Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/yBhKRQWwV2BY_TMwWb_xU65urVs.cer
File: yBhKRQWwV2BY_TMwWb_xU65urVs.cer (raw, json)
Hash identifier: 1Dshr5PTS8Jnj8T5Wptocn0Zd5a3OKFjhQ1oDyqFbL0=
Subject key identifier: C8:18:4A:45:05:B0:57:60:58:FD:33:30:59:BF:F1:53:AE:6E:AD:5B
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC8DF42D16265F809597A1B864CA30E11
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/2b/eadad3-ced9-41fa-8e5f-5fbf33acd83e/1/yBhKRQWwV2BY_TMwWb_xU65urVs.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/2b/eadad3-ced9-41fa-8e5f-5fbf33acd83e/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 06:32:04 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 62313
IP: 185.39.244.0/22
IP: 213.32.224.0/21
IP: 2a01:4760::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:df:42:d1:62:65:f8:09:59:7a:1b:86:4c:a3:0e:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 06:32:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c8184a4505b0576058fd333059bff153ae6ead5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:cf:ce:7b:07:e0:29:ab:ae:0c:da:63:9e:19:
44:58:09:61:83:d1:8f:a8:e4:5a:61:d5:9d:6f:b1:
e8:0e:6a:b5:7f:17:cc:d1:e2:d9:a0:06:a5:d6:b0:
1f:ac:d8:87:26:3d:d6:fe:80:43:1b:42:fd:5b:ad:
08:87:2e:f0:ae:73:73:3b:d3:5c:38:a0:57:27:fe:
28:23:77:4b:ad:0f:13:6a:5d:3d:07:21:72:c9:a7:
b8:20:92:89:c2:ef:e2:74:9a:f1:8f:c3:32:8d:14:
fe:b1:9b:79:1b:ee:63:6b:b4:6b:fb:3e:19:a3:31:
23:bf:a1:b0:c0:e6:a9:d6:53:23:af:05:96:fe:58:
e1:d0:de:ae:8d:4e:a7:b9:8b:a2:14:81:72:2c:de:
3a:4c:1f:18:9b:7b:be:01:ee:21:68:47:71:e4:f0:
e7:65:9e:fa:28:60:5d:91:f8:2a:d9:bb:5d:80:06:
0d:d4:a1:c5:c2:b9:92:2c:26:88:0e:4b:bf:40:81:
00:17:42:c7:a0:43:f6:1c:b2:cc:c8:9e:44:b8:08:
9f:d9:9a:41:49:d9:1d:3c:3e:d0:71:b5:62:10:5f:
6e:c9:87:2c:0d:c6:20:50:72:3b:55:8c:89:c6:69:
99:80:dd:c7:98:97:52:5a:c7:82:ba:b6:90:2f:8e:
f6:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:18:4A:45:05:B0:57:60:58:FD:33:30:59:BF:F1:53:AE:6E:AD:5B
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/eadad3-ced9-41fa-8e5f-5fbf33acd83e/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/eadad3-ced9-41fa-8e5f-5fbf33acd83e/1/yBhKRQWwV2BY_TMwWb_xU65urVs.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.39.244.0/22
213.32.224.0/21
IPv6:
2a01:4760::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
62313
Signature Algorithm: sha256WithRSAEncryption
a0:d1:ca:02:82:6f:34:67:10:a7:18:45:da:8a:61:ef:1a:2a:
c8:3d:49:37:aa:5b:55:f2:d0:cf:dd:f3:09:95:4f:2e:45:4f:
a8:5b:56:6c:2b:8b:53:db:a1:26:44:92:df:d2:92:9d:a3:cb:
ad:e4:4c:d9:73:1c:32:d5:ab:85:e5:67:30:11:cf:0a:75:3d:
30:c7:19:af:fa:67:69:80:e6:1f:8f:f0:4b:fd:5b:31:a3:02:
1a:8d:e1:c1:51:60:1b:4a:c4:d9:d7:26:bd:bc:9c:c4:6e:82:
92:7b:a4:5e:90:13:98:64:ce:be:b0:da:62:cc:e8:a4:f0:ea:
bc:46:17:a9:97:9c:e8:e7:8c:de:af:51:42:98:ea:ee:fa:7a:
48:e7:26:2d:b8:b5:a1:d3:90:27:e0:ba:bd:ab:81:94:f0:b6:
ab:75:e4:c9:a7:c3:d0:bd:fe:b7:69:59:0a:fe:5e:c5:c5:5b:
92:f0:40:0b:08:80:d7:49:8e:fc:4b:00:71:65:47:ad:71:14:
3a:97:2c:a6:3a:fb:a4:6d:da:38:a4:84:bc:0a:de:b2:12:72:
c0:bd:57:44:f9:24:50:b0:2d:22:46:74:e7:33:3b:29:cf:39:
e3:f2:60:c9:b4:63:41:5d:6d:f3:94:1f:43:ef:47:cb:4b:91:
9a:b4:ce:3d
-----BEGIN CERTIFICATE-----
MIIFqTCCBJGgAwIBAgISAYzI30LRYmX4CVl6G4ZMow4RMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAyMDYzMjA0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjODE4NGE0NTA1YjA1NzYwNThmZDMzMzA1OWJmZjE1M2FlNmVhZDViMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmc/OewfgKauuDNpjnhlEWAlhg9GP
qORaYdWdb7HoDmq1fxfM0eLZoAal1rAfrNiHJj3W/oBDG0L9W60Ihy7wrnNzO9Nc
OKBXJ/4oI3dLrQ8Tal09ByFyyae4IJKJwu/idJrxj8MyjRT+sZt5G+5ja7Rr+z4Z
ozEjv6GwwOap1lMjrwWW/ljh0N6ujU6nuYuiFIFyLN46TB8Ym3u+Ae4haEdx5PDn
ZZ76KGBdkfgq2btdgAYN1KHFwrmSLCaIDku/QIEAF0LHoEP2HLLMyJ5EuAif2ZpB
SdkdPD7QcbViEF9uyYcsDcYgUHI7VYyJxmmZgN3HmJdSWseCuraQL472JwIDAQAB
o4ICtTCCArEwHQYDVR0OBBYEFMgYSkUFsFdgWP0zMFm/8VOubq1bMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzJiL2VhZGFk
My1jZWQ5LTQxZmEtOGU1Zi01ZmJmMzNhY2Q4M2UvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMmIvZWFkYWQz
LWNlZDktNDFmYS04ZTVmLTVmYmYzM2FjZDgzZS8xL3lCaEtSUVd3VjJCWV9UTXdX
Yl94VTY1dXJWcy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDQGCCsGAQUF
BwEHAQH/BCUwIzASBAIAATAMAwQCuSf0AwQD1SDgMA0EAgACMAcDBQMqAUdgMBoG
CCsGAQUFBwEIAQH/BAswCaAHMAUCAwDzaTANBgkqhkiG9w0BAQsFAAOCAQEAoNHK
AoJvNGcQpxhF2oph7xoqyD1JN6pbVfLQz93zCZVPLkVPqFtWbCuLU9uhJkSS39KS
naPLreRM2XMcMtWrheVnMBHPCnU9MMcZr/pnaYDmH4/wS/1bMaMCGo3hwVFgG0rE
2dcmvbycxG6CknukXpATmGTOvrDaYszopPDqvEYXqZec6OeM3q9RQpjq7vp6SOcm
Lbi1odOQJ+C6vauBlPC2q3XkyafD0L3+t2lZCv5excVbkvBACwiA10mO/EsAcWVH
rXEUOpcspjr7pG3aOKSEvAreshJywL1XRPkkULAtIkZ05zM7Kc854/JgybRjQV1t
85QfQ+9Hy0uRmrTOPQ==
-----END CERTIFICATE-----
Generated at Fri Nov 22 18:32:53 2024 by rpki-client on console-fra.rpki-client.org