Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/yTfS9vC3jA7XW478KACdeXlhQAM.cer
File: yTfS9vC3jA7XW478KACdeXlhQAM.cer (raw, json)
Hash identifier: jHJwqz41RiIljbvZhDEKGh/Nim5U/FH3+FQCwb30Jc4=
Subject key identifier: C9:37:D2:F6:F0:B7:8C:0E:D7:5B:8E:FC:28:00:9D:79:79:61:40:03
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018E0C80ADE71EB4E2B7E30654AC4EAB665C
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/08/b9bd06-96c8-4e71-ba12-937754cbb505/1/yTfS9vC3jA7XW478KACdeXlhQAM.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/08/b9bd06-96c8-4e71-ba12-937754cbb505/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 05 Mar 2024 02:45:43 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 62134
IP: 185.46.120.0/22
IP: 2a01:8720::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:0c:80:ad:e7:1e:b4:e2:b7:e3:06:54:ac:4e:ab:66:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Mar 5 02:45:43 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c937d2f6f0b78c0ed75b8efc28009d7979614003
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:11:41:2b:31:5a:da:13:09:ab:8f:a0:be:81:
ab:06:86:8e:6e:81:19:34:b6:c6:ef:97:11:5c:48:
bb:a6:1a:d7:dc:c1:0c:e0:50:34:70:3c:f7:b8:02:
b9:ab:63:0f:0a:d4:2b:15:da:3b:7c:06:63:59:1a:
b6:35:fe:64:ad:8f:aa:3d:21:a3:d5:2a:67:4e:5e:
c8:05:3f:85:01:96:b2:46:6f:eb:41:26:89:27:e9:
04:02:77:73:2c:30:b6:10:57:d2:33:93:76:4e:53:
5f:42:ea:6f:36:78:29:ec:52:7f:4f:cb:bc:5b:3d:
4d:68:74:eb:68:6c:9a:35:f7:04:49:81:a0:49:d4:
df:f1:55:9f:21:d2:30:3b:72:78:f8:d0:ad:70:2a:
ca:a4:f0:28:27:ad:3a:9a:5c:3f:6f:ed:df:d6:7d:
cc:f1:9c:94:3b:9b:29:95:0e:e4:90:38:89:cd:41:
51:14:03:f6:99:36:bb:78:ac:f6:09:07:50:db:f6:
be:24:b7:f4:1e:45:88:c9:ac:88:1e:13:3e:80:30:
f0:df:0e:68:aa:d4:e9:5c:5b:a5:b4:d2:ad:92:8b:
3d:78:4d:75:4f:93:54:f3:8e:6d:fc:82:ba:bd:df:
a3:14:b6:a9:19:ca:29:a5:21:4f:b7:0a:77:1d:32:
13:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:37:D2:F6:F0:B7:8C:0E:D7:5B:8E:FC:28:00:9D:79:79:61:40:03
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/b9bd06-96c8-4e71-ba12-937754cbb505/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/b9bd06-96c8-4e71-ba12-937754cbb505/1/yTfS9vC3jA7XW478KACdeXlhQAM.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.46.120.0/22
IPv6:
2a01:8720::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
62134
Signature Algorithm: sha256WithRSAEncryption
12:0d:7b:2c:18:e0:0b:be:90:56:24:64:c3:f6:24:c5:f8:e9:
d8:10:5f:4a:06:af:b4:70:86:0b:cd:e3:e3:2e:5d:60:b3:52:
c1:c3:77:13:8c:98:d9:4e:fb:9d:02:94:7b:f4:49:59:db:ff:
97:0e:30:92:bd:ba:37:49:db:d3:af:29:68:9e:09:b7:40:fe:
6d:3d:77:79:67:be:21:e1:27:d3:ac:d1:06:f4:ee:b3:d1:93:
a6:52:69:be:1a:95:0b:db:d9:1d:5f:e6:42:48:17:20:e8:96:
42:f8:ee:50:f6:5d:6b:62:54:85:74:64:f5:b4:d5:ea:75:b8:
88:37:ee:07:6d:e4:86:8c:17:0a:44:19:27:69:1f:03:08:a0:
92:bb:78:8f:8c:e4:58:cf:d6:07:47:84:b6:5b:45:06:f7:16:
50:76:3c:4d:d7:66:96:d5:d6:c0:d7:2c:6a:38:36:76:3c:6e:
75:ad:bc:d6:53:52:c7:81:a9:4b:2a:03:f3:23:09:49:77:d7:
13:20:dc:27:52:f5:c1:75:27:75:d2:1d:49:46:4f:08:d6:72:
d7:1c:bc:6c:ea:06:b4:29:18:3e:8e:8d:93:1b:30:e9:39:a6:
a9:01:7b:6b:af:cb:c3:31:db:c6:a5:ce:fc:72:94:2e:41:39:
1d:60:ac:95
-----BEGIN CERTIFICATE-----
MIIFozCCBIugAwIBAgISAY4MgK3nHrTit+MGVKxOq2ZcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMzA1MDI0NTQzWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjOTM3ZDJmNmYwYjc4YzBlZDc1YjhlZmMyODAwOWQ3OTc5NjE0MDAzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuBFBKzFa2hMJq4+gvoGrBoaOboEZ
NLbG75cRXEi7phrX3MEM4FA0cDz3uAK5q2MPCtQrFdo7fAZjWRq2Nf5krY+qPSGj
1SpnTl7IBT+FAZayRm/rQSaJJ+kEAndzLDC2EFfSM5N2TlNfQupvNngp7FJ/T8u8
Wz1NaHTraGyaNfcESYGgSdTf8VWfIdIwO3J4+NCtcCrKpPAoJ606mlw/b+3f1n3M
8ZyUO5splQ7kkDiJzUFRFAP2mTa7eKz2CQdQ2/a+JLf0HkWIyayIHhM+gDDw3w5o
qtTpXFultNKtkos9eE11T5NU845t/IK6vd+jFLapGcoppSFPtwp3HTITnQIDAQAB
o4ICrzCCAqswHQYDVR0OBBYEFMk30vbwt4wO11uO/CgAnXl5YUADMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzA4L2I5YmQw
Ni05NmM4LTRlNzEtYmExMi05Mzc3NTRjYmI1MDUvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDgvYjliZDA2
LTk2YzgtNGU3MS1iYTEyLTkzNzc1NGNiYjUwNS8xL3lUZlM5dkMzakE3WFc0NzhL
QUNkZVhsaFFBTS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF
BwEHAQH/BB8wHTAMBAIAATAGAwQCuS54MA0EAgACMAcDBQAqAYcgMBoGCCsGAQUF
BwEIAQH/BAswCaAHMAUCAwDytjANBgkqhkiG9w0BAQsFAAOCAQEAEg17LBjgC76Q
ViRkw/Ykxfjp2BBfSgavtHCGC83j4y5dYLNSwcN3E4yY2U77nQKUe/RJWdv/lw4w
kr26N0nb068paJ4Jt0D+bT13eWe+IeEn06zRBvTus9GTplJpvhqVC9vZHV/mQkgX
IOiWQvjuUPZda2JUhXRk9bTV6nW4iDfuB23khowXCkQZJ2kfAwigkrt4j4zkWM/W
B0eEtltFBvcWUHY8TddmltXWwNcsajg2djxuda281lNSx4GpSyoD8yMJSXfXEyDc
J1L1wXUnddIdSUZPCNZy1xy8bOoGtCkYPo6Nkxsw6TmmqQF7a6/LwzHbxqXO/HKU
LkE5HWCslQ==
-----END CERTIFICATE-----
Generated at Fri May 3 11:07:43 2024 by rpki-client on console-fra.rpki-client.org