Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/py0XjI5T9SExwftkdDyWDPiX_Qw.cer
File: py0XjI5T9SExwftkdDyWDPiX_Qw.cer (raw, json)
Hash identifier: Lac/+L+MGEL8Hy8E0vcYoDZKKyWewqIosNpFocHTgEM=
Subject key identifier: A7:2D:17:8C:8E:53:F5:21:31:C1:FB:64:74:3C:96:0C:F8:97:FD:0C
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC9BCEF11A3C3DC912CC339C62F85F80F
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/44/1b813a-5e86-45b0-99cd-28b9d261ecb1/1/py0XjI5T9SExwftkdDyWDPiX_Qw.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/44/1b813a-5e86-45b0-99cd-28b9d261ecb1/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 10:34:11 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 203965
IP: 185.118.172.0/22
IP: 2a06:9380::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:ef:11:a3:c3:dc:91:2c:c3:39:c6:2f:85:f8:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 10:34:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a72d178c8e53f52131c1fb64743c960cf897fd0c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:d8:b3:d0:7d:a2:c6:a0:40:f3:bb:65:6b:ce:
89:b8:6e:31:aa:74:1f:e0:90:66:1c:86:3a:a7:d4:
de:73:c5:fc:74:1a:f6:fc:18:d9:04:75:30:69:d0:
4a:f3:f6:9e:c1:d3:4c:9b:de:84:7d:98:a2:02:ec:
1a:e0:52:94:78:c4:e7:c4:45:9f:da:1a:00:a6:dd:
1a:a7:93:f2:7a:34:1d:67:64:a3:d9:09:1f:c5:d5:
ef:b6:de:7a:ba:53:83:16:db:2b:17:84:60:1f:3b:
30:fc:47:1b:2a:7e:6f:1b:53:52:6b:c2:92:94:11:
ff:be:74:99:c6:9b:6e:72:bf:78:84:f2:50:17:76:
2a:d8:37:c4:dc:d4:8c:10:5f:1d:7b:ee:1a:6d:e3:
d8:ff:af:8e:56:24:9e:64:35:84:2f:b8:dc:4c:cc:
3b:96:96:19:08:36:34:c5:86:12:67:4f:5d:17:2a:
09:8f:52:bd:8b:f0:49:05:4f:1f:32:48:8b:01:35:
62:f1:41:da:3b:35:f0:35:21:08:20:00:2e:ac:f9:
99:2a:82:f6:36:92:f2:fc:54:de:69:2d:75:ed:96:
49:62:68:f7:88:8e:60:ab:a7:50:2c:46:ba:8d:84:
08:fd:46:87:81:30:f5:48:e7:65:7b:21:f3:25:99:
68:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:2D:17:8C:8E:53:F5:21:31:C1:FB:64:74:3C:96:0C:F8:97:FD:0C
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/1b813a-5e86-45b0-99cd-28b9d261ecb1/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/1b813a-5e86-45b0-99cd-28b9d261ecb1/1/py0XjI5T9SExwftkdDyWDPiX_Qw.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.118.172.0/22
IPv6:
2a06:9380::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
203965
Signature Algorithm: sha256WithRSAEncryption
05:19:00:60:f0:fd:de:17:cf:58:2b:94:bd:fb:87:53:a3:2a:
33:21:cb:1b:1d:9c:d2:7c:17:cc:de:eb:b3:56:a9:2e:f4:3c:
ff:82:fc:8c:3b:73:f8:80:40:9d:2f:20:f8:1b:06:f3:77:0a:
9a:28:99:87:2a:f9:a5:f9:25:2d:59:de:7b:fb:51:c5:1d:53:
ec:b1:b4:35:d7:46:d9:ff:d7:93:dc:97:de:0d:64:51:1a:4a:
33:b2:fd:9b:10:15:ec:29:f8:b6:5b:fe:f3:a3:31:2a:fd:87:
10:2d:d0:6b:8d:fe:8f:9f:a7:3f:15:26:5c:ae:7f:34:05:f7:
89:ad:f9:89:3f:85:46:d9:f4:a8:91:31:80:94:ed:d4:16:32:
c6:1c:12:f4:25:69:81:71:e6:59:02:25:17:11:c1:bc:85:5e:
b3:0d:68:05:d2:c8:0c:fa:3c:3d:11:04:00:f0:3b:fa:ff:1b:
33:dc:37:62:e0:e9:b7:c2:1e:07:58:c9:bc:a6:d9:f1:27:a3:
cb:7f:2f:93:cd:fe:f3:e9:21:4c:a1:63:d5:04:d9:18:a5:1d:
df:b1:d3:14:1a:e0:2e:fb:be:38:a2:c3:35:f3:77:62:3e:3f:
e7:d1:8e:2e:5f:c8:5b:17:07:ef:87:a9:2a:32:76:e3:df:c7:
3c:c2:fc:80
-----BEGIN CERTIFICATE-----
MIIFozCCBIugAwIBAgISAYzJvO8Ro8PckSzDOcYvhfgPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAyMTAzNDExWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhNzJkMTc4YzhlNTNmNTIxMzFjMWZiNjQ3NDNjOTYwY2Y4OTdmZDBjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp9iz0H2ixqBA87tla86JuG4xqnQf
4JBmHIY6p9Tec8X8dBr2/BjZBHUwadBK8/aewdNMm96EfZiiAuwa4FKUeMTnxEWf
2hoApt0ap5PyejQdZ2Sj2QkfxdXvtt56ulODFtsrF4RgHzsw/EcbKn5vG1NSa8KS
lBH/vnSZxptucr94hPJQF3Yq2DfE3NSMEF8de+4abePY/6+OViSeZDWEL7jcTMw7
lpYZCDY0xYYSZ09dFyoJj1K9i/BJBU8fMkiLATVi8UHaOzXwNSEIIAAurPmZKoL2
NpLy/FTeaS117ZZJYmj3iI5gq6dQLEa6jYQI/UaHgTD1SOdleyHzJZlofwIDAQAB
o4ICrzCCAqswHQYDVR0OBBYEFKctF4yOU/UhMcH7ZHQ8lgz4l/0MMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzQ0LzFiODEz
YS01ZTg2LTQ1YjAtOTljZC0yOGI5ZDI2MWVjYjEvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDQvMWI4MTNh
LTVlODYtNDViMC05OWNkLTI4YjlkMjYxZWNiMS8xL3B5MFhqSTVUOVNFeHdmdGtk
RHlXRFBpWF9Rdy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF
BwEHAQH/BB8wHTAMBAIAATAGAwQCuXasMA0EAgACMAcDBQMqBpOAMBoGCCsGAQUF
BwEIAQH/BAswCaAHMAUCAwMcvTANBgkqhkiG9w0BAQsFAAOCAQEABRkAYPD93hfP
WCuUvfuHU6MqMyHLGx2c0nwXzN7rs1apLvQ8/4L8jDtz+IBAnS8g+BsG83cKmiiZ
hyr5pfklLVnee/tRxR1T7LG0NddG2f/Xk9yX3g1kURpKM7L9mxAV7Cn4tlv+86Mx
Kv2HEC3Qa43+j5+nPxUmXK5/NAX3ia35iT+FRtn0qJExgJTt1BYyxhwS9CVpgXHm
WQIlFxHBvIVesw1oBdLIDPo8PREEAPA7+v8bM9w3YuDpt8IeB1jJvKbZ8Sejy38v
k83+8+khTKFj1QTZGKUd37HTFBrgLvu+OKLDNfN3Yj4/59GOLl/IWxcH74epKjJ2
49/HPML8gA==
-----END CERTIFICATE-----
Generated at Sat Nov 23 11:04:11 2024 by rpki-client on console-ams.rpki-client.org