Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/sxk4vHICgkRLq9OyazSStFats5c.cer
File: sxk4vHICgkRLq9OyazSStFats5c.cer (raw, json)
Hash identifier: E9XPs8KCVT3GII2NVqUwIuDsPBYnvOVHupa8DVLo7fw=
Subject key identifier: B3:19:38:BC:72:02:82:44:4B:AB:D3:B2:6B:34:92:B4:56:AD:B3:97
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC26D72F969E1D869D7A5C99C48F5AFD8
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/08/75dede-5449-4d47-9b51-9b5df85c1140/1/sxk4vHICgkRLq9OyazSStFats5c.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/08/75dede-5449-4d47-9b51-9b5df85c1140/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 00:30:01 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 199568
IP: 2001:678:7b0::/48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:6d:72:f9:69:e1:d8:69:d7:a5:c9:9c:48:f5:af:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 00:30:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b31938bc720282444babd3b26b3492b456adb397
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:a4:4f:fc:e1:5b:ed:07:72:ba:98:ac:76:ca:
80:9b:3d:5f:26:e2:cf:c2:f5:c6:5f:eb:6d:da:b8:
e5:51:39:fd:52:e9:94:14:03:a3:4b:55:7d:1e:0e:
85:01:e6:7e:4f:07:ca:00:d1:b3:b2:02:e9:17:f1:
d2:0e:65:98:75:8a:cf:bd:55:10:be:0d:b5:3a:3b:
4f:ec:19:06:81:93:ef:e0:ca:a9:fc:0f:aa:27:00:
fa:41:2c:d7:9d:87:08:b3:f9:cf:a0:44:53:78:6e:
95:e9:2f:ca:93:41:72:f5:00:eb:1c:0a:17:36:79:
55:11:dd:b9:8e:03:87:08:c7:02:d9:78:6f:82:69:
d3:71:81:d1:eb:67:0b:48:2f:03:b0:50:16:32:36:
1d:b2:b9:84:10:25:9a:ef:e6:4e:7c:21:f4:7a:12:
9f:5c:d5:c9:7b:5a:4f:cf:4c:eb:bc:5c:52:5a:93:
1e:5b:29:d0:ad:69:c0:17:a2:26:0d:44:14:ba:0c:
ce:b2:10:31:a2:76:ce:60:fa:a1:a8:4d:e7:d8:31:
57:f5:26:98:a0:58:df:29:c6:da:ae:58:a1:a5:1e:
db:9e:18:77:2b:0d:08:b8:ad:84:1c:4d:a1:75:93:
4c:5f:3f:c6:98:03:dd:ed:42:4b:62:42:90:63:60:
11:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:19:38:BC:72:02:82:44:4B:AB:D3:B2:6B:34:92:B4:56:AD:B3:97
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/75dede-5449-4d47-9b51-9b5df85c1140/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/75dede-5449-4d47-9b51-9b5df85c1140/1/sxk4vHICgkRLq9OyazSStFats5c.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:7b0::/48
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
199568
Signature Algorithm: sha256WithRSAEncryption
56:73:70:85:e6:fd:a2:8f:c4:8e:3d:14:70:44:82:c2:17:93:
00:b1:4a:83:96:96:6b:97:34:df:17:72:9f:ac:c2:28:e2:4c:
32:5d:f7:2b:56:86:c2:e9:37:5c:dc:13:21:37:1d:f2:03:41:
b0:99:25:40:7f:fd:00:bd:a1:0e:25:6f:5f:ae:17:47:86:3b:
cb:1e:03:83:0b:f4:a3:38:e1:8d:4c:79:19:3b:54:c1:01:79:
c2:60:3c:09:dd:9a:9c:fd:43:71:33:2e:84:a7:e8:cd:cf:80:
e2:77:e6:de:11:76:d6:49:e9:f9:76:ba:df:35:cd:ae:94:ac:
0e:c4:8d:dc:fb:98:8d:2d:3a:7a:ca:40:d8:32:91:2a:fa:73:
3e:49:ea:8c:81:7b:b3:29:5c:59:b5:ab:5c:19:bf:a1:b7:0c:
92:82:13:36:09:37:46:47:25:18:5d:85:c4:3c:af:08:46:51:
d9:1c:8f:ee:d2:18:79:ee:5a:46:58:d4:8f:bb:22:ab:16:8e:
2e:05:82:f0:2f:3d:99:37:1f:84:d4:7f:7c:c7:bc:60:dc:06:
54:e9:42:db:a3:e1:18:c2:c4:2e:c9:84:da:5b:52:31:af:1b:
88:42:70:0b:e2:54:d1:2d:49:38:8b:4b:0d:e7:84:10:d8:92:
4c:9f:8e:6c
-----BEGIN CERTIFICATE-----
MIIFlzCCBH+gAwIBAgISAYzCbXL5aeHYadelyZxI9a/YMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAxMDAzMDAxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiMzE5MzhiYzcyMDI4MjQ0NGJhYmQzYjI2YjM0OTJiNDU2YWRiMzk3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmqRP/OFb7QdyupisdsqAmz1fJuLP
wvXGX+tt2rjlUTn9UumUFAOjS1V9Hg6FAeZ+TwfKANGzsgLpF/HSDmWYdYrPvVUQ
vg21OjtP7BkGgZPv4Mqp/A+qJwD6QSzXnYcIs/nPoERTeG6V6S/Kk0Fy9QDrHAoX
NnlVEd25jgOHCMcC2XhvgmnTcYHR62cLSC8DsFAWMjYdsrmEECWa7+ZOfCH0ehKf
XNXJe1pPz0zrvFxSWpMeWynQrWnAF6ImDUQUugzOshAxonbOYPqhqE3n2DFX9SaY
oFjfKcbarlihpR7bnhh3Kw0IuK2EHE2hdZNMXz/GmAPd7UJLYkKQY2ARZQIDAQAB
o4ICozCCAp8wHQYDVR0OBBYEFLMZOLxyAoJES6vTsms0krRWrbOXMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzA4Lzc1ZGVk
ZS01NDQ5LTRkNDctOWI1MS05YjVkZjg1YzExNDAvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDgvNzVkZWRl
LTU0NDktNGQ0Ny05YjUxLTliNWRmODVjMTE0MC8xL3N4azR2SElDZ2tSTHE5T3lh
elNTdEZhdHM1Yy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF
BwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGeAewMBoGCCsGAQUFBwEIAQH/BAswCaAH
MAUCAwMLkDANBgkqhkiG9w0BAQsFAAOCAQEAVnNwheb9oo/Ejj0UcESCwheTALFK
g5aWa5c03xdyn6zCKOJMMl33K1aGwuk3XNwTITcd8gNBsJklQH/9AL2hDiVvX64X
R4Y7yx4Dgwv0ozjhjUx5GTtUwQF5wmA8Cd2anP1DcTMuhKfozc+A4nfm3hF21knp
+Xa63zXNrpSsDsSN3PuYjS06espA2DKRKvpzPknqjIF7sylcWbWrXBm/obcMkoIT
Ngk3RkclGF2FxDyvCEZR2RyP7tIYee5aRljUj7siqxaOLgWC8C89mTcfhNR/fMe8
YNwGVOlC26PhGMLELsmE2ltSMa8biEJwC+JU0S1JOItLDeeEENiSTJ+ObA==
-----END CERTIFICATE-----
Generated at Fri May 3 09:39:33 2024 by rpki-client on console-ams.rpki-client.org