Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/q2yACAY3-ssW9RnF2X7Cez2FCX0.cer
File: q2yACAY3-ssW9RnF2X7Cez2FCX0.cer (raw, json)
Hash identifier: 6DFhlEeHZ3S9YOQDmfnbjXf6T45xHd7/VO78X1CjyAU=
Subject key identifier: AB:6C:80:08:06:37:FA:CB:16:F5:19:C5:D9:7E:C2:7B:3D:85:09:7D
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC86F26DEC7712CBB4E58ED85F34D571F
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/4d/6a2c5c-9e1b-4561-a4e9-e9e1d91a9816/1/q2yACAY3-ssW9RnF2X7Cez2FCX0.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/4d/6a2c5c-9e1b-4561-a4e9-e9e1d91a9816/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 04:29:36 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 28925
IP: 195.222.104.0/22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 11:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:26:de:c7:71:2c:bb:4e:58:ed:85:f3:4d:57:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 04:29:36 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ab6c80080637facb16f519c5d97ec27b3d85097d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:0e:89:cb:8d:b0:8a:b6:28:bf:92:dd:19:33:
91:6a:ae:d7:11:28:25:6d:c3:27:6c:f1:ab:56:bc:
67:10:15:4e:5e:27:f8:09:03:35:2f:27:49:74:fc:
13:1c:bb:99:c7:10:48:cf:ee:cb:44:9d:3e:87:6f:
16:2f:8c:ae:03:e2:86:37:56:46:95:44:b3:fb:b7:
50:f1:27:f4:f8:31:bd:1f:79:f6:46:31:e4:5b:82:
4c:db:85:69:0f:3a:30:c4:6a:a3:45:69:dd:d0:bc:
a6:26:32:04:b0:d6:29:da:51:03:c4:64:e0:15:63:
51:75:b3:4d:f7:eb:84:ed:9e:bc:64:79:1b:a4:57:
84:d7:11:93:8e:6d:24:ac:c4:1e:d6:8a:3f:4d:0c:
ff:fb:c9:07:36:fd:54:aa:88:cd:21:85:d5:a5:79:
a8:b1:65:6e:da:2a:c4:3d:63:76:b2:25:38:6b:7f:
16:29:1e:53:92:0f:b5:16:7c:be:bb:ca:0b:cc:d3:
7b:e6:14:97:d5:39:0e:38:d8:bb:a1:50:c9:58:a5:
28:03:f0:79:3b:a8:d9:90:f1:67:d6:32:a6:e0:8e:
c3:54:93:22:3a:ee:8e:ca:10:a1:07:d1:e0:be:60:
f7:a9:b4:16:6b:8a:f3:fb:6c:17:40:ad:70:b3:56:
db:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:6C:80:08:06:37:FA:CB:16:F5:19:C5:D9:7E:C2:7B:3D:85:09:7D
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/6a2c5c-9e1b-4561-a4e9-e9e1d91a9816/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/6a2c5c-9e1b-4561-a4e9-e9e1d91a9816/1/q2yACAY3-ssW9RnF2X7Cez2FCX0.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.222.104.0/22
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
28925
Signature Algorithm: sha256WithRSAEncryption
1a:1a:ec:56:99:cf:34:0b:60:05:69:f0:ef:2a:c4:17:53:45:
52:05:f9:df:cd:d0:04:56:45:43:56:59:7a:9c:20:3a:9b:e6:
5c:2d:af:6a:a8:67:21:66:dd:33:24:28:0c:cb:86:25:80:a6:
b7:4a:d6:a2:8e:77:0d:f8:2e:ec:51:25:72:03:2c:79:2c:78:
84:a9:6a:d2:30:14:f2:32:1b:60:be:14:38:92:e4:87:44:ca:
f4:d5:22:a4:56:d8:e2:f5:a6:72:2f:d9:79:e0:9a:70:68:71:
65:27:47:2f:2b:f2:80:80:cf:ab:b7:9a:b8:39:14:c3:f3:f2:
10:f6:eb:b1:36:12:c5:4f:3a:1e:0c:61:ac:dd:99:c8:13:26:
83:f8:a7:cd:1b:aa:eb:91:34:61:3c:2a:03:cf:c0:3d:2b:c4:
a6:be:99:53:87:84:1e:cc:bc:3f:5e:e0:f0:3f:ca:35:d3:15:
2b:5c:a1:b3:58:ad:e9:f6:1b:2a:c8:80:36:8a:19:0f:3f:d6:
a7:dd:b0:ea:72:31:43:6a:98:55:3a:33:43:77:3b:b7:48:23:
a4:11:a4:52:38:f0:c7:fb:23:88:1e:f0:15:dd:a3:a6:2d:5e:
12:8b:54:46:68:a2:a8:2f:96:7f:21:31:cd:eb:91:a5:75:83:
74:3f:99:43
-----BEGIN CERTIFICATE-----
MIIFkzCCBHugAwIBAgISAYzIbybex3Esu05Y7YXzTVcfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAyMDQyOTM2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhYjZjODAwODA2MzdmYWNiMTZmNTE5YzVkOTdlYzI3YjNkODUwOTdkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiQ6Jy42wirYov5LdGTORaq7XESgl
bcMnbPGrVrxnEBVOXif4CQM1LydJdPwTHLuZxxBIz+7LRJ0+h28WL4yuA+KGN1ZG
lUSz+7dQ8Sf0+DG9H3n2RjHkW4JM24VpDzowxGqjRWnd0LymJjIEsNYp2lEDxGTg
FWNRdbNN9+uE7Z68ZHkbpFeE1xGTjm0krMQe1oo/TQz/+8kHNv1UqojNIYXVpXmo
sWVu2irEPWN2siU4a38WKR5Tkg+1Fny+u8oLzNN75hSX1TkOONi7oVDJWKUoA/B5
O6jZkPFn1jKm4I7DVJMiOu6OyhChB9HgvmD3qbQWa4rz+2wXQK1ws1bbIQIDAQAB
o4ICnzCCApswHQYDVR0OBBYEFKtsgAgGN/rLFvUZxdl+wns9hQl9MB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzRkLzZhMmM1
Yy05ZTFiLTQ1NjEtYTRlOS1lOWUxZDkxYTk4MTYvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNGQvNmEyYzVj
LTllMWItNDU2MS1hNGU5LWU5ZTFkOTFhOTgxNi8xL3EyeUFDQVkzLXNzVzlSbkYy
WDdDZXoyRkNYMC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF
BwEHAQH/BBAwDjAMBAIAATAGAwQCw95oMBkGCCsGAQUFBwEIAQH/BAowCKAGMAQC
AnD9MA0GCSqGSIb3DQEBCwUAA4IBAQAaGuxWmc80C2AFafDvKsQXU0VSBfnfzdAE
VkVDVll6nCA6m+ZcLa9qqGchZt0zJCgMy4YlgKa3StaijncN+C7sUSVyAyx5LHiE
qWrSMBTyMhtgvhQ4kuSHRMr01SKkVtji9aZyL9l54JpwaHFlJ0cvK/KAgM+rt5q4
ORTD8/IQ9uuxNhLFTzoeDGGs3ZnIEyaD+KfNG6rrkTRhPCoDz8A9K8SmvplTh4Qe
zLw/XuDwP8o10xUrXKGzWK3p9hsqyIA2ihkPP9an3bDqcjFDaphVOjNDdzu3SCOk
EaRSOPDH+yOIHvAV3aOmLV4Si1RGaKKoL5Z/ITHN65GldYN0P5lD
-----END CERTIFICATE-----
Generated at Fri May 3 14:02:11 2024 by rpki-client on console-fra.rpki-client.org