Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/x3ER7FVJEVyzR2VNj-WycJ0n998.cer
File: x3ER7FVJEVyzR2VNj-WycJ0n998.cer (raw, json)
Hash identifier: 3Kj2FvFxJizt4LU+U4xDTqdsKP7em/27yv33GsbaBp8=
Subject key identifier: C7:71:11:EC:55:49:11:5C:B3:47:65:4D:8F:E5:B2:70:9D:27:F7:DF
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC727243717D8DDFEB7E2718AD11173C8
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/a0/e2d1ad-cfe0-4494-aa75-e0c2b94792ca/1/x3ER7FVJEVyzR2VNj-WycJ0n998.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/a0/e2d1ad-cfe0-4494-aa75-e0c2b94792ca/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 22:31:20 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 41505
IP: 91.208.101.0/24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:27:24:37:17:d8:dd:fe:b7:e2:71:8a:d1:11:73:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 22:31:20 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c77111ec5549115cb347654d8fe5b2709d27f7df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:89:1f:03:7a:97:9a:4c:af:66:f6:83:33:27:
de:c2:b4:40:db:b3:25:bb:98:31:5f:e2:21:68:58:
6f:c8:0f:b7:d7:0d:54:e2:41:84:f0:f0:0d:a3:f9:
03:80:71:63:c5:33:20:e7:8a:5f:a7:b0:ba:ac:cf:
07:a7:57:fa:2d:76:3d:c3:b5:41:cc:48:91:5b:cc:
f2:1f:68:c4:41:12:d9:fa:26:2e:64:c0:82:42:d6:
74:b6:bf:7d:8c:58:22:83:46:fc:4a:bf:b1:17:1b:
84:ef:a5:32:ed:25:9e:7a:47:57:a8:c9:b7:14:f2:
56:6c:2b:e4:c7:de:20:5e:7b:29:0e:b4:29:da:79:
da:19:53:1f:13:18:c2:66:36:2d:60:88:2e:99:c5:
30:17:7f:d7:a4:18:01:62:e2:e7:fb:86:ba:d4:14:
92:86:3e:d5:1b:21:30:53:7b:24:7f:c2:29:4e:02:
ad:7f:c3:06:f5:53:b4:cb:64:1e:44:ae:7c:e4:b4:
79:92:97:5d:f0:44:39:f5:83:1e:ef:26:07:34:1b:
73:df:92:f6:46:5d:be:d5:42:d3:d7:f8:38:2c:f0:
30:19:51:1f:2d:99:ba:f2:90:12:75:fa:4a:aa:3d:
70:c0:36:61:45:7c:17:3b:f4:c4:50:4e:03:e2:b0:
ee:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:71:11:EC:55:49:11:5C:B3:47:65:4D:8F:E5:B2:70:9D:27:F7:DF
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/e2d1ad-cfe0-4494-aa75-e0c2b94792ca/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/e2d1ad-cfe0-4494-aa75-e0c2b94792ca/1/x3ER7FVJEVyzR2VNj-WycJ0n998.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.208.101.0/24
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
41505
Signature Algorithm: sha256WithRSAEncryption
29:f3:cc:56:ef:60:7a:e8:96:66:da:12:23:ba:98:75:bb:87:
3e:20:ac:51:76:d5:95:81:7d:5c:38:c0:c0:31:56:3e:b1:35:
f5:12:d5:f2:fa:6d:84:58:4f:7c:0d:7d:67:61:2a:86:98:c0:
3e:94:1f:26:58:3e:48:fa:7f:f1:8e:64:06:11:89:4f:e3:61:
8a:39:13:59:97:f8:b8:10:df:6a:6e:e6:18:e4:dc:dc:fb:43:
4a:fa:ba:8e:26:46:ef:8a:0c:9e:66:f5:c9:89:1e:cb:1b:5a:
07:3f:47:2b:83:44:88:f6:b8:01:6d:30:f0:aa:38:9b:1f:8c:
b6:07:22:5c:da:7f:82:51:b1:1e:59:aa:ae:cf:88:29:e6:9e:
8e:68:e5:84:39:5b:ef:eb:33:98:f2:0f:76:de:97:43:17:94:
c3:99:c4:aa:94:2d:38:fb:ba:57:15:1b:b3:b2:ab:61:d0:ef:
2a:3c:7c:ec:29:a8:7b:c6:cd:95:9b:85:84:d2:8b:7d:04:5f:
4a:b1:cd:71:9a:ae:f9:51:91:eb:d3:d1:bb:68:65:41:22:c2:
7c:81:18:f3:57:ea:58:f8:bf:96:0b:f9:c7:4a:96:50:c3:6b:
e9:71:5f:32:0c:e4:26:99:08:87:5a:93:e0:23:f3:83:32:87:
eb:ad:ff:c5
-----BEGIN CERTIFICATE-----
MIIFlDCCBHygAwIBAgISAYzHJyQ3F9jd/rficYrREXPIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAxMjIzMTIwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjNzcxMTFlYzU1NDkxMTVjYjM0NzY1NGQ4ZmU1YjI3MDlkMjdmN2RmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoYkfA3qXmkyvZvaDMyfewrRA27Ml
u5gxX+IhaFhvyA+31w1U4kGE8PANo/kDgHFjxTMg54pfp7C6rM8Hp1f6LXY9w7VB
zEiRW8zyH2jEQRLZ+iYuZMCCQtZ0tr99jFgig0b8Sr+xFxuE76Uy7SWeekdXqMm3
FPJWbCvkx94gXnspDrQp2nnaGVMfExjCZjYtYIgumcUwF3/XpBgBYuLn+4a61BSS
hj7VGyEwU3skf8IpTgKtf8MG9VO0y2QeRK585LR5kpdd8EQ59YMe7yYHNBtz35L2
Rl2+1ULT1/g4LPAwGVEfLZm68pASdfpKqj1wwDZhRXwXO/TEUE4D4rDuuwIDAQAB
o4ICoDCCApwwHQYDVR0OBBYEFMdxEexVSRFcs0dlTY/lsnCdJ/ffMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2EwL2UyZDFh
ZC1jZmUwLTQ0OTQtYWE3NS1lMGMyYjk0NzkyY2EvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTAvZTJkMWFk
LWNmZTAtNDQ5NC1hYTc1LWUwYzJiOTQ3OTJjYS8xL3gzRVI3RlZKRVZ5elIyVk5q
LVd5Y0owbjk5OC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF
BwEHAQH/BBAwDjAMBAIAATAGAwQAW9BlMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUC
AwCiITANBgkqhkiG9w0BAQsFAAOCAQEAKfPMVu9geuiWZtoSI7qYdbuHPiCsUXbV
lYF9XDjAwDFWPrE19RLV8vpthFhPfA19Z2EqhpjAPpQfJlg+SPp/8Y5kBhGJT+Nh
ijkTWZf4uBDfam7mGOTc3PtDSvq6jiZG74oMnmb1yYkeyxtaBz9HK4NEiPa4AW0w
8Ko4mx+MtgciXNp/glGxHlmqrs+IKeaejmjlhDlb7+szmPIPdt6XQxeUw5nEqpQt
OPu6VxUbs7KrYdDvKjx87Cmoe8bNlZuFhNKLfQRfSrHNcZqu+VGR69PRu2hlQSLC
fIEY81fqWPi/lgv5x0qWUMNr6XFfMgzkJpkIh1qT4CPzgzKH663/xQ==
-----END CERTIFICATE-----
Generated at Fri May 3 02:19:28 2024 by rpki-client on console-ams.rpki-client.org