Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/xZR-zIaDrQ282VqPMy8MqhNXR5A.cer
File: xZR-zIaDrQ282VqPMy8MqhNXR5A.cer (raw, json)
Hash identifier: 9aqpugSqvZDkR9wbPVkYwsnzlFrWlrY/MaZbWubtmbc=
Subject key identifier: C5:94:7E:CC:86:83:AD:0D:BC:D9:5A:8F:33:2F:0C:AA:13:57:47:90
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0191DC25573C354279BE99E3F94FFCEC9C5E
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.netiface.net/repo/Civilized/0/C5947ECC8683AD0DBCD95A8F332F0CAA13574790.mft
caRepository: rsync://rpki.netiface.net/repo/Civilized/0/
Notify URL: https://rpki.netiface.net/rrdp/notification.xml
Certificate not before: Tue 10 Sep 2024 13:35:20 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 216360
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:dc:25:57:3c:35:42:79:be:99:e3:f9:4f:fc:ec:9c:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Sep 10 13:35:20 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c5947ecc8683ad0dbcd95a8f332f0caa13574790
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:b1:fd:88:ef:16:b4:e0:fc:7a:e0:44:e1:f9:
8e:6e:e0:b1:9a:ca:6b:3e:e0:75:04:b8:e8:3b:cb:
30:70:35:2c:05:a6:90:81:da:a3:57:c4:bd:b5:66:
e1:bf:56:f7:fc:a7:90:c7:ce:e0:e9:6b:9f:67:87:
0b:62:6b:b2:1b:fd:d2:34:a6:a3:f9:0f:4a:32:23:
9f:c8:ab:63:9a:10:76:9d:c4:51:f6:16:05:ad:cd:
3e:99:a9:9c:9a:d8:c4:ea:bb:bf:7b:b3:25:84:9f:
fe:e8:58:03:c5:8a:c5:bf:49:db:01:3c:2e:67:98:
cc:6f:df:b2:ac:0b:02:a3:42:88:77:62:9d:56:6d:
a7:1b:32:e0:e1:84:ec:5d:a5:56:0e:ea:c5:2d:70:
66:e0:73:a0:03:8d:79:13:3c:e5:98:dc:ec:ac:66:
16:30:a3:73:a9:be:50:7b:90:ec:4e:f7:4a:62:a1:
84:c8:19:d0:bc:d8:1b:35:0c:ad:03:43:43:89:a3:
7b:dc:72:4a:68:ac:05:42:4f:38:de:44:91:64:b1:
26:7f:f9:af:d3:aa:8a:04:2d:2f:f6:cf:dc:b3:06:
ea:98:47:82:60:50:c3:fe:0f:02:1f:54:48:8a:00:
83:a5:ac:72:04:c3:62:44:61:e3:ea:42:05:fc:96:
d1:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:94:7E:CC:86:83:AD:0D:BC:D9:5A:8F:33:2F:0C:AA:13:57:47:90
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.netiface.net/repo/Civilized/0/
RPKI Manifest - URI:rsync://rpki.netiface.net/repo/Civilized/0/C5947ECC8683AD0DBCD95A8F332F0CAA13574790.mft
RPKI Notify - URI:https://rpki.netiface.net/rrdp/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
216360
Signature Algorithm: sha256WithRSAEncryption
0a:a4:2c:dd:61:64:33:cd:4e:0a:68:30:35:cf:87:fc:34:91:
75:95:bd:45:e5:d2:57:ee:11:3d:a0:fc:6e:ad:e0:23:46:31:
39:ec:83:37:d3:ec:6d:c4:0e:1b:48:1a:bd:bb:17:57:22:db:
ec:a6:17:14:12:01:84:b1:f1:4b:4b:b7:c5:4e:28:1d:d3:25:
3f:3a:2a:f9:e0:f0:8a:6f:52:43:14:47:c3:bf:22:94:fc:e3:
17:78:ec:9f:5b:7b:14:d9:81:07:a8:71:39:d3:26:5f:ff:52:
d9:7f:9f:91:51:79:f4:7a:a5:59:d2:e4:b7:1c:1e:fd:47:c2:
4b:86:51:9e:d6:64:69:8d:20:d8:6a:17:3c:00:d7:32:ca:c3:
e6:cf:01:92:b4:89:21:1e:79:a5:82:fe:e4:f4:60:c0:18:59:
9a:41:b0:05:b8:5c:ea:99:a6:71:1b:2d:7c:8e:37:7e:a9:1b:
43:4e:9f:dd:07:ad:cc:f9:13:5c:93:c7:0c:be:14:d1:ab:bc:
70:b8:24:44:ea:8b:25:28:ac:b2:c3:dc:b5:4d:c8:b6:44:c4:
07:94:b4:db:3a:2b:4d:ad:30:60:57:b3:4a:34:85:5a:9b:41:
a5:c0:86:d6:01:13:ec:a4:b5:74:e9:37:49:fd:d2:20:a1:4a:
a5:3d:5e:56
-----BEGIN CERTIFICATE-----
MIIFOjCCBCKgAwIBAgISAZHcJVc8NUJ5vpnj+U/87JxeMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwOTEwMTMzNTIwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjNTk0N2VjYzg2ODNhZDBkYmNkOTVhOGYzMzJmMGNhYTEzNTc0NzkwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw7H9iO8WtOD8euBE4fmObuCxmspr
PuB1BLjoO8swcDUsBaaQgdqjV8S9tWbhv1b3/KeQx87g6WufZ4cLYmuyG/3SNKaj
+Q9KMiOfyKtjmhB2ncRR9hYFrc0+mamcmtjE6ru/e7MlhJ/+6FgDxYrFv0nbATwu
Z5jMb9+yrAsCo0KId2KdVm2nGzLg4YTsXaVWDurFLXBm4HOgA415EzzlmNzsrGYW
MKNzqb5Qe5DsTvdKYqGEyBnQvNgbNQytA0NDiaN73HJKaKwFQk843kSRZLEmf/mv
06qKBC0v9s/cswbqmEeCYFDD/g8CH1RIigCDpaxyBMNiRGHj6kIF/JbRCQIDAQAB
o4ICRjCCAkIwHQYDVR0OBBYEFMWUfsyGg60NvNlajzMvDKoTV0eQMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwgesGCCsGAQUFBwELBIHeMIHbMDcGCCsGAQUFBzAFhityc3lu
YzovL3Jwa2kubmV0aWZhY2UubmV0L3JlcG8vQ2l2aWxpemVkLzAvMGMGCCsGAQUF
BzAKhldyc3luYzovL3Jwa2kubmV0aWZhY2UubmV0L3JlcG8vQ2l2aWxpemVkLzAv
QzU5NDdFQ0M4NjgzQUQwREJDRDk1QThGMzMyRjBDQUExMzU3NDc5MC5tZnQwOwYI
KwYBBQUHMA2GL2h0dHBzOi8vcnBraS5uZXRpZmFjZS5uZXQvcnJkcC9ub3RpZmlj
YXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBraS5yaXBlLm5l
dC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMyUUhWVjNkNW1r
LmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMBoGCCsGAQUFBwEIAQH/BAsw
CaAHMAUCAwNNKDANBgkqhkiG9w0BAQsFAAOCAQEACqQs3WFkM81OCmgwNc+H/DSR
dZW9ReXSV+4RPaD8bq3gI0YxOeyDN9PsbcQOG0gavbsXVyLb7KYXFBIBhLHxS0u3
xU4oHdMlPzoq+eDwim9SQxRHw78ilPzjF3jsn1t7FNmBB6hxOdMmX/9S2X+fkVF5
9HqlWdLktxwe/UfCS4ZRntZkaY0g2GoXPADXMsrD5s8BkrSJIR55pYL+5PRgwBhZ
mkGwBbhc6pmmcRstfI43fqkbQ06f3QetzPkTXJPHDL4U0au8cLgkROqLJSisssPc
tU3ItkTEB5S02zorTa0wYFezSjSFWptBpcCG1gET7KS1dOk3Sf3SIKFKpT1eVg==
-----END CERTIFICATE-----
Generated at Sat Nov 23 03:48:57 2024 by rpki-client on console-fra.rpki-client.org