Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/w6SfZaPWgMQo_ZTWfmWicJ8Cks8.cer
File: w6SfZaPWgMQo_ZTWfmWicJ8Cks8.cer (raw, json)
Hash identifier: OtO+rZi2ytjnxzzwcSnWdEi7XJtd8/7WpZlrbyZQ0lk=
Subject key identifier: C3:A4:9F:65:A3:D6:80:C4:28:FD:94:D6:7E:65:A2:70:9F:02:92:CF
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC8DF7600A88C439E599EF13A0B482BE1
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/09/04e8dd-de3c-47fa-a024-f33797e39bb2/1/w6SfZaPWgMQo_ZTWfmWicJ8Cks8.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/09/04e8dd-de3c-47fa-a024-f33797e39bb2/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 06:32:17 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 31043
IP: 185.117.112.0/22
IP: 195.47.232.0/24
IP: 2a0c:3180::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:df:76:00:a8:8c:43:9e:59:9e:f1:3a:0b:48:2b:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 06:32:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c3a49f65a3d680c428fd94d67e65a2709f0292cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:33:61:4e:13:3f:11:4e:e8:77:ae:a5:bc:f8:
0f:77:62:84:c7:53:46:e2:65:97:d3:c9:34:3b:dd:
89:93:a9:fc:66:7b:50:f0:c1:f8:29:26:dd:d0:02:
a1:8e:7e:0f:6e:fe:08:4a:f8:4e:d5:c1:1e:28:94:
be:53:e0:2a:b1:a1:ee:c8:4d:d8:92:bb:3a:16:dc:
5b:af:09:0c:82:97:15:96:d0:d7:57:9c:32:a8:64:
cd:43:bf:9e:ad:3e:76:2d:b0:84:5f:dc:19:3d:44:
76:58:c0:57:d3:a4:51:59:14:58:67:dc:ee:5c:d4:
92:d3:27:2d:59:7a:8f:3f:72:2f:9e:a5:03:5f:81:
b4:fd:a3:7b:6b:ad:6f:21:a1:57:62:72:b3:fb:2c:
78:2e:ea:49:fb:ac:9e:ca:cc:76:dd:fd:ec:fc:2f:
44:11:d0:d0:e3:03:20:54:2c:12:a9:16:6e:4d:a2:
dc:2f:d8:53:b9:e8:e7:87:05:b0:e9:d7:7a:de:52:
d2:3b:80:31:5f:13:79:78:56:4a:07:63:4e:50:8e:
b6:73:11:2a:79:ab:43:57:8a:2a:c0:f5:90:09:8d:
19:97:b9:f3:0f:10:80:11:c6:2e:49:27:6e:8f:e1:
21:3e:8a:c2:4b:8f:a2:11:34:6e:7a:4b:28:ec:91:
b6:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:A4:9F:65:A3:D6:80:C4:28:FD:94:D6:7E:65:A2:70:9F:02:92:CF
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/04e8dd-de3c-47fa-a024-f33797e39bb2/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/04e8dd-de3c-47fa-a024-f33797e39bb2/1/w6SfZaPWgMQo_ZTWfmWicJ8Cks8.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.117.112.0/22
195.47.232.0/24
IPv6:
2a0c:3180::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
31043
Signature Algorithm: sha256WithRSAEncryption
56:39:b1:a9:6d:71:d8:a6:9e:c7:a0:85:29:51:07:20:d9:57:
0c:c6:1c:99:68:c8:80:7f:c2:c5:2f:69:ea:29:a3:0e:d4:b7:
c2:55:03:40:23:d1:75:77:ea:ea:63:42:24:9c:39:c4:bd:8f:
68:1d:68:b8:51:37:d3:ff:51:ad:61:7d:43:4a:5a:f5:1d:88:
01:f9:25:c8:99:18:23:fa:77:d6:cb:99:0a:af:0e:f7:88:95:
3e:2b:0b:65:b2:d8:a4:17:89:a1:97:8e:94:28:a8:bb:44:31:
52:de:7f:d7:97:e1:0f:dd:4f:61:81:d3:d9:59:7f:e1:70:73:
12:4c:6e:38:bd:91:a1:d4:9a:13:27:dd:a9:f8:ce:b9:58:6f:
ff:16:cb:66:9a:44:61:39:e0:f2:27:1a:48:c0:9c:2c:87:93:
e3:e2:78:d1:86:b6:79:58:f9:9f:4d:77:9f:6b:d3:03:c7:9d:
da:cd:5f:da:da:c2:6a:81:3d:96:ba:05:c2:ef:f8:b6:36:ee:
a4:38:75:0b:15:1e:e0:0c:35:50:8d:3c:3c:13:46:ac:18:51:
a6:fa:b1:cb:c8:53:1d:8e:59:4b:65:1f:f2:2c:1c:0d:69:4a:
d0:b9:87:05:c6:ff:b9:4f:5a:dc:ec:68:9b:16:b1:57:15:8f:
60:e1:7c:fc
-----BEGIN CERTIFICATE-----
MIIFqDCCBJCgAwIBAgISAYzI33YAqIxDnlme8ToLSCvhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAyMDYzMjE3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjM2E0OWY2NWEzZDY4MGM0MjhmZDk0ZDY3ZTY1YTI3MDlmMDI5MmNmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhjNhThM/EU7od66lvPgPd2KEx1NG
4mWX08k0O92Jk6n8ZntQ8MH4KSbd0AKhjn4Pbv4ISvhO1cEeKJS+U+AqsaHuyE3Y
krs6FtxbrwkMgpcVltDXV5wyqGTNQ7+erT52LbCEX9wZPUR2WMBX06RRWRRYZ9zu
XNSS0yctWXqPP3IvnqUDX4G0/aN7a61vIaFXYnKz+yx4LupJ+6yeysx23f3s/C9E
EdDQ4wMgVCwSqRZuTaLcL9hTuejnhwWw6dd63lLSO4AxXxN5eFZKB2NOUI62cxEq
eatDV4oqwPWQCY0Zl7nzDxCAEcYuSSduj+EhPorCS4+iETRuekso7JG29wIDAQAB
o4ICtDCCArAwHQYDVR0OBBYEFMOkn2Wj1oDEKP2U1n5lonCfApLPMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzA5LzA0ZThk
ZC1kZTNjLTQ3ZmEtYTAyNC1mMzM3OTdlMzliYjIvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDkvMDRlOGRk
LWRlM2MtNDdmYS1hMDI0LWYzMzc5N2UzOWJiMi8xL3c2U2ZaYVBXZ01Rb19aVFdm
bVdpY0o4Q2tzOC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDQGCCsGAQUF
BwEHAQH/BCUwIzASBAIAATAMAwQCuXVwAwQAwy/oMA0EAgACMAcDBQMqDDGAMBkG
CCsGAQUFBwEIAQH/BAowCKAGMAQCAnlDMA0GCSqGSIb3DQEBCwUAA4IBAQBWObGp
bXHYpp7HoIUpUQcg2VcMxhyZaMiAf8LFL2nqKaMO1LfCVQNAI9F1d+rqY0IknDnE
vY9oHWi4UTfT/1GtYX1DSlr1HYgB+SXImRgj+nfWy5kKrw73iJU+KwtlstikF4mh
l46UKKi7RDFS3n/Xl+EP3U9hgdPZWX/hcHMSTG44vZGh1JoTJ92p+M65WG//Fstm
mkRhOeDyJxpIwJwsh5Pj4njRhrZ5WPmfTXefa9MDx53azV/a2sJqgT2WugXC7/i2
Nu6kOHULFR7gDDVQjTw8E0asGFGm+rHLyFMdjllLZR/yLBwNaUrQuYcFxv+5T1rc
7GibFrFXFY9g4Xz8
-----END CERTIFICATE-----
Generated at Sat Nov 23 11:04:57 2024 by rpki-client on console-ams.rpki-client.org