Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/q2TJrlviZApf1pRYanBMo0wgh78.cer
File: q2TJrlviZApf1pRYanBMo0wgh78.cer (raw, json)
Hash identifier: UCpEn9zLOCYjXsJZmTyoKbhsH6rsKIckxPdXM2yNfMo=
Subject key identifier: AB:64:C9:AE:5B:E2:64:0A:5F:D6:94:58:6A:70:4C:A3:4C:20:87:BF
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC79436CE34E4EAEF051E405660976DB8
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/10/c55cbc-e43d-40cb-844f-31c5137ec38a/1/q2TJrlviZApf1pRYanBMo0wgh78.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/10/c55cbc-e43d-40cb-844f-31c5137ec38a/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 00:30:28 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 20815
IP: 80.64.32.0/20
IP: 2a00:5c00::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:94:36:ce:34:e4:ea:ef:05:1e:40:56:60:97:6d:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 00:30:28 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ab64c9ae5be2640a5fd694586a704ca34c2087bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:14:5e:d5:22:a3:c9:24:f7:e3:78:ca:c1:93:
86:c2:98:5b:22:2a:d7:6d:9e:32:79:04:d5:e4:ef:
6a:d7:7a:df:37:96:0d:49:54:f9:5a:fc:85:e1:14:
82:bb:d5:67:a0:8d:81:33:57:64:83:a9:c9:f9:b1:
db:98:4d:e0:33:54:bf:00:67:52:79:3f:84:a5:fb:
23:1d:c8:6c:78:04:14:7e:f3:55:9d:8b:d6:ca:80:
ab:f4:32:22:29:a0:93:34:64:ce:a8:c0:d0:5a:e8:
dd:d3:59:d2:36:fc:4b:50:25:59:77:d0:26:b6:02:
49:91:51:99:16:5d:be:a2:2d:1c:a9:15:b2:8e:ca:
d8:69:11:88:c2:a1:3d:ff:08:08:de:de:8e:ef:a8:
97:59:e6:a5:14:85:4f:29:4e:0f:66:b0:c2:bd:89:
f3:6c:76:74:c6:56:b1:46:ae:33:e7:7d:fb:77:54:
ff:ef:3c:dd:70:06:50:ab:82:76:ad:b0:9c:b7:9d:
6f:20:39:8f:e2:ae:51:49:62:98:f7:b9:e5:41:ba:
b5:f3:09:c2:a0:65:fa:c6:4e:45:88:2c:82:9b:5f:
9f:42:63:fb:8e:d6:17:43:08:94:3e:43:fb:9f:5f:
a5:87:94:d1:a8:71:ca:07:87:db:f2:e1:2e:a2:39:
fb:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:64:C9:AE:5B:E2:64:0A:5F:D6:94:58:6A:70:4C:A3:4C:20:87:BF
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/c55cbc-e43d-40cb-844f-31c5137ec38a/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/c55cbc-e43d-40cb-844f-31c5137ec38a/1/q2TJrlviZApf1pRYanBMo0wgh78.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.64.32.0/20
IPv6:
2a00:5c00::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
20815
Signature Algorithm: sha256WithRSAEncryption
03:7c:0c:13:fc:11:19:7f:08:f3:7d:5d:21:c7:6c:e0:ff:61:
98:58:31:5d:0e:c1:26:88:0b:3e:40:72:95:05:0f:22:0c:e7:
4c:f4:2d:c8:5e:ff:ad:26:5c:b2:68:94:01:16:63:ca:57:d1:
29:53:6c:97:06:81:c6:8d:00:59:69:c0:74:9f:99:fb:63:1d:
b6:eb:2d:9d:9b:48:1c:db:d0:f1:f4:cf:fb:15:33:4f:bc:99:
6b:8a:f7:70:b1:aa:3b:a9:a3:0a:3e:0f:58:20:91:30:3f:e0:
c1:65:e2:c1:ed:9b:79:76:53:bd:d9:e9:eb:3d:b8:58:f5:c9:
28:39:06:5c:3c:bd:96:12:60:72:3e:1b:cb:9e:eb:55:a6:3e:
4c:38:ea:e0:fc:b5:54:21:32:d0:66:d7:5f:ac:a1:de:f7:31:
e2:47:c6:31:af:40:1b:73:71:04:87:3e:a0:97:d4:5e:39:45:
f2:f2:dc:06:dd:93:53:4c:7c:ec:15:d1:27:28:23:59:1e:f4:
c5:94:95:44:62:c3:32:4c:81:8e:55:1a:3e:a0:21:fc:85:41:
21:03:dd:77:19:93:b7:a8:5d:af:ca:c9:db:33:75:72:82:56:
b1:e7:3e:48:6d:04:40:f5:b9:11:12:3b:5f:1b:32:72:37:2e:
cd:a0:ac:45
-----BEGIN CERTIFICATE-----
MIIFojCCBIqgAwIBAgISAYzHlDbONOTq7wUeQFZgl224MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAyMDAzMDI4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhYjY0YzlhZTViZTI2NDBhNWZkNjk0NTg2YTcwNGNhMzRjMjA4N2JmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvBRe1SKjyST343jKwZOGwphbIirX
bZ4yeQTV5O9q13rfN5YNSVT5WvyF4RSCu9VnoI2BM1dkg6nJ+bHbmE3gM1S/AGdS
eT+EpfsjHchseAQUfvNVnYvWyoCr9DIiKaCTNGTOqMDQWujd01nSNvxLUCVZd9Am
tgJJkVGZFl2+oi0cqRWyjsrYaRGIwqE9/wgI3t6O76iXWealFIVPKU4PZrDCvYnz
bHZ0xlaxRq4z5337d1T/7zzdcAZQq4J2rbCct51vIDmP4q5RSWKY97nlQbq18wnC
oGX6xk5FiCyCm1+fQmP7jtYXQwiUPkP7n1+lh5TRqHHKB4fb8uEuojn7cQIDAQAB
o4ICrjCCAqowHQYDVR0OBBYEFKtkya5b4mQKX9aUWGpwTKNMIIe/MB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzEwL2M1NWNi
Yy1lNDNkLTQwY2ItODQ0Zi0zMWM1MTM3ZWMzOGEvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTAvYzU1Y2Jj
LWU0M2QtNDBjYi04NDRmLTMxYzUxMzdlYzM4YS8xL3EyVEpybHZpWkFwZjFwUllh
bkJNbzB3Z2g3OC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF
BwEHAQH/BB8wHTAMBAIAATAGAwQEUEAgMA0EAgACMAcDBQAqAFwAMBkGCCsGAQUF
BwEIAQH/BAowCKAGMAQCAlFPMA0GCSqGSIb3DQEBCwUAA4IBAQADfAwT/BEZfwjz
fV0hx2zg/2GYWDFdDsEmiAs+QHKVBQ8iDOdM9C3IXv+tJlyyaJQBFmPKV9EpU2yX
BoHGjQBZacB0n5n7Yx226y2dm0gc29Dx9M/7FTNPvJlrivdwsao7qaMKPg9YIJEw
P+DBZeLB7Zt5dlO92enrPbhY9ckoOQZcPL2WEmByPhvLnutVpj5MOOrg/LVUITLQ
ZtdfrKHe9zHiR8Yxr0Abc3EEhz6gl9ReOUXy8twG3ZNTTHzsFdEnKCNZHvTFlJVE
YsMyTIGOVRo+oCH8hUEhA913GZO3qF2vysnbM3Vyglax5z5IbQRA9bkREjtfGzJy
Ny7NoKxF
-----END CERTIFICATE-----
Generated at Sat Nov 23 02:30:47 2024 by rpki-client on console-ams.rpki-client.org