Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0vHIhC58-JGyNNOh4OLg73PoQqo.cer
File: 0vHIhC58-JGyNNOh4OLg73PoQqo.cer (raw, json)
Hash identifier: 2/xRGiFwHDFMz8qVQwMFIAL//NQKLEVSF/ctMTJnSjg=
Subject key identifier: D2:F1:C8:84:2E:7C:F8:91:B2:34:D3:A1:E0:E2:E0:EF:73:E8:42:AA
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0191360BE160C6770A55BEF5BF2D3C1A5C6D
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/09/c99ae7-b671-40b9-bb1e-a19444f7a337/1/0vHIhC58-JGyNNOh4OLg73PoQqo.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/09/c99ae7-b671-40b9-bb1e-a19444f7a337/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Fri 09 Aug 2024 07:30:33 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 8339
AS: 8559
IP: 62.40.128.0/17
IP: 81.217.0.0/16
IP: 82.149.96.0/19
IP: 82.218.0.0/16
IP: 89.104.0.0/19
IP: 92.62.16.0/20
IP: 94.16.32.0/19
IP: 95.143.224.0/20
IP: 141.98.176.0/22
IP: 176.120.160.0/21
IP: 178.18.160.0/20
IP: 185.93.8.0/22
IP: 185.100.96.0/22
IP: 194.106.224.0/19
IP: 195.202.128.0/18
IP: 195.230.160.0/19
IP: 202.170.80.0/21
IP: 2a00:1b38::/32
IP: 2a02:e200::/30
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:36:0b:e1:60:c6:77:0a:55:be:f5:bf:2d:3c:1a:5c:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Aug 9 07:30:33 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d2f1c8842e7cf891b234d3a1e0e2e0ef73e842aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:aa:20:a5:5c:92:02:9d:20:9e:ff:be:d6:54:
5c:50:a9:3d:5b:16:df:83:0b:31:4d:ca:b2:3b:9e:
e8:c7:f9:2d:57:18:f0:a9:87:b3:93:2e:22:40:cf:
4c:00:6c:c5:ce:bd:ae:03:38:67:e7:8a:6d:1a:37:
bd:ed:43:09:3b:89:91:c8:e0:92:e3:8b:60:41:09:
c9:18:7b:06:81:f1:67:9c:11:db:7e:37:95:96:21:
3d:80:c0:87:db:ed:ab:e4:e6:7c:ef:ef:8b:7e:b8:
48:68:7f:23:49:05:f8:88:af:2e:d7:2a:31:c1:82:
b9:e5:28:97:84:d2:81:53:e6:55:39:26:4d:37:c3:
ef:c9:46:f6:70:85:e5:0a:31:f8:f5:15:e9:4e:e4:
4d:5a:db:31:8b:7d:40:e6:ac:30:28:a1:77:a9:68:
50:fe:98:fd:da:0a:b8:24:7b:35:52:eb:c9:9b:a5:
c4:1f:ff:a8:01:ee:d5:42:33:fc:5a:ff:f2:33:ca:
1e:08:c0:f3:9b:10:c6:09:34:b7:b1:61:fa:eb:ef:
1f:02:1a:70:81:9e:e0:57:f0:7b:a3:c8:80:b6:fd:
c9:0d:55:3e:12:c2:41:a7:21:59:08:14:26:69:ec:
6e:23:6f:e4:e4:13:12:f3:ff:24:26:5a:d4:ba:31:
22:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:F1:C8:84:2E:7C:F8:91:B2:34:D3:A1:E0:E2:E0:EF:73:E8:42:AA
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/c99ae7-b671-40b9-bb1e-a19444f7a337/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/c99ae7-b671-40b9-bb1e-a19444f7a337/1/0vHIhC58-JGyNNOh4OLg73PoQqo.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.40.128.0/17
81.217.0.0/16
82.149.96.0/19
82.218.0.0/16
89.104.0.0/19
92.62.16.0/20
94.16.32.0/19
95.143.224.0/20
141.98.176.0/22
176.120.160.0/21
178.18.160.0/20
185.93.8.0/22
185.100.96.0/22
194.106.224.0/19
195.202.128.0/18
195.230.160.0/19
202.170.80.0/21
IPv6:
2a00:1b38::/32
2a02:e200::/30
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
8339
8559
Signature Algorithm: sha256WithRSAEncryption
96:26:61:ee:ac:6a:3d:d6:f3:a4:77:ac:9e:2b:8a:25:60:b5:
59:79:f3:d9:03:ad:73:69:37:f5:41:21:72:a5:0c:17:93:20:
44:da:ff:b4:ae:9b:a2:70:2c:4e:fe:5b:87:75:f6:d7:06:e4:
9a:78:c1:71:01:f8:fe:af:a4:34:de:66:39:10:18:96:52:b8:
90:76:9b:d4:27:07:76:f4:af:59:a9:43:8a:16:62:65:b0:8b:
91:c8:9d:84:67:04:da:e7:a0:b6:dd:bd:36:b7:84:bd:b2:e0:
8c:65:3a:ab:b9:2a:ce:6a:dc:b9:19:48:51:da:1d:0f:06:e7:
1d:1e:4b:44:d0:b8:b8:1a:de:32:17:07:e2:30:63:50:ac:1e:
5d:25:d8:58:1d:0e:fe:99:dd:06:e8:b2:1f:41:f4:8e:77:3c:
91:04:36:7c:b3:20:2d:52:ab:3e:a6:fb:07:19:05:94:f0:23:
68:e3:6d:55:20:de:93:42:82:16:f7:df:76:e6:85:fc:8e:ba:
b3:c2:fe:e8:16:63:2d:47:df:8c:1e:92:43:f6:02:57:78:af:
21:67:24:28:98:e5:2b:66:8c:b4:cb:7b:2f:2c:fa:ab:7c:85:
0c:95:cc:bf:ee:b6:1f:05:f2:1e:04:4e:af:9d:ab:a8:7c:8a:
cb:02:5c:ea
-----BEGIN CERTIFICATE-----
MIIGDjCCBPagAwIBAgISAZE2C+FgxncKVb71vy08GlxtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwODA5MDczMDMzWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkMmYxYzg4NDJlN2NmODkxYjIzNGQzYTFlMGUyZTBlZjczZTg0MmFhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyaogpVySAp0gnv++1lRcUKk9Wxbf
gwsxTcqyO57ox/ktVxjwqYezky4iQM9MAGzFzr2uAzhn54ptGje97UMJO4mRyOCS
44tgQQnJGHsGgfFnnBHbfjeVliE9gMCH2+2r5OZ87++LfrhIaH8jSQX4iK8u1yox
wYK55SiXhNKBU+ZVOSZNN8PvyUb2cIXlCjH49RXpTuRNWtsxi31A5qwwKKF3qWhQ
/pj92gq4JHs1UuvJm6XEH/+oAe7VQjP8Wv/yM8oeCMDzmxDGCTS3sWH66+8fAhpw
gZ7gV/B7o8iAtv3JDVU+EsJBpyFZCBQmaexuI2/k5BMS8/8kJlrUujEiFQIDAQAB
o4IDGjCCAxYwHQYDVR0OBBYEFNLxyIQufPiRsjTToeDi4O9z6EKqMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzA5L2M5OWFl
Ny1iNjcxLTQwYjktYmIxZS1hMTk0NDRmN2EzMzcvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDkvYzk5YWU3
LWI2NzEtNDBiOS1iYjFlLWExOTQ0NGY3YTMzNy8xLzB2SEloQzU4LUpHeU5OT2g0
T0xnNzNQb1Fxby5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMIGVBggrBgEF
BQcBBwEB/wSBhTCBgjBqBAIAATBkAwQHPiiAAwMAUdkDBAVSlWADAwBS2gMEBVlo
AAMEBFw+EAMEBV4QIAMEBF+P4AMEAo1isAMEA7B4oAMEBLISoAMEArldCAMEArlk
YAMEBcJq4AMEBsPKgAMEBcPmoAMEA8qqUDAUBAIAAjAOAwUAKgAbOAMFAioC4gAw
HQYIKwYBBQUHAQgBAf8EDjAMoAowCAICIJMCAiFvMA0GCSqGSIb3DQEBCwUAA4IB
AQCWJmHurGo91vOkd6yeK4olYLVZefPZA61zaTf1QSFypQwXkyBE2v+0rpuicCxO
/luHdfbXBuSaeMFxAfj+r6Q03mY5EBiWUriQdpvUJwd29K9ZqUOKFmJlsIuRyJ2E
ZwTa56C23b02t4S9suCMZTqruSrOaty5GUhR2h0PBucdHktE0Li4Gt4yFwfiMGNQ
rB5dJdhYHQ7+md0G6LIfQfSOdzyRBDZ8syAtUqs+pvsHGQWU8CNo421VIN6TQoIW
99925oX8jrqzwv7oFmMtR9+MHpJD9gJXeK8hZyQomOUrZoy0y3svLPqrfIUMlcy/
7rYfBfIeBE6vnauofIrLAlzq
-----END CERTIFICATE-----
Generated at Sat Nov 23 09:52:13 2024 by rpki-client on console-fra.rpki-client.org