Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/xlg_WMcRCtTMYJ9P-3yrL4DINYE.cer
File: xlg_WMcRCtTMYJ9P-3yrL4DINYE.cer (raw, json)
Hash identifier: aCPC+1B6pOkxObdYdp3DE8WPrSaGHN0lAp+IYx9W5qI=
Subject key identifier: C6:58:3F:58:C7:11:0A:D4:CC:60:9F:4F:FB:7C:AB:2F:80:C8:35:81
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC2DAD1A24583EE8874B41C532DA3A316
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/61/8d0cae-ec13-45fb-9afc-3d593ebe5220/1/xlg_WMcRCtTMYJ9P-3yrL4DINYE.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/61/8d0cae-ec13-45fb-9afc-3d593ebe5220/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 02:29:29 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 15659
IP: 80.202.0.0/16
IP: 84.48.0.0/17
IP: 84.49.0.0/16
IP: 89.10.0.0 -- 89.11.127.255
IP: 195.5.183.0/24
IP: 213.145.160.0/19
IP: 213.187.160.0/19
IP: 217.13.0.0/19
IP: 2a04:980::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:da:d1:a2:45:83:ee:88:74:b4:1c:53:2d:a3:a3:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 02:29:29 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c6583f58c7110ad4cc609f4ffb7cab2f80c83581
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:2c:d9:56:65:e2:0a:b8:6e:a9:c1:87:c9:ee:
2b:86:d5:97:90:9d:3c:a1:8f:4e:e4:9d:d2:26:96:
51:41:60:10:84:e3:a5:8c:d0:88:e4:5f:7f:37:00:
93:21:e8:7f:0e:07:76:ca:d7:bf:e4:b7:2c:b7:f5:
a4:96:f0:49:60:cc:0c:be:ad:a6:76:ec:da:4a:dd:
72:9e:d4:5b:a9:25:8f:a1:de:06:b8:7f:b6:13:3f:
b2:e8:07:c0:28:51:af:a4:b5:46:2e:f1:ab:aa:20:
e4:5d:78:ba:2f:5a:01:83:02:92:2a:c1:c9:fb:d4:
65:52:79:ee:52:2d:f3:7b:a7:8f:dc:b3:ec:f7:94:
90:04:ad:45:84:26:d3:a5:8e:01:6d:25:1c:27:91:
2f:0d:e2:c0:f5:68:fc:ef:35:f7:7f:fa:08:02:a1:
2f:b7:bf:fe:4d:ea:af:1c:bc:d3:ff:3d:e6:aa:c6:
a0:14:95:f5:13:e9:e2:b9:8b:d7:06:df:f9:b3:0f:
5e:b0:ed:ba:50:f8:3c:d2:20:d3:0a:78:17:0f:b0:
4c:8d:4a:66:7b:23:ea:ff:dd:5f:3f:e6:09:cf:7a:
60:69:d1:26:78:dc:19:9b:0a:d5:61:be:5a:9b:2b:
e7:6b:22:57:06:7a:58:40:38:9d:3c:01:03:fd:13:
75:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:58:3F:58:C7:11:0A:D4:CC:60:9F:4F:FB:7C:AB:2F:80:C8:35:81
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/8d0cae-ec13-45fb-9afc-3d593ebe5220/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/8d0cae-ec13-45fb-9afc-3d593ebe5220/1/xlg_WMcRCtTMYJ9P-3yrL4DINYE.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.202.0.0/16
84.48.0.0/17
84.49.0.0/16
89.10.0.0-89.11.127.255
195.5.183.0/24
213.145.160.0/19
213.187.160.0/19
217.13.0.0/19
IPv6:
2a04:980::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
15659
Signature Algorithm: sha256WithRSAEncryption
64:63:35:55:c4:b8:0a:e8:b1:cc:e5:a1:9a:d7:fc:c6:09:7d:
cc:ef:47:59:78:56:15:b6:33:5e:cd:24:53:1d:f7:6c:fe:bb:
aa:40:91:17:a1:b3:67:27:5b:64:b5:b5:76:72:54:b7:6e:75:
92:54:c0:a1:7e:9f:e2:98:36:2e:35:80:10:49:cc:41:0b:5b:
ed:eb:54:d4:03:af:a4:58:ec:1e:e2:2f:b7:f3:5f:2e:cd:f8:
a6:45:84:2c:32:7f:37:a6:e1:39:7f:29:16:ed:27:41:8d:0c:
47:05:a1:7f:23:3b:08:9a:65:0a:5b:df:d5:e6:83:1a:0f:40:
9d:0c:96:3d:33:27:92:e5:b4:7b:cb:98:2f:8f:28:78:73:da:
f0:fa:cc:a3:72:30:22:2e:98:56:50:5e:45:7c:a6:67:5b:f7:
0e:79:19:72:0e:88:d5:48:88:7c:5e:5c:16:3c:df:d7:bf:d6:
7c:35:56:74:bc:9a:c6:a7:df:3c:34:d9:d5:2a:b0:eb:a1:ce:
88:b3:d8:f3:44:16:5f:8c:23:61:4e:55:2e:d6:93:10:61:f7:
48:af:bb:91:e4:73:f6:6a:e4:86:c1:a8:30:20:e1:a0:9e:eb:
33:66:d8:85:4e:b9:9c:c7:32:60:cb:77:b0:ed:fe:03:f5:3a:
e8:18:a9:a3
-----BEGIN CERTIFICATE-----
MIIF0TCCBLmgAwIBAgISAYzC2tGiRYPuiHS0HFMto6MWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAxMDIyOTI5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjNjU4M2Y1OGM3MTEwYWQ0Y2M2MDlmNGZmYjdjYWIyZjgwYzgzNTgxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2CzZVmXiCrhuqcGHye4rhtWXkJ08
oY9O5J3SJpZRQWAQhOOljNCI5F9/NwCTIeh/Dgd2yte/5Lcst/WklvBJYMwMvq2m
duzaSt1yntRbqSWPod4GuH+2Ez+y6AfAKFGvpLVGLvGrqiDkXXi6L1oBgwKSKsHJ
+9RlUnnuUi3ze6eP3LPs95SQBK1FhCbTpY4BbSUcJ5EvDeLA9Wj87zX3f/oIAqEv
t7/+TeqvHLzT/z3mqsagFJX1E+niuYvXBt/5sw9esO26UPg80iDTCngXD7BMjUpm
eyPq/91fP+YJz3pgadEmeNwZmwrVYb5amyvnayJXBnpYQDidPAED/RN1IwIDAQAB
o4IC3TCCAtkwHQYDVR0OBBYEFMZYP1jHEQrUzGCfT/t8qy+AyDWBMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzYxLzhkMGNh
ZS1lYzEzLTQ1ZmItOWFmYy0zZDU5M2ViZTUyMjAvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjEvOGQwY2Fl
LWVjMTMtNDVmYi05YWZjLTNkNTkzZWJlNTIyMC8xL3hsZ19XTWNSQ3RUTVlKOVAt
M3lyTDRESU5ZRS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF0GCCsGAQUF
BwEHAQH/BE4wTDA7BAIAATA1AwMAUMoDBAdUMAADAwBUMTALAwMBWQoDBAdZCwAD
BADDBbcDBAXVkaADBAXVu6ADBAXZDQAwDQQCAAIwBwMFAyoECYAwGQYIKwYBBQUH
AQgBAf8ECjAIoAYwBAICPSswDQYJKoZIhvcNAQELBQADggEBAGRjNVXEuArosczl
oZrX/MYJfczvR1l4VhW2M17NJFMd92z+u6pAkRehs2cnW2S1tXZyVLdudZJUwKF+
n+KYNi41gBBJzEELW+3rVNQDr6RY7B7iL7fzXy7N+KZFhCwyfzem4Tl/KRbtJ0GN
DEcFoX8jOwiaZQpb39XmgxoPQJ0Mlj0zJ5LltHvLmC+PKHhz2vD6zKNyMCIumFZQ
XkV8pmdb9w55GXIOiNVIiHxeXBY839e/1nw1VnS8msan3zw02dUqsOuhzoiz2PNE
Fl+MI2FOVS7WkxBh90ivu5Hkc/Zq5IbBqDAg4aCe6zNm2IVOuZzHMmDLd7Dt/gP1
OugYqaM=
-----END CERTIFICATE-----
Generated at Sat Nov 23 10:23:41 2024 by rpki-client on console-fra.rpki-client.org