Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/qipweTi6Yv4Z5kdNrHh98_jP3uQ.cer
File: qipweTi6Yv4Z5kdNrHh98_jP3uQ.cer (raw, json)
Hash identifier: mGY4jrph3/RyP6qUeOzT7WYTaSaMBDrjgOLborsFIAI=
Subject key identifier: AA:2A:70:79:38:BA:62:FE:19:E6:47:4D:AC:78:7D:F3:F8:CF:DE:E4
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC3B694C082C7F3EFE599EEAD0087CD55
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/ac/9d42ef-74a5-4f82-8a83-d716f4068139/1/qipweTi6Yv4Z5kdNrHh98_jP3uQ.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/ac/9d42ef-74a5-4f82-8a83-d716f4068139/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 06:29:31 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 57682
IP: 192.102.6.0/23
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:b6:94:c0:82:c7:f3:ef:e5:99:ee:ad:00:87:cd:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 06:29:31 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=aa2a707938ba62fe19e6474dac787df3f8cfdee4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:5c:80:20:a9:81:a6:86:bd:92:11:7e:94:cd:
4c:fa:f1:9f:8f:07:3d:0c:01:c6:b7:d5:10:c2:8f:
75:0e:04:13:e2:c7:d5:16:17:69:5a:05:19:52:ca:
96:f4:0c:30:c4:29:ca:4e:89:47:c9:2e:54:22:a4:
ab:52:c9:33:50:9a:de:ae:fd:a2:e9:a2:d5:6b:20:
92:ae:ec:c8:7e:5f:49:f4:0c:9a:19:9b:70:9a:93:
d9:e5:ec:c5:98:2f:fb:6f:0d:92:fe:2f:f0:eb:71:
9a:45:83:4c:75:9e:67:a8:18:62:e6:2a:6d:03:65:
6a:f6:09:cb:bc:66:ad:fb:f9:31:69:59:b3:8a:bc:
b8:a3:61:e4:b9:fc:f8:26:fd:7c:98:86:03:f7:3b:
5b:ed:7b:d3:cc:7c:f7:de:b2:6e:5c:91:13:b5:b0:
bb:d8:7e:17:6f:9d:c2:3c:7d:70:8b:e9:ca:ea:f4:
df:a6:44:b5:f8:fb:4a:70:ed:62:60:22:b4:6a:3c:
f6:d9:db:0a:f3:b4:60:a7:0c:66:e0:42:22:72:2c:
dc:90:80:fb:86:8c:85:4f:7e:4e:9e:25:80:5e:24:
8c:53:b0:1a:fd:31:48:ef:6a:86:6e:e6:de:e8:89:
fd:7f:81:7a:36:01:5d:54:35:ea:43:98:93:93:47:
d6:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:2A:70:79:38:BA:62:FE:19:E6:47:4D:AC:78:7D:F3:F8:CF:DE:E4
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/9d42ef-74a5-4f82-8a83-d716f4068139/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/9d42ef-74a5-4f82-8a83-d716f4068139/1/qipweTi6Yv4Z5kdNrHh98_jP3uQ.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.102.6.0/23
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
57682
Signature Algorithm: sha256WithRSAEncryption
16:01:31:92:35:dd:67:85:7f:0f:e2:62:27:2b:51:c7:6f:72:
ac:dc:8a:00:97:ad:03:22:d5:17:0b:ad:d7:7c:fd:a9:34:bd:
8a:7d:74:85:7d:c7:b7:33:a8:68:ae:6c:9f:5c:46:e8:d1:1a:
e4:96:51:d7:55:02:b4:32:da:b8:d8:a7:8d:c0:0c:ff:cf:e7:
71:a3:9a:88:d3:d3:b3:6a:20:6c:17:be:f1:08:c0:01:ea:8e:
9b:4a:4e:53:97:03:4f:c9:3b:fc:4e:cb:ca:f2:20:ba:40:e7:
d4:c1:1f:59:a2:2f:6c:55:38:a1:8b:e9:56:32:73:84:ba:a1:
3c:eb:e2:78:e9:e0:5e:0b:9f:ae:34:ac:87:30:d0:e4:c2:57:
01:23:5a:71:a4:a9:97:32:be:b8:cf:72:5d:0c:7e:73:14:c7:
df:4b:ca:2a:51:23:a6:f7:9c:f7:4e:f1:99:e1:e9:4a:fe:82:
ed:c6:81:e7:c6:c7:f4:70:1d:01:e5:c2:ad:6c:ad:e2:6f:0a:
93:7f:8a:fe:9a:19:e1:76:8c:57:09:1d:ba:bb:81:c4:26:0b:
78:dd:c3:9c:d3:7e:e4:37:89:f3:da:5c:5b:03:9f:61:fe:8b:
b4:30:73:47:2b:b7:3b:66:62:10:26:1a:41:6b:c8:73:36:76:
e1:c1:16:99
-----BEGIN CERTIFICATE-----
MIIFlDCCBHygAwIBAgISAYzDtpTAgsfz7+WZ7q0Ah81VMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAxMDYyOTMxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhYTJhNzA3OTM4YmE2MmZlMTllNjQ3NGRhYzc4N2RmM2Y4Y2ZkZWU0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3VyAIKmBpoa9khF+lM1M+vGfjwc9
DAHGt9UQwo91DgQT4sfVFhdpWgUZUsqW9AwwxCnKTolHyS5UIqSrUskzUJrerv2i
6aLVayCSruzIfl9J9AyaGZtwmpPZ5ezFmC/7bw2S/i/w63GaRYNMdZ5nqBhi5ipt
A2Vq9gnLvGat+/kxaVmziry4o2Hkufz4Jv18mIYD9ztb7XvTzHz33rJuXJETtbC7
2H4Xb53CPH1wi+nK6vTfpkS1+PtKcO1iYCK0ajz22dsK87Rgpwxm4EIicizckID7
hoyFT35OniWAXiSMU7Aa/TFI72qGbube6In9f4F6NgFdVDXqQ5iTk0fWgwIDAQAB
o4ICoDCCApwwHQYDVR0OBBYEFKoqcHk4umL+GeZHTax4ffP4z97kMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2FjLzlkNDJl
Zi03NGE1LTRmODItOGE4My1kNzE2ZjQwNjgxMzkvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYWMvOWQ0MmVm
LTc0YTUtNGY4Mi04YTgzLWQ3MTZmNDA2ODEzOS8xL3FpcHdlVGk2WXY0WjVrZE5y
SGg5OF9qUDN1US5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF
BwEHAQH/BBAwDjAMBAIAATAGAwQBwGYGMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUC
AwDhUjANBgkqhkiG9w0BAQsFAAOCAQEAFgExkjXdZ4V/D+JiJytRx29yrNyKAJet
AyLVFwut13z9qTS9in10hX3HtzOoaK5sn1xG6NEa5JZR11UCtDLauNinjcAM/8/n
caOaiNPTs2ogbBe+8QjAAeqOm0pOU5cDT8k7/E7LyvIgukDn1MEfWaIvbFU4oYvp
VjJzhLqhPOvieOngXgufrjSshzDQ5MJXASNacaSplzK+uM9yXQx+cxTH30vKKlEj
pvec907xmeHpSv6C7caB58bH9HAdAeXCrWyt4m8Kk3+K/poZ4XaMVwkduruBxCYL
eN3DnNN+5DeJ89pcWwOfYf6LtDBzRyu3O2ZiECYaQWvIczZ24cEWmQ==
-----END CERTIFICATE-----
Generated at Fri May 3 03:44:56 2024 by rpki-client on console-fra.rpki-client.org