Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ya3PjO-lllmLJLm2q2UHDdkcp5w.cer
File: ya3PjO-lllmLJLm2q2UHDdkcp5w.cer (raw, json)
Hash identifier: JvYm2uZUHJLyx+vlvWUr43e4k+emgSZZDVmKYpNFuPw=
Subject key identifier: C9:AD:CF:8C:EF:A5:96:59:8B:24:B9:B6:AB:65:07:0D:D9:1C:A7:9C
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC5014D7AFD62645DD06A87DF8AEAEE19
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/31/b0057c-5472-48d5-b107-c55372fab335/1/ya3PjO-lllmLJLm2q2UHDdkcp5w.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/31/b0057c-5472-48d5-b107-c55372fab335/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 12:30:46 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 61367
IP: 193.31.200.0/21
IP: 2001:67c:14a8::/48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:01:4d:7a:fd:62:64:5d:d0:6a:87:df:8a:ea:ee:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 12:30:46 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c9adcf8cefa596598b24b9b6ab65070dd91ca79c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:57:dc:99:2f:79:25:01:b2:3c:9e:ad:0d:bc:
b5:d0:94:db:6e:22:31:55:cb:70:c9:70:34:5c:fa:
9d:87:36:c8:1b:b8:59:1d:b6:81:0a:68:c4:9f:6c:
d0:50:35:7b:cf:cc:d3:de:04:cb:d1:30:26:ce:6d:
a2:83:d0:41:dc:87:ae:89:68:74:c7:65:60:56:63:
39:3d:17:37:f9:f4:ae:0f:c5:b3:c7:04:31:bf:2e:
23:12:cd:04:ad:57:9c:f4:4d:04:1f:7f:3a:0a:ee:
2b:06:c6:9e:ee:9a:c3:c2:7b:54:a9:71:73:2c:40:
ab:a5:e8:40:2c:87:63:91:37:b2:b6:be:4d:9d:2d:
5e:17:f4:f4:31:1b:92:c5:29:55:33:87:6a:c1:be:
07:0e:d6:fd:cc:7e:6c:ca:55:7d:a9:60:df:ad:84:
22:4d:c2:54:64:ac:7c:1c:7f:d4:98:01:2c:b5:0d:
f0:de:7d:4b:4e:f2:29:7a:a6:bd:d5:58:ae:ce:15:
96:d1:d4:53:e2:2b:ad:7f:5d:ff:7f:11:f9:74:74:
22:51:2b:05:aa:98:02:52:59:42:22:c5:24:c8:c9:
60:9a:e6:9f:db:eb:fd:5a:d9:71:01:25:97:24:37:
60:3c:b1:f3:93:ce:65:88:85:e1:c6:3b:ea:00:a0:
bb:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:AD:CF:8C:EF:A5:96:59:8B:24:B9:B6:AB:65:07:0D:D9:1C:A7:9C
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/b0057c-5472-48d5-b107-c55372fab335/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/b0057c-5472-48d5-b107-c55372fab335/1/ya3PjO-lllmLJLm2q2UHDdkcp5w.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.31.200.0/21
IPv6:
2001:67c:14a8::/48
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
61367
Signature Algorithm: sha256WithRSAEncryption
11:75:d1:11:34:c6:8f:47:b2:e4:01:9c:b0:f6:82:5e:28:1a:
98:34:cc:11:65:ab:eb:8a:01:a0:f0:44:fb:03:c0:d5:8a:37:
d8:24:60:63:08:98:7b:fe:cb:15:4c:ca:e4:5e:bc:f0:aa:f6:
4d:99:4a:22:29:e7:c8:f6:15:73:e4:75:91:29:b8:f7:59:7f:
6b:ec:12:ec:3d:1c:56:4f:1b:ac:60:e9:e8:5b:6f:d5:65:6a:
eb:70:ee:00:28:b4:83:60:4f:55:78:09:34:51:9c:69:14:88:
2e:b5:3d:97:84:1c:ba:c3:57:3a:1a:ca:43:2d:43:28:d0:f4:
08:ed:ef:54:18:ab:e8:6c:df:da:37:38:a8:d9:19:3a:ff:4f:
fe:0e:81:11:85:a7:8d:43:03:0c:57:cf:83:06:54:f2:43:a8:
10:33:1e:73:2b:55:7a:4b:73:11:4b:cc:50:69:a2:f8:f1:6d:
98:20:7d:9a:58:0f:b2:c6:2b:92:9c:b7:3c:ff:b1:65:20:0a:
ce:7e:51:15:63:2b:a8:ce:64:0d:bd:dc:8f:4b:27:f1:90:8b:
16:a9:aa:f6:93:47:1a:58:b9:41:9a:02:49:4a:6a:84:00:e7:
7b:08:b9:75:d1:7c:ce:94:b1:94:b6:42:d5:12:7b:5d:2e:1b:
21:8e:a7:6c
-----BEGIN CERTIFICATE-----
MIIFpTCCBI2gAwIBAgISAYzFAU16/WJkXdBqh9+K6u4ZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAxMTIzMDQ2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjOWFkY2Y4Y2VmYTU5NjU5OGIyNGI5YjZhYjY1MDcwZGQ5MWNhNzljMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0FfcmS95JQGyPJ6tDby10JTbbiIx
VctwyXA0XPqdhzbIG7hZHbaBCmjEn2zQUDV7z8zT3gTL0TAmzm2ig9BB3IeuiWh0
x2VgVmM5PRc3+fSuD8WzxwQxvy4jEs0ErVec9E0EH386Cu4rBsae7prDwntUqXFz
LECrpehALIdjkTeytr5NnS1eF/T0MRuSxSlVM4dqwb4HDtb9zH5sylV9qWDfrYQi
TcJUZKx8HH/UmAEstQ3w3n1LTvIpeqa91ViuzhWW0dRT4iutf13/fxH5dHQiUSsF
qpgCUllCIsUkyMlgmuaf2+v9WtlxASWXJDdgPLHzk85liIXhxjvqAKC7ewIDAQAB
o4ICsTCCAq0wHQYDVR0OBBYEFMmtz4zvpZZZiyS5tqtlBw3ZHKecMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzMxL2IwMDU3
Yy01NDcyLTQ4ZDUtYjEwNy1jNTUzNzJmYWIzMzUvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzEvYjAwNTdj
LTU0NzItNDhkNS1iMTA3LWM1NTM3MmZhYjMzNS8xL3lhM1BqTy1sbGxtTEpMbTJx
MlVIRGRrY3A1dy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDAGCCsGAQUF
BwEHAQH/BCEwHzAMBAIAATAGAwQDwR/IMA8EAgACMAkDBwAgAQZ8FKgwGgYIKwYB
BQUHAQgBAf8ECzAJoAcwBQIDAO+3MA0GCSqGSIb3DQEBCwUAA4IBAQARddERNMaP
R7LkAZyw9oJeKBqYNMwRZavrigGg8ET7A8DVijfYJGBjCJh7/ssVTMrkXrzwqvZN
mUoiKefI9hVz5HWRKbj3WX9r7BLsPRxWTxusYOnoW2/VZWrrcO4AKLSDYE9VeAk0
UZxpFIgutT2XhBy6w1c6GspDLUMo0PQI7e9UGKvobN/aNzio2Rk6/0/+DoERhaeN
QwMMV8+DBlTyQ6gQMx5zK1V6S3MRS8xQaaL48W2YIH2aWA+yxiuSnLc8/7FlIArO
flEVYyuozmQNvdyPSyfxkIsWqar2k0caWLlBmgJJSmqEAOd7CLl10XzOlLGUtkLV
EntdLhshjqds
-----END CERTIFICATE-----
Generated at Fri May 3 03:51:40 2024 by rpki-client on console-fra.rpki-client.org