Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/yDh_A1sJ0rw5P39g12IdMAzJd9g.cer
File: yDh_A1sJ0rw5P39g12IdMAzJd9g.cer (raw, json)
Hash identifier: r4qSTcwM6Gt/1DaM5sDlRr1rxPX/on17xf9mO4umGU8=
Subject key identifier: C8:38:7F:03:5B:09:D2:BC:39:3F:7F:60:D7:62:1D:30:0C:C9:77:D8
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC56DFCE2521F9CF52B0B4B329EA1B443
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/f1/fb090d-685e-4110-b171-c1c3c848912b/1/yDh_A1sJ0rw5P39g12IdMAzJd9g.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/f1/fb090d-685e-4110-b171-c1c3c848912b/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 14:29:28 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: IP: 193.41.200.0/24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6d:fc:e2:52:1f:9c:f5:2b:0b:4b:32:9e:a1:b4:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 14:29:28 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c8387f035b09d2bc393f7f60d7621d300cc977d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:8c:b3:00:00:51:cd:19:3b:b1:3b:1e:7f:be:
af:fb:d3:57:8d:7b:dd:32:d0:9a:70:53:72:c1:d9:
36:7a:5e:e4:38:2b:49:fb:47:04:91:ef:cd:a9:7c:
ca:1c:a0:95:dc:c4:5c:1c:29:56:32:54:f0:e7:47:
37:8b:9f:7a:62:33:f2:95:9f:57:f5:95:80:ba:02:
f7:6f:70:76:e9:be:9b:2d:38:a6:6b:bd:bc:cc:90:
63:4e:02:0c:9a:77:5b:61:38:21:91:6f:a7:36:b0:
67:b1:2e:e0:76:2b:e9:e4:cf:1b:09:58:9d:0c:87:
73:08:90:be:27:80:af:3c:19:cc:03:7e:97:9c:6c:
73:0d:eb:67:ac:4b:a0:18:d2:12:87:05:96:aa:9c:
76:17:05:41:e6:20:13:2c:70:17:9e:39:09:d4:59:
4e:89:b5:bb:a7:b9:b8:fc:ec:0a:b4:88:c4:4e:04:
42:47:c3:16:db:0f:5d:2e:29:d8:ce:4f:f7:ad:94:
cb:17:33:99:36:51:69:b1:87:8c:85:37:dd:26:cd:
b0:46:7f:c7:5d:ef:a5:d5:d0:d2:36:e8:e3:db:c7:
94:d8:71:7b:06:85:30:72:ff:86:a4:9f:4d:74:8a:
1f:91:92:2d:f9:1d:cf:e1:1a:3c:55:77:f8:04:17:
93:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:38:7F:03:5B:09:D2:BC:39:3F:7F:60:D7:62:1D:30:0C:C9:77:D8
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/fb090d-685e-4110-b171-c1c3c848912b/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/fb090d-685e-4110-b171-c1c3c848912b/1/yDh_A1sJ0rw5P39g12IdMAzJd9g.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.41.200.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:9e:55:67:08:a3:55:25:f8:f8:dd:38:2d:68:87:d1:28:5d:
25:13:8c:15:11:1e:11:bf:ec:2f:f9:12:6c:fd:ec:fd:88:f2:
f7:b1:bc:b2:65:88:52:c5:42:db:06:96:ae:fd:7f:c8:d9:6d:
de:0c:28:48:d8:d7:87:bd:2b:7f:da:17:c3:60:54:9a:a3:bf:
c1:3c:8e:48:1f:76:35:b0:cc:50:b0:fb:37:91:27:83:e3:19:
ca:e7:e7:bf:cd:da:4a:64:2c:25:61:39:49:f8:8f:a7:2a:8a:
59:7e:04:60:25:7f:c6:f4:7b:74:c6:a7:88:83:95:cb:17:51:
61:d9:65:0e:f8:ce:bc:97:6b:be:5a:18:08:ee:fd:8a:e0:3d:
ea:88:90:0e:48:6c:a7:0f:9b:75:89:85:cd:2d:80:71:36:e0:
c4:a3:93:f8:2a:4f:56:3b:32:17:04:5a:6e:dc:e1:1c:8c:bc:
38:5e:b8:68:b4:66:c9:63:db:b2:6c:ab:7a:a6:2c:0c:2a:58:
30:74:e4:e8:39:5e:03:99:10:a1:00:97:d2:bd:36:87:d7:f1:
1b:12:f3:5a:87:af:21:83:0a:9c:5f:bd:5a:e4:90:ad:b0:22:
f7:67:b4:73:eb:11:c0:00:f6:34:08:50:34:f9:e1:68:51:b0:
f6:7a:cc:7c
-----BEGIN CERTIFICATE-----
MIIFeDCCBGCgAwIBAgISAYzFbfziUh+c9SsLSzKeobRDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAxMTQyOTI4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjODM4N2YwMzViMDlkMmJjMzkzZjdmNjBkNzYyMWQzMDBjYzk3N2Q4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApIyzAABRzRk7sTsef76v+9NXjXvd
MtCacFNywdk2el7kOCtJ+0cEke/NqXzKHKCV3MRcHClWMlTw50c3i596YjPylZ9X
9ZWAugL3b3B26b6bLTima728zJBjTgIMmndbYTghkW+nNrBnsS7gdivp5M8bCVid
DIdzCJC+J4CvPBnMA36XnGxzDetnrEugGNIShwWWqpx2FwVB5iATLHAXnjkJ1FlO
ibW7p7m4/OwKtIjETgRCR8MW2w9dLinYzk/3rZTLFzOZNlFpsYeMhTfdJs2wRn/H
Xe+l1dDSNujj28eU2HF7BoUwcv+GpJ9NdIofkZIt+R3P4Ro8VXf4BBeTFwIDAQAB
o4IChDCCAoAwHQYDVR0OBBYEFMg4fwNbCdK8OT9/YNdiHTAMyXfYMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2YxL2ZiMDkw
ZC02ODVlLTQxMTAtYjE3MS1jMWMzYzg0ODkxMmIvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjEvZmIwOTBk
LTY4NWUtNDExMC1iMTcxLWMxYzNjODQ4OTEyYi8xL3lEaF9BMXNKMHJ3NVAzOWcx
MklkTUF6SmQ5Zy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF
BwEHAQH/BBAwDjAMBAIAATAGAwQAwSnIMA0GCSqGSIb3DQEBCwUAA4IBAQCbnlVn
CKNVJfj43TgtaIfRKF0lE4wVER4Rv+wv+RJs/ez9iPL3sbyyZYhSxULbBpau/X/I
2W3eDChI2NeHvSt/2hfDYFSao7/BPI5IH3Y1sMxQsPs3kSeD4xnK5+e/zdpKZCwl
YTlJ+I+nKopZfgRgJX/G9Ht0xqeIg5XLF1Fh2WUO+M68l2u+WhgI7v2K4D3qiJAO
SGynD5t1iYXNLYBxNuDEo5P4Kk9WOzIXBFpu3OEcjLw4XrhotGbJY9uybKt6piwM
KlgwdOToOV4DmRChAJfSvTaH1/EbEvNah68hgwqcX71a5JCtsCL3Z7Rz6xHAAPY0
CFA0+eFoUbD2esx8
-----END CERTIFICATE-----
Generated at Fri May 3 07:35:40 2024 by rpki-client on console-ams.rpki-client.org