Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/pXtgj8zzIw5EXJg_nja1DhH3LPI.cer
File: pXtgj8zzIw5EXJg_nja1DhH3LPI.cer (raw, json)
Hash identifier: 3NNN9XUdAJsFYX0unf+eo5G2mn57SnYNJM8CkogbNbs=
Subject key identifier: A5:7B:60:8F:CC:F3:23:0E:44:5C:98:3F:9E:36:B5:0E:11:F7:2C:F2
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC4254A336E42411A53538A8019D07C06
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/38/621629-ed3d-49af-bf39-85a37cf1b2ea/1/pXtgj8zzIw5EXJg_nja1DhH3LPI.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/38/621629-ed3d-49af-bf39-85a37cf1b2ea/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 08:30:27 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 203144
IP: 185.28.172.0/22
IP: 2a00:a0a0::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:25:4a:33:6e:42:41:1a:53:53:8a:80:19:d0:7c:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 08:30:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a57b608fccf3230e445c983f9e36b50e11f72cf2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:e7:40:78:48:ff:f3:44:6e:41:a8:af:22:c0:
50:b3:20:13:4d:93:93:83:0a:fd:70:8c:42:c8:de:
cc:fe:f9:08:ca:2b:31:11:9f:7e:0b:c1:5d:4e:5c:
87:c8:de:46:87:91:f1:e2:94:00:6b:9b:5d:4d:f9:
da:51:e5:ee:ad:2b:8f:ab:74:0a:57:d2:6b:7c:4b:
a2:ad:8d:e3:d5:ae:94:34:46:50:6e:51:df:64:47:
43:4f:b6:53:61:15:2e:86:da:d1:2b:0c:88:64:0b:
13:03:97:49:f8:5a:d6:02:ee:6d:ed:2a:39:80:11:
d4:97:9d:83:ba:95:38:88:b4:62:ac:c7:59:f6:eb:
06:09:5e:69:b8:3c:3b:95:8f:5b:64:82:6b:e1:e9:
fc:20:a1:f1:b6:b1:20:c4:9c:19:1e:c3:9f:8b:2b:
77:22:c6:17:8b:a5:3c:7e:eb:d6:cb:45:fa:f5:38:
3c:57:c6:db:ba:3f:29:8c:e3:fa:bd:89:8f:62:76:
3c:cc:57:62:a3:35:08:a3:b3:76:cd:f7:bb:43:f9:
5a:df:b8:08:d8:9d:f1:b5:dc:6f:2b:07:fa:0a:ce:
60:82:50:1a:2d:88:f0:9e:22:f3:e4:4a:51:5e:12:
ed:89:31:a2:0e:9c:b4:df:e8:c4:05:d9:a6:cf:9a:
58:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:7B:60:8F:CC:F3:23:0E:44:5C:98:3F:9E:36:B5:0E:11:F7:2C:F2
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/621629-ed3d-49af-bf39-85a37cf1b2ea/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/621629-ed3d-49af-bf39-85a37cf1b2ea/1/pXtgj8zzIw5EXJg_nja1DhH3LPI.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.28.172.0/22
IPv6:
2a00:a0a0::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
203144
Signature Algorithm: sha256WithRSAEncryption
6c:f0:ea:a5:1a:68:31:89:60:a5:be:ea:3d:de:7f:0d:68:91:
68:58:63:b1:e9:bb:30:d0:e9:06:0b:06:68:a5:44:b9:f2:f5:
0f:db:e4:2f:fe:04:5d:84:0f:6d:5c:8d:c8:48:fc:d5:96:be:
36:a3:73:ee:87:23:b2:3f:05:5b:be:f6:7b:7b:b9:f2:46:91:
7b:c3:88:89:f5:85:37:12:65:7c:8e:10:b6:49:fe:fd:e5:5d:
c3:31:b4:bd:28:31:dd:f9:b1:b5:3c:64:d6:a5:0e:ed:03:06:
a3:67:a5:a5:b5:a4:89:e8:4a:b1:64:b5:a8:b0:10:31:bd:84:
9e:15:f2:d2:c8:95:51:97:03:57:45:31:3e:b9:7a:4c:52:1f:
41:19:6e:d9:b0:49:c9:36:48:54:34:ef:45:7c:95:37:ef:0c:
26:8a:2e:00:00:0c:32:c5:fa:64:73:c2:2d:31:d1:79:1d:9d:
8c:69:5a:32:df:ca:9e:31:89:0c:7d:6e:e0:ad:0d:fb:16:6b:
65:15:c3:db:9a:f9:26:a6:7e:c8:6c:c1:33:61:42:ef:00:a3:
f5:c3:9d:e7:8f:6e:87:54:e2:a1:66:c1:31:6a:53:dd:58:0e:
59:4f:f8:eb:21:63:b1:a2:6f:7c:a6:7c:71:ea:ce:7c:81:df:
c6:e1:b0:34
-----BEGIN CERTIFICATE-----
MIIFozCCBIugAwIBAgISAYzEJUozbkJBGlNTioAZ0HwGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAxMDgzMDI3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhNTdiNjA4ZmNjZjMyMzBlNDQ1Yzk4M2Y5ZTM2YjUwZTExZjcyY2YyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5edAeEj/80RuQaivIsBQsyATTZOT
gwr9cIxCyN7M/vkIyisxEZ9+C8FdTlyHyN5Gh5Hx4pQAa5tdTfnaUeXurSuPq3QK
V9JrfEuirY3j1a6UNEZQblHfZEdDT7ZTYRUuhtrRKwyIZAsTA5dJ+FrWAu5t7So5
gBHUl52DupU4iLRirMdZ9usGCV5puDw7lY9bZIJr4en8IKHxtrEgxJwZHsOfiyt3
IsYXi6U8fuvWy0X69Tg8V8bbuj8pjOP6vYmPYnY8zFdiozUIo7N2zfe7Q/la37gI
2J3xtdxvKwf6Cs5gglAaLYjwniLz5EpRXhLtiTGiDpy03+jEBdmmz5pYAwIDAQAB
o4ICrzCCAqswHQYDVR0OBBYEFKV7YI/M8yMORFyYP542tQ4R9yzyMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzM4LzYyMTYy
OS1lZDNkLTQ5YWYtYmYzOS04NWEzN2NmMWIyZWEvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzgvNjIxNjI5
LWVkM2QtNDlhZi1iZjM5LTg1YTM3Y2YxYjJlYS8xL3BYdGdqOHp6SXc1RVhKZ19u
amExRGhIM0xQSS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF
BwEHAQH/BB8wHTAMBAIAATAGAwQCuRysMA0EAgACMAcDBQAqAKCgMBoGCCsGAQUF
BwEIAQH/BAswCaAHMAUCAwMZiDANBgkqhkiG9w0BAQsFAAOCAQEAbPDqpRpoMYlg
pb7qPd5/DWiRaFhjsem7MNDpBgsGaKVEufL1D9vkL/4EXYQPbVyNyEj81Za+NqNz
7ocjsj8FW772e3u58kaRe8OIifWFNxJlfI4Qtkn+/eVdwzG0vSgx3fmxtTxk1qUO
7QMGo2elpbWkiehKsWS1qLAQMb2EnhXy0siVUZcDV0UxPrl6TFIfQRlu2bBJyTZI
VDTvRXyVN+8MJoouAAAMMsX6ZHPCLTHReR2djGlaMt/KnjGJDH1u4K0N+xZrZRXD
25r5JqZ+yGzBM2FC7wCj9cOd549uh1TioWbBMWpT3VgOWU/46yFjsaJvfKZ8cerO
fIHfxuGwNA==
-----END CERTIFICATE-----
Generated at Fri May 3 07:30:18 2024 by rpki-client on console-ams.rpki-client.org