Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1-CA6DAS4H-F2b6Qb0xtztYgYisc.cer
File: 1-CA6DAS4H-F2b6Qb0xtztYgYisc.cer (raw, json)
Hash identifier: /gYUANB4PbLQHCsBRWSEIZGa90VpUwsw8KGj24GHcEY=
Subject key identifier: F8:20:3A:0C:04:B8:1F:E1:76:6F:A4:1B:D3:1B:73:B5:88:18:8A:C7
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019344D175E8E052C48E5393DAA101AE1C94
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/5b/e14ca3-da8e-4b58-863a-3389620c1bd7/1/1-CA6DAS4H-F2b6Qb0xtztYgYisc.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/5b/e14ca3-da8e-4b58-863a-3389620c1bd7/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 19 Nov 2024 14:26:38 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 57621
AS: 60721
IP: 45.136.104.0/22
IP: 185.26.144.0/22
IP: 185.126.176.0/22
IP: 185.153.228.0/22
IP: 185.162.144.0/24
IP: 185.162.147.0/24
IP: 185.171.24.0/22
IP: 185.247.136.0/22
IP: 2a04:3880::/30
IP: 2a05:100::/29
IP: 2a06:c380::/29
IP: 2a0b:6000::/29
IP: 2a0d:a2c0::/29
IP: 2a0d:c480::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:44:d1:75:e8:e0:52:c4:8e:53:93:da:a1:01:ae:1c:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Nov 19 14:26:38 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f8203a0c04b81fe1766fa41bd31b73b588188ac7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:c3:e3:50:a2:1e:29:37:44:91:75:76:7a:da:
5f:77:05:a1:b0:f6:78:ad:c8:18:a4:b9:bc:09:a9:
69:17:b9:a9:e1:86:a2:85:00:a1:52:af:95:2e:cd:
93:8c:0d:11:27:21:19:76:0e:56:e3:7a:34:9f:2e:
6c:1f:67:17:94:a9:46:2d:45:43:27:cb:df:ad:8e:
fb:2a:ee:c0:e6:92:87:f4:53:47:0a:7d:b5:a8:a1:
49:94:2c:45:06:e5:ce:07:3c:b4:a6:6a:1e:ed:5a:
94:a1:43:bc:32:7e:e4:94:61:00:62:38:69:de:bc:
2f:5f:02:b4:3e:06:b9:0a:86:0f:b9:69:8b:aa:ad:
cc:05:a0:4c:d6:81:cd:5a:f7:77:83:14:ca:c9:09:
1b:fd:38:2c:bd:b7:f5:ba:0b:84:a4:7c:0d:3e:56:
fa:e0:18:ee:9c:3a:f8:ed:9b:92:42:ed:d8:a0:d5:
12:70:a3:4f:48:32:9e:3e:97:7f:c8:c6:54:ca:12:
b1:c0:dc:10:6b:16:b2:56:0a:dc:c8:81:57:73:7b:
4c:45:8a:2d:47:3a:d2:31:89:fa:23:99:29:4e:88:
4e:57:e3:76:50:b4:80:dc:ce:76:84:76:73:11:af:
c4:13:b1:a9:95:c3:4b:24:44:d7:c3:63:b3:ee:de:
65:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:20:3A:0C:04:B8:1F:E1:76:6F:A4:1B:D3:1B:73:B5:88:18:8A:C7
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/e14ca3-da8e-4b58-863a-3389620c1bd7/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/e14ca3-da8e-4b58-863a-3389620c1bd7/1/1-CA6DAS4H-F2b6Qb0xtztYgYisc.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.136.104.0/22
185.26.144.0/22
185.126.176.0/22
185.153.228.0/22
185.162.144.0/24
185.162.147.0/24
185.171.24.0/22
185.247.136.0/22
IPv6:
2a04:3880::/30
2a05:100::/29
2a06:c380::/29
2a0b:6000::/29
2a0d:a2c0::/29
2a0d:c480::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
57621
60721
Signature Algorithm: sha256WithRSAEncryption
40:3b:b6:6a:a5:98:49:4a:ea:f5:f8:cb:a0:cf:96:dd:3a:ee:
1f:bb:1b:c7:cd:8b:65:c4:70:9c:03:47:da:91:78:3b:ab:95:
e3:db:4b:7c:25:08:62:06:f3:2b:5d:90:b6:fc:83:f2:f6:ba:
b2:74:45:e0:ed:be:b2:1a:b9:a9:6f:22:e8:85:5d:e5:a2:a5:
09:12:a9:44:74:c8:b5:a6:8b:72:df:94:21:07:b4:65:96:2c:
73:4f:cf:93:aa:8e:bb:2f:bb:4a:4a:d8:f6:b5:f6:ef:b0:6f:
3d:9a:0e:93:ea:6f:1d:15:27:ab:92:d7:61:92:e6:a8:14:08:
29:69:d4:3b:f6:9b:ff:c4:c1:d9:57:08:7a:23:2c:d9:be:ed:
ef:3f:62:67:19:48:aa:72:59:4e:49:9d:e6:87:41:6f:02:68:
da:70:cc:f9:e8:1c:70:b8:23:3f:aa:1a:ae:e9:53:04:4f:f8:
62:7b:59:52:a5:9d:64:85:e9:fc:a5:2c:ab:aa:5e:06:c4:c5:
bf:a4:a5:12:d0:59:c3:40:45:12:20:4c:02:5b:ba:7a:e6:a9:
72:b0:b1:a0:a1:00:4e:5b:9e:5c:14:39:6e:4c:cd:13:65:d7:
97:4f:b6:5d:ce:36:4c:02:ff:5c:cc:96:1a:6b:19:ce:92:0f:
8e:7e:31:b2
-----BEGIN CERTIFICATE-----
MIIF9jCCBN6gAwIBAgISAZNE0XXo4FLEjlOT2qEBrhyUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQxMTE5MTQyNjM4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmODIwM2EwYzA0YjgxZmUxNzY2ZmE0MWJkMzFiNzNiNTg4MTg4YWM3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1cPjUKIeKTdEkXV2etpfdwWhsPZ4
rcgYpLm8CalpF7mp4YaihQChUq+VLs2TjA0RJyEZdg5W43o0ny5sH2cXlKlGLUVD
J8vfrY77Ku7A5pKH9FNHCn21qKFJlCxFBuXOBzy0pmoe7VqUoUO8Mn7klGEAYjhp
3rwvXwK0Pga5CoYPuWmLqq3MBaBM1oHNWvd3gxTKyQkb/Tgsvbf1uguEpHwNPlb6
4BjunDr47ZuSQu3YoNUScKNPSDKePpd/yMZUyhKxwNwQaxayVgrcyIFXc3tMRYot
RzrSMYn6I5kpTohOV+N2ULSA3M52hHZzEa/EE7GplcNLJETXw2Oz7t5lGwIDAQAB
o4IDAjCCAv4wHQYDVR0OBBYEFPggOgwEuB/hdm+kG9Mbc7WIGIrHMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEkBggrBgEFBQcBCwSCARYwggESMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzViL2UxNGNh
My1kYThlLTRiNTgtODYzYS0zMzg5NjIwYzFiZDcvMS8wfQYIKwYBBQUHMAqGcXJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNWIvZTE0Y2Ez
LWRhOGUtNGI1OC04NjNhLTMzODk2MjBjMWJkNy8xLzEtQ0E2REFTNEgtRjJiNlFi
MHh0enRZZ1lpc2MubWZ0MDIGCCsGAQUFBzANhiZodHRwczovL3JyZHAucmlwZS5u
ZXQvbm90aWZpY2F0aW9uLnhtbDBZBgNVHR8EUjBQME6gTKBKhkhyc3luYzovL3Jw
a2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0twU28zVlZLNXdFSElKbkhD
MlFIVlYzZDVtay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjB7BggrBgEF
BQcBBwEB/wRsMGowNgQCAAEwMAMEAi2IaAMEArkakAMEArl+sAMEArmZ5AMEALmi
kAMEALmikwMEArmrGAMEArn3iDAwBAIAAjAqAwUCKgQ4gAMFAyoFAQADBQMqBsOA
AwUDKgtgAAMFAyoNosADBQMqDcSAMB8GCCsGAQUFBwEIAQH/BBAwDqAMMAoCAwDh
FQIDAO0xMA0GCSqGSIb3DQEBCwUAA4IBAQBAO7ZqpZhJSur1+Mugz5bdOu4fuxvH
zYtlxHCcA0fakXg7q5Xj20t8JQhiBvMrXZC2/IPy9rqydEXg7b6yGrmpbyLohV3l
oqUJEqlEdMi1poty35QhB7RllixzT8+Tqo67L7tKStj2tfbvsG89mg6T6m8dFSer
ktdhkuaoFAgpadQ79pv/xMHZVwh6IyzZvu3vP2JnGUiqcllOSZ3mh0FvAmjacMz5
6BxwuCM/qhqu6VMET/hie1lSpZ1khen8pSyrql4GxMW/pKUS0FnDQEUSIEwCW7p6
5qlysLGgoQBOW55cFDluTM0TZdeXT7ZdzjZMAv9czJYaaxnOkg+OfjGy
-----END CERTIFICATE-----
Generated at Fri Nov 22 09:34:23 2024 by rpki-client on console-fra.rpki-client.org