Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/vPxPEoxMVoUbl1VNJMZq1e4j_Jw.cer
File: vPxPEoxMVoUbl1VNJMZq1e4j_Jw.cer (raw, json)
Hash identifier: oCfoHKrf6rAF8ylGIqUf/XenHNtU/K9sWe84jAktr0M=
Subject key identifier: BC:FC:4F:12:8C:4C:56:85:1B:97:55:4D:24:C6:6A:D5:EE:23:FC:9C
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CCA298F31A68C85713E573707566191C8
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/43/6f6f78-1de7-44e9-bf39-12984ca7a7a2/1/vPxPEoxMVoUbl1VNJMZq1e4j_Jw.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/43/6f6f78-1de7-44e9-bf39-12984ca7a7a2/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 12:32:50 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 213326
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:29:8f:31:a6:8c:85:71:3e:57:37:07:56:61:91:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 12:32:50 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bcfc4f128c4c56851b97554d24c66ad5ee23fc9c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:1f:d1:0c:f5:de:50:6c:fe:b4:12:f0:6d:24:
49:55:04:21:fa:5d:a3:73:db:c3:bc:3a:11:6c:53:
e9:c7:ec:65:7e:51:1f:f5:47:19:dc:70:45:a1:1b:
c1:32:f6:0c:28:f1:fe:81:67:c8:82:ab:49:19:14:
96:d3:cd:16:1e:8b:ff:0b:c3:93:b3:63:ca:eb:35:
8c:06:8d:e3:49:0c:0b:5b:f1:f7:31:d1:21:5e:52:
99:52:71:8e:ec:10:90:42:36:3c:c2:1d:6b:bd:54:
ac:87:d3:a8:06:d1:e7:82:b0:7a:29:ec:78:9d:10:
e0:a3:4c:a8:f2:38:f0:05:81:1c:6b:ff:12:5c:ee:
3c:7d:7f:49:6e:3c:1d:2f:d2:e1:69:a1:b2:1b:59:
bb:db:ca:73:01:67:73:38:82:a9:50:11:65:40:35:
9d:96:0d:5a:a2:35:81:1e:8f:f5:2b:28:89:1c:8d:
ce:57:5d:df:35:a0:f3:4c:cb:53:ee:6b:ff:2f:f4:
d0:cf:85:75:12:18:91:69:28:5a:d3:db:86:5d:2c:
0c:71:98:4e:67:ad:84:9c:1f:01:d3:7d:57:63:f8:
0a:3d:11:f6:85:86:61:d1:06:b5:8e:ed:4e:f1:94:
51:b3:d8:94:07:ee:48:8a:ff:19:24:35:b0:76:2c:
6d:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:FC:4F:12:8C:4C:56:85:1B:97:55:4D:24:C6:6A:D5:EE:23:FC:9C
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/6f6f78-1de7-44e9-bf39-12984ca7a7a2/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/6f6f78-1de7-44e9-bf39-12984ca7a7a2/1/vPxPEoxMVoUbl1VNJMZq1e4j_Jw.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
213326
Signature Algorithm: sha256WithRSAEncryption
7d:75:d4:37:fd:03:b5:f6:de:8d:16:8d:ac:a0:de:a1:f8:8f:
72:04:45:82:26:65:80:11:89:f7:4d:2b:a5:20:6d:12:fb:2c:
c3:55:69:57:bb:2a:72:62:2f:00:6f:32:2b:e6:30:38:16:05:
1e:3e:fd:3e:f5:90:e3:40:6e:84:de:95:2a:81:12:81:c0:c0:
9d:08:5c:88:cf:1f:b4:ea:38:b5:ad:bc:4c:00:55:6c:bd:4d:
6c:85:f9:9e:82:3e:b6:80:a4:1a:eb:ab:0a:6d:d8:2b:56:dc:
cc:86:da:59:06:63:cd:f1:d3:43:14:49:34:30:de:ec:5f:ec:
5c:e6:75:b9:a3:19:a8:fa:a8:44:89:fa:53:1c:f6:0f:6b:23:
06:c2:b7:23:c5:82:81:66:6d:98:0d:f8:4e:7c:84:d9:0c:a2:
71:87:20:10:c9:53:1b:f3:9b:b3:06:cf:c1:64:cf:4a:80:b5:
11:a6:d8:46:a8:56:37:7f:9e:15:ba:7d:72:d4:b6:e3:61:74:
62:da:ac:49:d0:59:0d:d0:ae:f9:73:30:df:4c:d1:c4:87:5c:
8c:5b:fa:e7:62:f0:6e:39:fe:a6:03:e1:6c:18:bd:1a:b4:52:
d4:ee:af:c1:b7:bb:d3:6a:e9:89:b4:b6:ba:96:80:a6:f5:41:
a0:c6:7f:a1
-----BEGIN CERTIFICATE-----
MIIFczCCBFugAwIBAgISAYzKKY8xpoyFcT5XNwdWYZHIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAyMTIzMjUwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiY2ZjNGYxMjhjNGM1Njg1MWI5NzU1NGQyNGM2NmFkNWVlMjNmYzljMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArh/RDPXeUGz+tBLwbSRJVQQh+l2j
c9vDvDoRbFPpx+xlflEf9UcZ3HBFoRvBMvYMKPH+gWfIgqtJGRSW080WHov/C8OT
s2PK6zWMBo3jSQwLW/H3MdEhXlKZUnGO7BCQQjY8wh1rvVSsh9OoBtHngrB6Kex4
nRDgo0yo8jjwBYEca/8SXO48fX9JbjwdL9LhaaGyG1m728pzAWdzOIKpUBFlQDWd
lg1aojWBHo/1KyiJHI3OV13fNaDzTMtT7mv/L/TQz4V1EhiRaSha09uGXSwMcZhO
Z62EnB8B031XY/gKPRH2hYZh0Qa1ju1O8ZRRs9iUB+5Iiv8ZJDWwdixtWwIDAQAB
o4ICfzCCAnswHQYDVR0OBBYEFLz8TxKMTFaFG5dVTSTGatXuI/ycMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzQzLzZmNmY3
OC0xZGU3LTQ0ZTktYmYzOS0xMjk4NGNhN2E3YTIvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDMvNmY2Zjc4
LTFkZTctNDRlOS1iZjM5LTEyOTg0Y2E3YTdhMi8xL3ZQeFBFb3hNVm9VYmwxVk5K
TVpxMWU0al9Kdy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMBoGCCsGAQUF
BwEIAQH/BAswCaAHMAUCAwNBTjANBgkqhkiG9w0BAQsFAAOCAQEAfXXUN/0Dtfbe
jRaNrKDeofiPcgRFgiZlgBGJ900rpSBtEvssw1VpV7sqcmIvAG8yK+YwOBYFHj79
PvWQ40BuhN6VKoESgcDAnQhciM8ftOo4ta28TABVbL1NbIX5noI+toCkGuurCm3Y
K1bczIbaWQZjzfHTQxRJNDDe7F/sXOZ1uaMZqPqoRIn6Uxz2D2sjBsK3I8WCgWZt
mA34TnyE2QyicYcgEMlTG/ObswbPwWTPSoC1EabYRqhWN3+eFbp9ctS242F0Ytqs
SdBZDdCu+XMw30zRxIdcjFv652Lwbjn+pgPhbBi9GrRS1O6vwbe702rpibS2upaA
pvVBoMZ/oQ==
-----END CERTIFICATE-----
Generated at Sat Nov 23 11:04:52 2024 by rpki-client on console-ams.rpki-client.org