Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/sL-w_CmJZUdrwQ9YeSvyhsFNn_E.cer
File: sL-w_CmJZUdrwQ9YeSvyhsFNn_E.cer (raw, json)
Hash identifier: y9H2VtWQKZWvARBQnEER+A4YdHZ8+TkaWQx/DQv6an4=
Subject key identifier: B0:BF:B0:FC:29:89:65:47:6B:C1:0F:58:79:2B:F2:86:C1:4D:9F:F1
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC802D5F90ECC9F3BBF3D3151495D1206
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/6b/7e67d0-ecb7-4c66-99b8-85b0e7478856/1/sL-w_CmJZUdrwQ9YeSvyhsFNn_E.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/6b/7e67d0-ecb7-4c66-99b8-85b0e7478856/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 02:31:18 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 203904
IP: 185.118.44.0/22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:02:d5:f9:0e:cc:9f:3b:bf:3d:31:51:49:5d:12:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 02:31:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b0bfb0fc298965476bc10f58792bf286c14d9ff1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:c8:30:2f:01:6c:d4:98:8c:10:ba:82:10:86:
95:af:bc:33:4d:45:c5:e4:43:03:e3:70:c4:f2:bc:
4f:f0:bd:a5:87:a5:80:84:b9:66:30:16:a8:1e:d6:
02:95:0d:8b:92:10:b8:73:b0:1a:45:41:66:6a:e4:
85:dc:cd:20:28:c4:0a:ee:a0:90:13:b3:c3:78:34:
74:10:1a:0b:02:8c:aa:af:b6:85:21:fc:22:f9:7e:
4e:44:7f:aa:e2:aa:18:19:81:70:4a:11:a1:0c:ad:
9b:4b:9d:70:b6:27:f6:ac:c5:2d:b8:72:11:43:c9:
d5:e6:fb:06:1f:fd:a8:cf:b2:00:66:d8:79:6a:99:
c2:10:b0:c8:ca:e5:be:14:88:c4:f8:32:57:af:13:
54:1d:4d:96:c0:1a:f1:64:3b:ad:07:e6:7c:e0:fa:
d6:f5:78:86:0b:51:1b:01:67:bd:f4:a0:48:ed:75:
d4:05:f4:4b:01:17:9e:80:89:60:81:ba:d2:64:c5:
52:34:54:6b:ad:0c:92:74:37:21:ac:e9:f3:2d:34:
92:d3:04:36:95:d8:34:20:d0:00:ad:e8:32:68:fc:
38:0e:70:ba:08:22:28:ae:cf:4d:77:4c:f3:40:79:
0b:93:d7:19:90:1b:36:0e:e4:ce:36:f8:19:81:44:
ff:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:BF:B0:FC:29:89:65:47:6B:C1:0F:58:79:2B:F2:86:C1:4D:9F:F1
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/7e67d0-ecb7-4c66-99b8-85b0e7478856/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/7e67d0-ecb7-4c66-99b8-85b0e7478856/1/sL-w_CmJZUdrwQ9YeSvyhsFNn_E.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.118.44.0/22
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
203904
Signature Algorithm: sha256WithRSAEncryption
ac:5e:1d:d0:04:23:80:87:8d:54:7e:64:c1:92:d7:e9:84:81:
b5:2d:f3:17:55:b3:a2:ef:2e:18:f6:4a:6a:ed:c1:92:d9:a7:
5a:dc:b0:d6:e4:47:18:68:f3:b4:8e:b0:d5:e6:c6:11:d1:3b:
bc:3d:21:e6:12:d2:73:7f:20:da:24:13:f7:c2:50:c6:dc:fa:
18:8e:ea:bb:52:a4:0e:3c:65:e9:3b:16:ac:51:bf:16:a4:45:
04:1d:73:d9:a7:41:7c:17:c9:c0:a3:39:e5:31:3a:a6:9e:36:
5e:31:83:ce:85:0c:bb:bf:1e:73:2b:a8:df:64:c5:61:3d:77:
b5:b0:1e:23:db:09:48:44:44:e9:c1:4a:0c:80:c1:b7:5f:9b:
fd:df:fd:1d:d9:28:8c:3a:81:59:7a:6f:e9:4c:15:5f:ba:d6:
ea:ad:44:84:b5:7b:f9:f6:f0:01:11:e7:e6:ef:2f:27:85:cb:
79:e3:00:6a:81:b7:6c:2e:ce:97:1b:b5:b5:48:f0:a3:89:e2:
48:af:f2:96:a9:19:08:3f:cd:a4:cf:4c:06:41:66:07:df:1e:
31:b2:17:dd:01:d4:c8:fc:44:30:7b:c3:6d:85:22:8f:61:52:
d4:2f:d9:e6:5b:d2:db:bd:9a:1b:f6:25:b0:8b:ab:80:85:7b:
24:e5:ed:4f
-----BEGIN CERTIFICATE-----
MIIFlDCCBHygAwIBAgISAYzIAtX5DsyfO789MVFJXRIGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAyMDIzMTE4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiMGJmYjBmYzI5ODk2NTQ3NmJjMTBmNTg3OTJiZjI4NmMxNGQ5ZmYxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3sgwLwFs1JiMELqCEIaVr7wzTUXF
5EMD43DE8rxP8L2lh6WAhLlmMBaoHtYClQ2LkhC4c7AaRUFmauSF3M0gKMQK7qCQ
E7PDeDR0EBoLAoyqr7aFIfwi+X5ORH+q4qoYGYFwShGhDK2bS51wtif2rMUtuHIR
Q8nV5vsGH/2oz7IAZth5apnCELDIyuW+FIjE+DJXrxNUHU2WwBrxZDutB+Z84PrW
9XiGC1EbAWe99KBI7XXUBfRLAReegIlggbrSZMVSNFRrrQySdDchrOnzLTSS0wQ2
ldg0INAAregyaPw4DnC6CCIors9Nd0zzQHkLk9cZkBs2DuTONvgZgUT/jQIDAQAB
o4ICoDCCApwwHQYDVR0OBBYEFLC/sPwpiWVHa8EPWHkr8obBTZ/xMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzZiLzdlNjdk
MC1lY2I3LTRjNjYtOTliOC04NWIwZTc0Nzg4NTYvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNmIvN2U2N2Qw
LWVjYjctNGM2Ni05OWI4LTg1YjBlNzQ3ODg1Ni8xL3NMLXdfQ21KWlVkcndROVll
U3Z5aHNGTm5fRS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF
BwEHAQH/BBAwDjAMBAIAATAGAwQCuXYsMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUC
AwMcgDANBgkqhkiG9w0BAQsFAAOCAQEArF4d0AQjgIeNVH5kwZLX6YSBtS3zF1Wz
ou8uGPZKau3BktmnWtyw1uRHGGjztI6w1ebGEdE7vD0h5hLSc38g2iQT98JQxtz6
GI7qu1KkDjxl6TsWrFG/FqRFBB1z2adBfBfJwKM55TE6pp42XjGDzoUMu78ecyuo
32TFYT13tbAeI9sJSERE6cFKDIDBt1+b/d/9HdkojDqBWXpv6UwVX7rW6q1EhLV7
+fbwARHn5u8vJ4XLeeMAaoG3bC7Olxu1tUjwo4niSK/ylqkZCD/NpM9MBkFmB98e
MbIX3QHUyPxEMHvDbYUij2FS1C/Z5lvS272aG/YlsIurgIV7JOXtTw==
-----END CERTIFICATE-----
Generated at Wed Nov 27 01:07:39 2024 by rpki-client on console-fra.rpki-client.org