XIs/DqsD8
KRnKke42773CxAvEeSrrfM10htcRS2pz+pCDcdL/ya8OwHRCUWcyyJ5AKXPkmeIS
F4X5kfJuftwtjZ7fBjFsOIJx2EVgZRfpkN0qVgHNwkKiHEWj/7IFNAFTpJm+VFxS
w71q
-----END CERTIFICATE-----
Generated at Fri May 3 02:14:25 2024 by rpki-client on console-ams.rpki-client.org