Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/pmnxwhNwxE39EOKvaIyMTg6hKVU.cer
File: pmnxwhNwxE39EOKvaIyMTg6hKVU.cer (raw, json)
Hash identifier: Vf92TeMItcrdATM2UyH0ZQOV1d9KPb+ugVunW9E2Gw8=
Subject key identifier: A6:69:F1:C2:13:70:C4:4D:FD:10:E2:AF:68:8C:8C:4E:0E:A1:29:55
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CCA285C57A1948478DA800979A88B7D7D
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/b9/e7b40c-414b-473a-b8c7-b7b1481625b1/1/pmnxwhNwxE39EOKvaIyMTg6hKVU.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/b9/e7b40c-414b-473a-b8c7-b7b1481625b1/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 12:31:31 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 211723
IP: 2001:67c:296c::/48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:28:5c:57:a1:94:84:78:da:80:09:79:a8:8b:7d:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 12:31:31 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a669f1c21370c44dfd10e2af688c8c4e0ea12955
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:d8:a5:be:1f:cf:14:f1:0d:65:d3:e1:4b:4d:
36:62:74:58:f8:c4:84:b1:bc:35:6c:4c:79:34:59:
f3:14:cd:97:b0:d1:c4:78:3b:9b:af:6a:63:22:a5:
74:63:e2:9a:a3:06:61:e4:dc:da:cb:57:9f:9c:5b:
c0:72:39:9d:de:3e:e7:c9:d0:27:0c:2c:b0:b4:dc:
e3:a9:72:bc:41:83:df:e2:4f:f3:80:20:1b:56:43:
18:33:de:30:b3:ba:45:f2:64:5f:f1:29:c3:9b:3c:
86:a2:29:f5:f6:97:1f:13:9c:73:b6:b9:d0:57:4e:
0c:bb:68:87:6f:74:a5:90:35:16:93:aa:4e:5b:15:
de:52:2f:2c:b5:07:7f:81:44:85:a6:8c:20:2c:1c:
af:8e:a6:56:af:cb:4b:ac:1b:0b:b0:e7:b6:fd:11:
f0:83:76:75:36:00:06:07:c5:8b:4a:23:7b:5c:20:
97:b3:cb:74:69:90:c2:c9:de:24:09:30:c6:3f:45:
c4:04:05:a2:98:a7:3e:05:e5:fa:f3:7e:b5:7b:24:
b1:50:16:52:3f:cb:81:1a:b2:47:33:03:78:a2:a8:
c1:2a:10:93:dc:bb:a5:5e:82:c9:84:2b:19:f6:89:
8f:2f:e7:73:ba:ad:ca:b3:2b:9c:b2:3d:e9:91:dc:
3b:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:69:F1:C2:13:70:C4:4D:FD:10:E2:AF:68:8C:8C:4E:0E:A1:29:55
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/e7b40c-414b-473a-b8c7-b7b1481625b1/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/e7b40c-414b-473a-b8c7-b7b1481625b1/1/pmnxwhNwxE39EOKvaIyMTg6hKVU.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:296c::/48
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
211723
Signature Algorithm: sha256WithRSAEncryption
ad:75:56:7b:cc:6d:6b:65:f6:ea:d7:d4:b4:21:a8:95:8a:39:
09:a3:55:19:4f:a8:33:16:33:9c:20:de:96:01:3e:d7:08:41:
26:64:aa:03:70:85:7e:9e:ff:90:1c:7e:da:8e:3f:21:26:24:
c5:6a:b6:87:56:d9:25:bf:e2:9e:75:9d:87:17:fe:3c:cf:4e:
e5:68:c1:76:4e:02:d0:a3:19:5f:a8:d4:9d:d4:74:83:0f:6c:
84:a7:3b:9c:38:d4:63:72:8d:48:b6:58:03:83:ad:f2:b7:11:
0f:3a:db:ee:ee:22:83:53:1d:32:24:f3:26:b5:50:04:53:69:
ba:0b:f9:3c:95:67:ce:21:05:64:1c:b6:34:cc:45:7c:93:09:
f1:3e:9a:97:4e:16:ed:ab:e3:20:35:4b:89:70:f6:72:5e:09:
5f:e5:36:75:74:96:9a:94:a5:cd:a6:96:8e:2f:32:5c:4d:9e:
30:c7:61:10:b4:0b:95:c3:3b:97:c1:69:0c:d1:b3:be:de:9e:
e2:13:16:b8:ed:1f:5e:bd:69:81:46:6f:fb:4e:46:59:a2:74:
4c:5a:8e:71:e8:33:b8:20:d6:ac:f8:dc:e8:e4:ea:34:3f:04:
e5:d8:cc:3f:8d:57:5a:37:6f:70:d4:72:b2:87:d0:b8:59:59:
69:e1:cf:45
-----BEGIN CERTIFICATE-----
MIIFlzCCBH+gAwIBAgISAYzKKFxXoZSEeNqACXmoi319MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAyMTIzMTMxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhNjY5ZjFjMjEzNzBjNDRkZmQxMGUyYWY2ODhjOGM0ZTBlYTEyOTU1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp9ilvh/PFPENZdPhS002YnRY+MSE
sbw1bEx5NFnzFM2XsNHEeDubr2pjIqV0Y+KaowZh5Nzay1efnFvAcjmd3j7nydAn
DCywtNzjqXK8QYPf4k/zgCAbVkMYM94ws7pF8mRf8SnDmzyGoin19pcfE5xztrnQ
V04Mu2iHb3SlkDUWk6pOWxXeUi8stQd/gUSFpowgLByvjqZWr8tLrBsLsOe2/RHw
g3Z1NgAGB8WLSiN7XCCXs8t0aZDCyd4kCTDGP0XEBAWimKc+BeX68361eySxUBZS
P8uBGrJHMwN4oqjBKhCT3LulXoLJhCsZ9omPL+dzuq3Ksyucsj3pkdw7kQIDAQAB
o4ICozCCAp8wHQYDVR0OBBYEFKZp8cITcMRN/RDir2iMjE4OoSlVMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2I5L2U3YjQw
Yy00MTRiLTQ3M2EtYjhjNy1iN2IxNDgxNjI1YjEvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjkvZTdiNDBj
LTQxNGItNDczYS1iOGM3LWI3YjE0ODE2MjViMS8xL3Btbnh3aE53eEUzOUVPS3Zh
SXlNVGc2aEtWVS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF
BwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfClsMBoGCCsGAQUFBwEIAQH/BAswCaAH
MAUCAwM7CzANBgkqhkiG9w0BAQsFAAOCAQEArXVWe8xta2X26tfUtCGolYo5CaNV
GU+oMxYznCDelgE+1whBJmSqA3CFfp7/kBx+2o4/ISYkxWq2h1bZJb/innWdhxf+
PM9O5WjBdk4C0KMZX6jUndR0gw9shKc7nDjUY3KNSLZYA4Ot8rcRDzrb7u4ig1Md
MiTzJrVQBFNpugv5PJVnziEFZBy2NMxFfJMJ8T6al04W7avjIDVLiXD2cl4JX+U2
dXSWmpSlzaaWji8yXE2eMMdhELQLlcM7l8FpDNGzvt6e4hMWuO0fXr1pgUZv+05G
WaJ0TFqOcegzuCDWrPjc6OTqND8E5djMP41XWjdvcNRysofQuFlZaeHPRQ==
-----END CERTIFICATE-----
Generated at Fri May 3 02:15:01 2024 by rpki-client on console-ams.rpki-client.org