Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/uw-EN95rslGCGnpfuBETdvFwkCM.cer
File: uw-EN95rslGCGnpfuBETdvFwkCM.cer (raw, json)
Hash identifier: S88F6GFu7cImAAR0sBzt5glmNLXkaEWlLclZ9Q+s1GA=
Subject key identifier: BB:0F:84:37:DE:6B:B2:51:82:1A:7A:5F:B8:11:13:76:F1:70:90:23
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018D5A619078AB82F0CD5855C095D6E49471
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/0/BB0F8437DE6BB251821A7A5FB8111376F1709023.mft
caRepository: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/0/
Notify URL: https://rrdp.paas.rpki.ripe.net/notification.xml
Certificate not before: Tue 30 Jan 2024 12:39:19 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 215617
AS: 215729
AS: 216324
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 16:12:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:5a:61:90:78:ab:82:f0:cd:58:55:c0:95:d6:e4:94:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 30 12:39:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bb0f8437de6bb251821a7a5fb8111376f1709023
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:56:2c:08:c6:42:22:2e:b5:52:2f:81:51:c0:
46:fd:72:2e:8c:06:dd:64:a6:c2:f7:eb:5c:13:ee:
1b:ec:c4:8f:d4:9a:ab:5c:02:07:ab:11:5a:0b:cf:
d1:1f:05:4f:71:c0:06:d6:ca:56:ec:81:87:da:81:
38:bc:dd:49:3f:f8:14:cb:b7:9a:8c:65:cd:01:3d:
e1:25:bb:d5:08:10:be:92:a0:58:1b:fe:aa:ae:7b:
00:cd:e4:29:43:16:42:e4:ef:96:f7:03:27:24:29:
c0:33:8c:f2:cf:6f:ac:b9:cf:be:1c:34:20:15:10:
e4:88:10:b0:52:2b:22:d5:e2:aa:6b:a4:d3:0b:99:
92:1a:e8:92:8e:cc:3f:33:af:3f:59:ba:63:a1:06:
fb:ef:51:b7:ee:74:86:28:6e:d3:02:68:02:8f:7c:
72:cd:aa:3a:5c:96:09:24:a6:14:4a:e0:b7:8f:d1:
b8:de:49:7f:32:2d:5d:ec:e2:30:f8:5a:f7:70:0d:
a8:bf:ca:e4:55:30:fd:4f:de:97:4c:c5:8c:ed:3c:
04:d5:c8:de:df:d2:34:8a:1d:a4:93:3d:b6:d8:0a:
3c:46:08:63:ac:8d:c3:3a:cb:b6:1c:a2:a4:d0:a7:
91:6e:db:3b:18:27:0d:f2:b1:14:4c:51:75:ae:be:
79:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:0F:84:37:DE:6B:B2:51:82:1A:7A:5F:B8:11:13:76:F1:70:90:23
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/0/
RPKI Manifest - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/0/BB0F8437DE6BB251821A7A5FB8111376F1709023.mft
RPKI Notify - URI:https://rrdp.paas.rpki.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
215617
215729
216324
Signature Algorithm: sha256WithRSAEncryption
7f:df:6a:83:92:b7:b6:18:ac:41:4d:fa:8f:d7:c6:d8:c2:6a:
30:06:4a:04:8d:bd:06:47:4c:fe:d9:b5:96:2e:b8:33:31:f9:
6c:55:e2:c0:7c:06:eb:97:35:9f:e3:c0:ce:22:74:d0:57:16:
64:4b:18:18:7a:3c:cf:20:ed:ff:40:d4:36:4f:0f:46:81:38:
63:19:51:3a:1b:92:e2:61:75:69:6d:15:22:52:13:6c:9c:96:
e0:f4:9c:3c:6c:a9:04:8b:9b:4c:6d:7a:3d:a6:66:c3:79:97:
3e:02:69:51:9c:4c:59:79:07:e8:60:75:b2:07:1b:36:d6:5f:
80:89:f5:ed:90:67:01:46:1c:7b:3c:3c:f0:5f:35:d6:ef:0f:
5c:2a:46:f9:a6:35:cd:55:8a:bc:1d:87:de:89:81:33:4e:06:
34:4e:21:65:97:38:0c:13:81:76:ea:40:c6:69:29:3a:57:56:
18:c3:f7:af:24:6d:02:2f:22:a7:89:90:06:11:d2:d9:3a:f5:
c9:c2:bc:6e:45:b6:5f:2a:7a:25:3f:d5:8e:2f:50:2f:b3:dd:
ed:e6:43:3a:11:e4:2c:1a:0c:25:3a:7c:21:a0:fd:c9:0b:86:
d6:23:09:be:6a:d2:69:cd:f2:b8:fc:12:bd:91:c9:4e:c2:7c:
04:99:e8:92
-----BEGIN CERTIFICATE-----
MIIFmTCCBIGgAwIBAgISAY1aYZB4q4LwzVhVwJXW5JRxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTMwMTIzOTE5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiYjBmODQzN2RlNmJiMjUxODIxYTdhNWZiODExMTM3NmYxNzA5MDIzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5VYsCMZCIi61Ui+BUcBG/XIujAbd
ZKbC9+tcE+4b7MSP1JqrXAIHqxFaC8/RHwVPccAG1spW7IGH2oE4vN1JP/gUy7ea
jGXNAT3hJbvVCBC+kqBYG/6qrnsAzeQpQxZC5O+W9wMnJCnAM4zyz2+suc++HDQg
FRDkiBCwUisi1eKqa6TTC5mSGuiSjsw/M68/WbpjoQb771G37nSGKG7TAmgCj3xy
zao6XJYJJKYUSuC3j9G43kl/Mi1d7OIw+Fr3cA2ov8rkVTD9T96XTMWM7TwE1cje
39I0ih2kkz222Ao8RghjrI3DOsu2HKKk0KeRbts7GCcN8rEUTFF1rr55XQIDAQAB
o4ICpTCCAqEwHQYDVR0OBBYEFLsPhDfea7JRghp6X7gRE3bxcJAjMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggE/BggrBgEFBQcBCwSCATEwggEtMF8GCCsGAQUFBzAFhlNy
c3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzIzZDVm
NjgyLWI1MWItNDgxMi1iOGIxLTQzMGUzODY4Mzc0OC8wLzCBiwYIKwYBBQUHMAqG
f3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMjNk
NWY2ODItYjUxYi00ODEyLWI4YjEtNDMwZTM4NjgzNzQ4LzAvQkIwRjg0MzdERTZC
QjI1MTgyMUE3QTVGQjgxMTEzNzZGMTcwOTAyMy5tZnQwPAYIKwYBBQUHMA2GMGh0
dHBzOi8vcnJkcC5wYWFzLnJwa2kucmlwZS5uZXQvbm90aWZpY2F0aW9uLnhtbDBZ
BgNVHR8EUjBQME6gTKBKhkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9y
eS9ERUZBVUxUL0twU28zVlZLNXdFSElKbkhDMlFIVlYzZDVtay5jcmwwGAYDVR0g
AQH/BA4wDDAKBggrBgEFBQcOAjAkBggrBgEFBQcBCAEB/wQVMBOgETAPAgMDSkEC
AwNKsQIDA00EMA0GCSqGSIb3DQEBCwUAA4IBAQB/32qDkre2GKxBTfqP18bYwmow
BkoEjb0GR0z+2bWWLrgzMflsVeLAfAbrlzWf48DOInTQVxZkSxgYejzPIO3/QNQ2
Tw9GgThjGVE6G5LiYXVpbRUiUhNsnJbg9Jw8bKkEi5tMbXo9pmbDeZc+AmlRnExZ
eQfoYHWyBxs21l+AifXtkGcBRhx7PDzwXzXW7w9cKkb5pjXNVYq8HYfeiYEzTgY0
TiFllzgME4F26kDGaSk6V1YYw/evJG0CLyKniZAGEdLZOvXJwrxuRbZfKnolP9WO
L1Avs93t5kM6EeQsGgwlOnwhoP3JC4bWIwm+atJpzfK4/BK9kclOwnwEmeiS
-----END CERTIFICATE-----
Generated at Mon Nov 25 20:55:03 2024 by rpki-client on console-fra.rpki-client.org