Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/pJF9iFtnVnL8jvuJ1uFOI2dQUtk.cer
File: pJF9iFtnVnL8jvuJ1uFOI2dQUtk.cer (raw, json)
Hash identifier: 6ub1xa2Nq4OORbSX8YfN75O9NnNekKPMj9wPiQz0bIo=
Subject key identifier: A4:91:7D:88:5B:67:56:72:FC:8E:FB:89:D6:E1:4E:23:67:50:52:D9
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC2DB599FFD3ED4339342CA40566624D8
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/cb/13bc29-4ef3-421b-a30f-1344d02cfda8/1/pJF9iFtnVnL8jvuJ1uFOI2dQUtk.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/cb/13bc29-4ef3-421b-a30f-1344d02cfda8/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 02:30:04 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 199195
IP: 2001:67c:c40::/48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:db:59:9f:fd:3e:d4:33:93:42:ca:40:56:66:24:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 02:30:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a4917d885b675672fc8efb89d6e14e23675052d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:e3:78:71:32:49:2a:52:0d:75:78:06:d2:67:
02:58:97:d5:42:13:4f:11:9c:01:6f:a9:5a:74:c2:
08:11:d2:1a:ed:91:a9:ca:75:06:a7:bc:13:69:b4:
74:c7:ef:30:5e:37:e1:89:0f:55:51:d1:b6:2f:c4:
58:57:cf:27:e8:66:5f:4b:54:09:6a:07:eb:51:7a:
eb:9c:6e:4b:ef:34:27:01:64:55:46:50:e2:5f:5c:
2d:ef:9b:25:13:25:20:fc:89:c6:3a:10:d5:cd:72:
d4:18:f5:ac:49:9d:5b:3b:59:70:a0:53:b8:d0:0b:
a6:b7:95:2f:db:c1:4c:ca:8a:ab:db:a9:6c:fb:b7:
4b:9f:37:76:df:b9:3a:df:19:65:e6:ce:4a:b1:39:
49:da:d2:0a:78:9b:47:f6:e0:75:99:f0:fd:71:bd:
bf:64:19:ca:89:c6:ef:f8:e4:d5:a1:da:92:6f:85:
f0:f1:e9:11:1d:ce:fc:02:d1:8c:35:6b:ad:e6:fa:
e8:21:1d:8d:ab:8f:22:45:35:53:65:76:26:de:8c:
15:dc:13:96:8f:06:52:90:57:fc:b9:f8:fa:9f:5d:
af:f4:42:40:05:0f:41:6c:61:81:99:e6:56:e6:48:
57:c0:70:df:d2:1d:df:38:76:ec:2b:99:4d:b1:61:
30:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:91:7D:88:5B:67:56:72:FC:8E:FB:89:D6:E1:4E:23:67:50:52:D9
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/13bc29-4ef3-421b-a30f-1344d02cfda8/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/13bc29-4ef3-421b-a30f-1344d02cfda8/1/pJF9iFtnVnL8jvuJ1uFOI2dQUtk.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:c40::/48
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
199195
Signature Algorithm: sha256WithRSAEncryption
0a:57:3c:1c:e0:24:55:99:bb:c4:96:72:45:ee:b5:c0:b3:29:
b5:4d:74:38:fa:3d:19:4b:e5:31:8d:13:57:23:0f:c1:b7:44:
2b:2a:89:42:a0:1a:2d:52:dd:2f:ff:d2:12:7b:fa:d7:bc:c2:
16:28:6a:db:b8:11:9f:d7:fc:da:5f:6b:3e:dc:e9:1a:7b:fa:
64:d0:11:06:f6:fe:5d:7d:a7:28:0a:18:0c:5c:2f:0a:39:34:
a0:4d:1f:22:10:a3:40:4b:3e:dd:e4:9c:77:5b:4f:1f:7b:86:
e1:d2:12:37:8d:71:2f:f5:b7:41:42:02:d5:d2:b3:a7:60:bf:
52:43:35:26:5d:5a:f7:b2:e2:89:f9:80:f2:38:b2:57:2f:d2:
39:f8:d7:04:e6:8d:24:9e:fb:32:82:66:2c:b6:3c:76:a1:32:
85:e5:99:a4:5f:27:25:31:37:ca:61:9c:1e:74:f7:ee:c0:2e:
12:c7:d4:4e:4e:b8:0e:c5:17:1b:ec:1c:6b:1f:24:bd:56:d0:
8e:25:07:fb:ab:f3:c3:4d:48:29:8f:06:18:36:6f:31:d6:20:
52:b2:b8:83:5e:4e:d5:de:bb:05:ad:b3:42:c7:87:7e:d4:a5:
0f:42:c3:21:b9:3d:80:ee:cb:d1:ef:e5:b8:69:74:3d:6a:e3:
8c:6f:ef:a1
-----BEGIN CERTIFICATE-----
MIIFlzCCBH+gAwIBAgISAYzC21mf/T7UM5NCykBWZiTYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAxMDIzMDA0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhNDkxN2Q4ODViNjc1NjcyZmM4ZWZiODlkNmUxNGUyMzY3NTA1MmQ5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtON4cTJJKlINdXgG0mcCWJfVQhNP
EZwBb6ladMIIEdIa7ZGpynUGp7wTabR0x+8wXjfhiQ9VUdG2L8RYV88n6GZfS1QJ
agfrUXrrnG5L7zQnAWRVRlDiX1wt75slEyUg/InGOhDVzXLUGPWsSZ1bO1lwoFO4
0Aumt5Uv28FMyoqr26ls+7dLnzd237k63xll5s5KsTlJ2tIKeJtH9uB1mfD9cb2/
ZBnKicbv+OTVodqSb4Xw8ekRHc78AtGMNWut5vroIR2Nq48iRTVTZXYm3owV3BOW
jwZSkFf8ufj6n12v9EJABQ9BbGGBmeZW5khXwHDf0h3fOHbsK5lNsWEw3QIDAQAB
o4ICozCCAp8wHQYDVR0OBBYEFKSRfYhbZ1Zy/I77idbhTiNnUFLZMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2NiLzEzYmMy
OS00ZWYzLTQyMWItYTMwZi0xMzQ0ZDAyY2ZkYTgvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvY2IvMTNiYzI5
LTRlZjMtNDIxYi1hMzBmLTEzNDRkMDJjZmRhOC8xL3BKRjlpRnRuVm5MOGp2dUox
dUZPSTJkUVV0ay5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF
BwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfAxAMBoGCCsGAQUFBwEIAQH/BAswCaAH
MAUCAwMKGzANBgkqhkiG9w0BAQsFAAOCAQEAClc8HOAkVZm7xJZyRe61wLMptU10
OPo9GUvlMY0TVyMPwbdEKyqJQqAaLVLdL//SEnv617zCFihq27gRn9f82l9rPtzp
Gnv6ZNARBvb+XX2nKAoYDFwvCjk0oE0fIhCjQEs+3eScd1tPH3uG4dISN41xL/W3
QUIC1dKzp2C/UkM1Jl1a97LiifmA8jiyVy/SOfjXBOaNJJ77MoJmLLY8dqEyheWZ
pF8nJTE3ymGcHnT37sAuEsfUTk64DsUXG+wcax8kvVbQjiUH+6vzw01IKY8GGDZv
MdYgUrK4g15O1d67Ba2zQseHftSlD0LDIbk9gO7L0e/luGl0PWrjjG/voQ==
-----END CERTIFICATE-----
Generated at Wed Nov 27 01:06:47 2024 by rpki-client on console-fra.rpki-client.org