Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/oxLR2H19SPDvUfyRK5Zyw_c-y-c.cer
File: oxLR2H19SPDvUfyRK5Zyw_c-y-c.cer (raw, json)
Hash identifier: u4zPB81BDcnv9wthCYTUvfQySSoLJd8sgB/OnYq4c2o=
Subject key identifier: A3:12:D1:D8:7D:7D:48:F0:EF:51:FC:91:2B:96:72:C3:F7:3E:CB:E7
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC64AFA428E00BB5B4B011C384594DD26
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/33/4cc2ff-2104-49df-9e0e-662c41673d69/1/oxLR2H19SPDvUfyRK5Zyw_c-y-c.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/33/4cc2ff-2104-49df-9e0e-662c41673d69/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 18:30:51 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 49345
IP: 91.216.134.0/24
IP: 2a12:5740::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4a:fa:42:8e:00:bb:5b:4b:01:1c:38:45:94:dd:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 18:30:51 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a312d1d87d7d48f0ef51fc912b9672c3f73ecbe7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:47:b2:c5:92:a7:d8:77:9b:ec:44:71:4a:50:
4a:71:31:47:26:0e:3b:72:27:f8:fa:f3:72:c5:c2:
cc:a7:22:09:44:ac:6e:dd:62:16:70:d2:50:32:f8:
ef:9f:7b:d0:c0:ea:ba:72:1d:29:c8:eb:39:07:ad:
58:ef:9e:a9:b8:1c:82:dd:48:a3:f5:5e:46:24:50:
fc:1d:17:4d:a8:e7:c5:ab:8b:63:06:a4:36:13:97:
b6:ee:fd:07:63:c2:a8:eb:de:f1:ca:d9:4e:28:b9:
7f:24:7c:d6:69:1c:dd:49:37:63:54:49:60:12:bd:
ad:1b:7e:6c:fb:2e:98:45:2f:9c:eb:b5:a3:3a:f9:
0e:08:92:25:13:15:78:cd:37:c9:84:0f:c4:e5:ff:
92:23:1d:5f:cd:1d:2d:35:c3:2d:5b:5e:8b:8a:38:
ab:5e:38:07:e3:c4:2b:10:50:8c:0f:4d:49:57:65:
56:20:4c:18:47:3e:e3:d4:3c:6a:7e:83:98:10:d1:
c8:3c:08:d0:3f:fd:f8:86:a1:ee:ca:08:75:86:5c:
93:db:3d:9f:e5:29:83:59:5c:81:73:d3:01:10:c1:
c8:3e:7d:74:fe:ee:92:ee:fd:8d:65:b8:ca:2b:f7:
a3:bd:7a:7c:c9:a1:e6:46:10:a5:52:c2:ed:fa:26:
b4:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:12:D1:D8:7D:7D:48:F0:EF:51:FC:91:2B:96:72:C3:F7:3E:CB:E7
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/4cc2ff-2104-49df-9e0e-662c41673d69/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/4cc2ff-2104-49df-9e0e-662c41673d69/1/oxLR2H19SPDvUfyRK5Zyw_c-y-c.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.216.134.0/24
IPv6:
2a12:5740::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
49345
Signature Algorithm: sha256WithRSAEncryption
ab:1b:c8:4d:93:09:a0:1d:d6:6a:99:32:00:e1:b2:80:ba:4c:
18:66:3e:e4:ad:14:20:b2:e3:a0:6c:fe:d2:11:da:29:fc:da:
36:1c:5b:ea:6d:4c:3b:a3:30:d0:25:7f:90:d6:23:31:5b:4e:
91:3e:1b:fc:33:e6:c9:2a:7e:2f:a3:f1:74:51:0c:fe:e9:9b:
eb:b1:34:54:26:87:37:f4:38:d9:b6:78:03:74:94:19:e8:58:
38:f6:9c:c8:32:f3:bb:a2:6e:20:97:a3:31:7a:52:ba:ae:1d:
b5:41:f0:5e:fa:6a:11:a3:67:48:1e:05:2b:62:46:f6:ec:27:
1f:ab:f8:bd:9a:4a:8d:ab:2a:09:38:30:10:f3:3f:94:91:6f:
f3:91:53:3a:2b:d1:7d:12:b9:d0:36:eb:05:c7:a0:fb:51:35:
90:9d:a3:01:bf:c6:be:38:85:53:0e:97:c1:cf:da:2a:8d:0a:
78:a5:b9:a4:f9:c6:29:72:fa:8b:15:52:8d:1b:5e:2c:3a:49:
c2:d5:84:28:aa:20:88:dc:94:f5:9b:2d:32:c5:29:08:f1:b7:
61:65:15:77:e7:e4:89:b9:66:91:78:6e:78:b1:31:16:92:14:
bf:db:fc:ef:5e:b8:db:5e:ca:06:3d:d6:7b:a8:d6:6a:fa:ab:
0c:23:4f:ef
-----BEGIN CERTIFICATE-----
MIIFozCCBIugAwIBAgISAYzGSvpCjgC7W0sBHDhFlN0mMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAxMTgzMDUxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhMzEyZDFkODdkN2Q0OGYwZWY1MWZjOTEyYjk2NzJjM2Y3M2VjYmU3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnkeyxZKn2Heb7ERxSlBKcTFHJg47
cif4+vNyxcLMpyIJRKxu3WIWcNJQMvjvn3vQwOq6ch0pyOs5B61Y756puByC3Uij
9V5GJFD8HRdNqOfFq4tjBqQ2E5e27v0HY8Ko697xytlOKLl/JHzWaRzdSTdjVElg
Er2tG35s+y6YRS+c67WjOvkOCJIlExV4zTfJhA/E5f+SIx1fzR0tNcMtW16Lijir
XjgH48QrEFCMD01JV2VWIEwYRz7j1DxqfoOYENHIPAjQP/34hqHuygh1hlyT2z2f
5SmDWVyBc9MBEMHIPn10/u6S7v2NZbjKK/ejvXp8yaHmRhClUsLt+ia0AwIDAQAB
o4ICrzCCAqswHQYDVR0OBBYEFKMS0dh9fUjw71H8kSuWcsP3PsvnMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzMzLzRjYzJm
Zi0yMTA0LTQ5ZGYtOWUwZS02NjJjNDE2NzNkNjkvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzMvNGNjMmZm
LTIxMDQtNDlkZi05ZTBlLTY2MmM0MTY3M2Q2OS8xL294TFIySDE5U1BEdlVmeVJL
NVp5d19jLXktYy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF
BwEHAQH/BB8wHTAMBAIAATAGAwQAW9iGMA0EAgACMAcDBQMqEldAMBoGCCsGAQUF
BwEIAQH/BAswCaAHMAUCAwDAwTANBgkqhkiG9w0BAQsFAAOCAQEAqxvITZMJoB3W
apkyAOGygLpMGGY+5K0UILLjoGz+0hHaKfzaNhxb6m1MO6Mw0CV/kNYjMVtOkT4b
/DPmySp+L6PxdFEM/umb67E0VCaHN/Q42bZ4A3SUGehYOPacyDLzu6JuIJejMXpS
uq4dtUHwXvpqEaNnSB4FK2JG9uwnH6v4vZpKjasqCTgwEPM/lJFv85FTOivRfRK5
0DbrBceg+1E1kJ2jAb/GvjiFUw6Xwc/aKo0KeKW5pPnGKXL6ixVSjRteLDpJwtWE
KKogiNyU9ZstMsUpCPG3YWUVd+fkiblmkXhueLExFpIUv9v87164217KBj3We6jW
avqrDCNP7w==
-----END CERTIFICATE-----
Generated at Fri May 3 02:14:29 2024 by rpki-client on console-ams.rpki-client.org