Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/t6XbvIM8xastSukpfi6rl18cGX0.cer
File: t6XbvIM8xastSukpfi6rl18cGX0.cer (raw, json)
Hash identifier: tLFlscRNT0tE/hn2ySj46yqwbhXr1ZP4onWvRx+C6RY=
Subject key identifier: B7:A5:DB:BC:83:3C:C5:AB:2D:4A:E9:29:7E:2E:AB:97:5F:1C:19:7D
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC5DCA276409BE81C132B4FFF6DEEF0E7
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/b2/429ff9-0265-476f-9035-4192a357eab7/1/t6XbvIM8xastSukpfi6rl18cGX0.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/b2/429ff9-0265-476f-9035-4192a357eab7/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 16:30:20 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 16101
IP: 193.41.194.0/24
IP: 2001:67c:2b38::/48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:dc:a2:76:40:9b:e8:1c:13:2b:4f:ff:6d:ee:f0:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 16:30:20 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b7a5dbbc833cc5ab2d4ae9297e2eab975f1c197d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:98:03:b6:fc:69:9e:0e:68:ac:42:68:c7:9d:
3d:b8:a5:b6:ac:fb:88:88:97:a5:e0:47:3f:ae:3f:
18:ff:c8:86:6c:f1:97:81:09:34:2d:fd:cc:90:46:
dd:f3:a8:98:1b:fa:99:51:83:63:aa:2f:d0:a8:1b:
eb:af:5e:0c:ee:76:bb:32:e9:3e:f7:02:ca:3c:75:
30:b9:78:02:27:0a:21:2b:40:20:76:d1:ad:2f:73:
ab:3b:d9:7c:1c:db:59:23:98:25:b2:61:97:46:3c:
0d:7b:19:1a:0e:e4:ff:2a:c4:96:15:29:ee:f9:39:
be:ae:fe:3f:da:b6:a1:1d:ee:3e:a9:bb:82:ca:8e:
6d:77:03:88:45:8e:78:0c:3f:28:82:51:1e:ee:d4:
d1:72:2e:6a:49:2e:6d:36:31:46:42:e7:e0:85:1c:
80:dd:c3:7d:ef:ed:00:ac:f6:41:75:f5:83:9a:b6:
7f:97:f0:ac:25:ce:bc:c9:46:3a:3f:3c:c8:cd:9d:
46:be:e0:bd:08:97:68:3a:d2:9e:fb:ab:c7:3e:be:
65:3f:b7:a2:c0:5d:43:87:08:5e:95:91:cf:d7:68:
94:15:f2:f4:d2:1c:29:27:aa:63:25:8f:f1:46:73:
fa:48:68:7e:80:e6:41:08:5e:c6:57:d1:60:d7:4b:
31:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:A5:DB:BC:83:3C:C5:AB:2D:4A:E9:29:7E:2E:AB:97:5F:1C:19:7D
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/429ff9-0265-476f-9035-4192a357eab7/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/429ff9-0265-476f-9035-4192a357eab7/1/t6XbvIM8xastSukpfi6rl18cGX0.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.41.194.0/24
IPv6:
2001:67c:2b38::/48
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
16101
Signature Algorithm: sha256WithRSAEncryption
5e:95:4a:cc:8c:cb:bd:e1:3b:97:5f:52:11:b6:b8:65:3e:ad:
49:d2:04:3d:30:16:a8:3f:6b:85:fe:b9:df:07:c0:07:a8:88:
f6:da:d9:59:7d:07:77:08:84:92:5f:11:6c:7f:7d:a5:d0:ab:
43:4d:d0:24:be:ec:7d:ff:b6:cf:19:26:11:24:99:8d:db:f5:
57:03:de:24:31:bd:ea:38:33:37:95:b1:25:b6:de:c5:6e:30:
8f:22:0b:54:b3:8d:e5:34:b8:a1:86:0f:a6:e8:a3:d1:e4:8a:
bc:7d:b8:86:b6:61:ba:f2:56:da:9f:3a:16:d4:85:70:80:0d:
41:f5:c0:7f:c6:65:76:4d:81:23:d2:16:cc:85:7d:f6:c1:18:
2f:81:87:13:dc:3f:5e:c5:38:37:90:bf:cb:7b:47:e4:3d:6f:
db:08:cc:48:fc:0d:ec:b3:8b:6e:21:2f:27:3b:fb:2d:32:80:
8a:d2:83:7a:bc:08:e7:59:e4:81:54:03:46:4d:a0:08:43:ee:
df:54:51:45:b3:bb:6c:24:cb:4b:89:5b:75:27:b8:6c:a6:7c:
97:be:1c:4b:3e:2f:d9:5e:48:ca:40:69:00:94:ee:d9:83:0f:
76:64:1f:f4:d5:9b:8d:38:f5:8e:a8:a9:c1:f3:75:53:f7:b4:
22:9c:5f:1f
-----BEGIN CERTIFICATE-----
MIIFpDCCBIygAwIBAgISAYzF3KJ2QJvoHBMrT/9t7vDnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAxMTYzMDIwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiN2E1ZGJiYzgzM2NjNWFiMmQ0YWU5Mjk3ZTJlYWI5NzVmMWMxOTdkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAspgDtvxpng5orEJox509uKW2rPuI
iJel4Ec/rj8Y/8iGbPGXgQk0Lf3MkEbd86iYG/qZUYNjqi/QqBvrr14M7na7Muk+
9wLKPHUwuXgCJwohK0AgdtGtL3OrO9l8HNtZI5glsmGXRjwNexkaDuT/KsSWFSnu
+Tm+rv4/2rahHe4+qbuCyo5tdwOIRY54DD8oglEe7tTRci5qSS5tNjFGQufghRyA
3cN97+0ArPZBdfWDmrZ/l/CsJc68yUY6PzzIzZ1GvuC9CJdoOtKe+6vHPr5lP7ei
wF1DhwhelZHP12iUFfL00hwpJ6pjJY/xRnP6SGh+gOZBCF7GV9Fg10sxQwIDAQAB
o4ICsDCCAqwwHQYDVR0OBBYEFLel27yDPMWrLUrpKX4uq5dfHBl9MB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2IyLzQyOWZm
OS0wMjY1LTQ3NmYtOTAzNS00MTkyYTM1N2VhYjcvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjIvNDI5ZmY5
LTAyNjUtNDc2Zi05MDM1LTQxOTJhMzU3ZWFiNy8xL3Q2WGJ2SU04eGFzdFN1a3Bm
aTZybDE4Y0dYMC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDAGCCsGAQUF
BwEHAQH/BCEwHzAMBAIAATAGAwQAwSnCMA8EAgACMAkDBwAgAQZ8KzgwGQYIKwYB
BQUHAQgBAf8ECjAIoAYwBAICPuUwDQYJKoZIhvcNAQELBQADggEBAF6VSsyMy73h
O5dfUhG2uGU+rUnSBD0wFqg/a4X+ud8HwAeoiPba2Vl9B3cIhJJfEWx/faXQq0NN
0CS+7H3/ts8ZJhEkmY3b9VcD3iQxveo4MzeVsSW23sVuMI8iC1SzjeU0uKGGD6bo
o9Hkirx9uIa2YbryVtqfOhbUhXCADUH1wH/GZXZNgSPSFsyFffbBGC+BhxPcP17F
ODeQv8t7R+Q9b9sIzEj8Deyzi24hLyc7+y0ygIrSg3q8COdZ5IFUA0ZNoAhD7t9U
UUWzu2wky0uJW3UnuGymfJe+HEs+L9leSMpAaQCU7tmDD3ZkH/TVm4049Y6oqcHz
dVP3tCKcXx8=
-----END CERTIFICATE-----
Generated at Sat Nov 23 10:22:58 2024 by rpki-client on console-fra.rpki-client.org