Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/u303nAT4F1s172c9dsaORMcOgz8.cer
File: u303nAT4F1s172c9dsaORMcOgz8.cer (raw, json)
Hash identifier: nQRp3GfKCKh81xZZIrLVxfUNUhPMsnWUmMIK1K6DjEM=
Subject key identifier: BB:7D:37:9C:04:F8:17:5B:35:EF:67:3D:76:C6:8E:44:C7:0E:83:3F
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC8DEAD7156930B87ED0274D9B0B06C2C
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/bc/9e0f5e-8141-43c9-8f44-33ebab24bbb3/1/u303nAT4F1s172c9dsaORMcOgz8.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/bc/9e0f5e-8141-43c9-8f44-33ebab24bbb3/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 06:31:25 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 35336
IP: 2.56.40.0/22
IP: 2a09:d040::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:de:ad:71:56:93:0b:87:ed:02:74:d9:b0:b0:6c:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 06:31:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bb7d379c04f8175b35ef673d76c68e44c70e833f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:2f:5f:61:21:de:67:6b:91:78:cc:1c:40:98:
00:f2:a2:58:4f:e7:d9:3e:41:3e:f2:44:be:d3:a2:
06:0f:9d:b9:e0:39:a0:72:5c:71:a4:1a:73:e6:cf:
20:b9:5a:27:ff:1b:02:e7:6c:e2:a5:9d:8e:bc:18:
1f:7f:da:d7:54:90:63:cb:13:6f:fa:e8:bf:7e:9a:
56:29:a2:7c:55:52:7d:53:90:7c:1a:bb:c4:33:0d:
4f:dc:84:3e:a3:52:ab:86:f0:e4:91:77:1d:00:2b:
d4:4e:ec:b8:83:c7:51:41:92:26:9e:4c:5f:4d:c8:
0e:3b:bd:7a:cd:78:61:4b:dd:75:7c:96:68:b8:c7:
1a:5e:31:8a:c2:07:25:e1:7b:5b:e4:ca:a5:26:7c:
80:81:1a:62:54:ec:68:b9:3a:55:bc:70:0e:16:cc:
02:e8:c4:4a:47:72:b0:64:a8:f0:a3:78:d3:bb:73:
b2:54:bf:e5:4a:57:bf:50:7d:a4:d2:7b:11:f9:3a:
c7:ca:05:2c:e2:78:d8:07:08:65:8b:0b:a4:19:07:
e1:1f:a9:97:1f:18:ff:e6:6a:75:55:3f:fe:c8:5d:
06:a4:68:6b:2f:e0:97:93:7e:a0:b3:68:9a:3e:70:
ee:97:f0:e6:a9:0f:e1:ae:bd:0b:c1:d7:ed:9e:dd:
81:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:7D:37:9C:04:F8:17:5B:35:EF:67:3D:76:C6:8E:44:C7:0E:83:3F
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/9e0f5e-8141-43c9-8f44-33ebab24bbb3/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/9e0f5e-8141-43c9-8f44-33ebab24bbb3/1/u303nAT4F1s172c9dsaORMcOgz8.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.40.0/22
IPv6:
2a09:d040::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
35336
Signature Algorithm: sha256WithRSAEncryption
a7:c9:18:95:c4:8b:bc:f0:f0:2b:51:f9:11:9f:8f:de:80:ea:
e7:7f:76:8c:c2:54:06:10:22:02:20:97:68:05:9b:19:d0:97:
a1:61:50:60:57:e3:cc:0f:85:b4:c8:23:5c:71:94:4d:b5:58:
96:86:9d:85:5e:cc:21:20:2a:e8:dd:16:ba:d7:76:a2:3d:c4:
8d:bc:73:05:28:f4:ab:d6:90:ba:8e:80:0b:6b:e3:e5:ba:81:
96:d2:17:c2:fa:f7:49:fa:d0:07:d0:49:e7:b5:91:1b:8c:80:
af:ed:ae:5f:e4:02:c5:ae:bd:20:5f:f5:fb:70:a4:b1:07:40:
a1:26:08:25:cd:8e:4b:52:96:0e:c2:42:18:83:f3:fc:a2:01:
78:f3:be:e3:ee:77:51:51:b6:b4:80:e2:34:9a:53:21:d0:72:
c8:18:1e:bd:3a:65:db:91:d5:a9:cb:ae:4c:b9:6a:26:c9:d5:
9e:d9:d7:26:6e:e6:b0:1e:0d:fd:71:e3:3b:dc:ef:1c:2c:b0:
c4:8e:50:ea:d3:6b:db:bb:a2:8f:84:d5:0a:00:47:b8:fd:79:
f6:cf:74:20:69:51:d7:7b:ed:72:be:5f:bb:32:50:3f:1c:6b:
7a:e5:26:b2:05:55:f9:a0:a5:3c:ad:96:13:6e:5d:b3:92:cf:
c8:fc:9d:52
-----BEGIN CERTIFICATE-----
MIIFozCCBIugAwIBAgISAYzI3q1xVpMLh+0CdNmwsGwsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAyMDYzMTI1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiYjdkMzc5YzA0ZjgxNzViMzVlZjY3M2Q3NmM2OGU0NGM3MGU4MzNmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAri9fYSHeZ2uReMwcQJgA8qJYT+fZ
PkE+8kS+06IGD5254DmgclxxpBpz5s8guVon/xsC52zipZ2OvBgff9rXVJBjyxNv
+ui/fppWKaJ8VVJ9U5B8GrvEMw1P3IQ+o1KrhvDkkXcdACvUTuy4g8dRQZImnkxf
TcgOO716zXhhS911fJZouMcaXjGKwgcl4Xtb5MqlJnyAgRpiVOxouTpVvHAOFswC
6MRKR3KwZKjwo3jTu3OyVL/lSle/UH2k0nsR+TrHygUs4njYBwhliwukGQfhH6mX
Hxj/5mp1VT/+yF0GpGhrL+CXk36gs2iaPnDul/DmqQ/hrr0Lwdftnt2BxwIDAQAB
o4ICrzCCAqswHQYDVR0OBBYEFLt9N5wE+BdbNe9nPXbGjkTHDoM/MB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2JjLzllMGY1
ZS04MTQxLTQzYzktOGY0NC0zM2ViYWIyNGJiYjMvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYmMvOWUwZjVl
LTgxNDEtNDNjOS04ZjQ0LTMzZWJhYjI0YmJiMy8xL3UzMDNuQVQ0RjFzMTcyYzlk
c2FPUk1jT2d6OC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF
BwEHAQH/BB8wHTAMBAIAATAGAwQCAjgoMA0EAgACMAcDBQMqCdBAMBoGCCsGAQUF
BwEIAQH/BAswCaAHMAUCAwCKCDANBgkqhkiG9w0BAQsFAAOCAQEAp8kYlcSLvPDw
K1H5EZ+P3oDq5392jMJUBhAiAiCXaAWbGdCXoWFQYFfjzA+FtMgjXHGUTbVYload
hV7MISAq6N0Wutd2oj3EjbxzBSj0q9aQuo6AC2vj5bqBltIXwvr3SfrQB9BJ57WR
G4yAr+2uX+QCxa69IF/1+3CksQdAoSYIJc2OS1KWDsJCGIPz/KIBePO+4+53UVG2
tIDiNJpTIdByyBgevTpl25HVqcuuTLlqJsnVntnXJm7msB4N/XHjO9zvHCywxI5Q
6tNr27uij4TVCgBHuP159s90IGlR13vtcr5fuzJQPxxreuUmsgVV+aClPK2WE25d
s5LPyPydUg==
-----END CERTIFICATE-----
Generated at Fri May 3 08:23:01 2024 by rpki-client on console-fra.rpki-client.org