Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40aW5qhVeR3hjKFc9njupXNgZys.cer
File: 40aW5qhVeR3hjKFc9njupXNgZys.cer (raw, json)
Hash identifier: va77CY6i0xjOqawhTIkCyKIRsNA7NZwhZU1XeKsz60c=
Subject key identifier: E3:46:96:E6:A8:55:79:1D:E1:8C:A1:5C:F6:78:EE:A5:73:60:67:2B
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC9BCE8769D3A919AB1E4518D159D1583
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/f6/03abaf-f8a0-41ff-a1bc-9dc4657f4975/1/40aW5qhVeR3hjKFc9njupXNgZys.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/f6/03abaf-f8a0-41ff-a1bc-9dc4657f4975/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 10:34:09 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: IP: 31.172.240.0/20
IP: 37.220.96.0/21
IP: 46.231.112.0/21
IP: 78.40.32.0/21
IP: 80.241.48.0/21
IP: 94.102.144.0/20
IP: 95.172.0.0/19
IP: 109.109.224.0/19
IP: 185.32.200.0/22
IP: 2a01:7b8::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 20 Apr 2024 17:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:e8:76:9d:3a:91:9a:b1:e4:51:8d:15:9d:15:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 10:34:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e34696e6a855791de18ca15cf678eea57360672b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:24:34:04:35:d8:82:51:cf:1a:41:63:19:78:
24:33:ba:bd:cd:ed:0a:fa:75:d2:4b:e9:4c:60:32:
e5:6b:e8:7d:46:83:66:a6:c0:16:1d:b3:18:db:4c:
18:54:39:9c:f4:45:cf:34:64:a4:0d:a3:7c:ef:62:
e0:10:9d:03:5d:6b:ad:90:e2:dd:1a:a6:48:05:89:
65:ae:14:17:b6:a3:72:5b:32:83:6c:3f:0d:af:df:
99:b4:6f:da:eb:68:d4:65:29:98:32:13:8d:ea:0c:
c4:dc:57:df:fa:97:ab:90:69:c0:62:f7:fc:f7:b3:
0d:f1:79:9e:44:cc:6d:a1:f1:74:95:c0:d4:6d:b5:
d9:6e:2c:aa:c1:0a:f4:48:ce:06:29:b4:38:ba:47:
73:d2:ca:56:22:f3:c0:99:9f:09:64:1d:b2:3c:ef:
14:01:c3:45:3e:1c:cd:0e:ab:4b:f7:e2:93:c3:20:
8c:d4:42:cc:9d:e2:93:3d:95:26:1d:4e:af:a2:e8:
1f:99:e7:10:15:cb:ea:9a:ce:c0:db:ae:79:45:50:
c3:7d:74:46:8c:ed:0d:0e:b2:05:b0:e5:e4:25:91:
4c:57:ab:ad:a0:1e:91:95:13:b6:4d:b8:88:2e:f2:
0d:12:75:98:0f:8c:34:3d:54:35:6a:b5:48:0b:cd:
45:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:46:96:E6:A8:55:79:1D:E1:8C:A1:5C:F6:78:EE:A5:73:60:67:2B
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/03abaf-f8a0-41ff-a1bc-9dc4657f4975/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/03abaf-f8a0-41ff-a1bc-9dc4657f4975/1/40aW5qhVeR3hjKFc9njupXNgZys.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.172.240.0/20
37.220.96.0/21
46.231.112.0/21
78.40.32.0/21
80.241.48.0/21
94.102.144.0/20
95.172.0.0/19
109.109.224.0/19
185.32.200.0/22
IPv6:
2a01:7b8::/32
Signature Algorithm: sha256WithRSAEncryption
49:99:ba:ae:a8:7e:b0:f1:47:6c:e9:32:a3:de:b3:54:77:18:
fe:75:fa:ef:75:c7:84:32:d4:de:f9:3d:3c:a5:0d:14:eb:89:
3e:2e:f6:c9:fc:c7:83:bc:0a:b6:6b:43:2e:58:06:bc:5d:47:
9b:33:8a:9a:53:4e:83:22:02:ed:46:41:af:d6:31:0d:32:fa:
c6:0c:d6:27:f5:29:87:02:91:7c:e2:cd:a5:bb:40:14:31:97:
48:a7:ff:2b:b7:5c:10:a3:88:22:f9:55:0b:1f:a3:24:25:38:
87:9e:6d:36:82:06:9c:3a:2b:cd:12:68:45:a5:a4:81:1d:19:
dd:94:b3:e3:79:85:70:b6:35:26:0b:bd:9f:70:91:4c:22:0f:
c9:70:96:d4:39:e5:72:99:d6:9a:d1:70:74:df:41:33:2c:0c:
7e:49:9c:9d:de:b7:49:03:d3:57:21:e3:0b:80:99:a1:70:85:
b2:ba:d8:c1:40:5b:a3:af:af:dc:ba:c0:c0:55:1b:73:30:5c:
d2:d4:86:71:cc:be:e9:38:1c:47:60:f3:10:b2:89:ae:82:92:
2a:36:db:e4:d6:5f:89:37:6e:33:ca:c0:ff:27:87:ae:b2:54:
ad:5d:b8:42:96:c8:68:6c:87:8b:91:b9:6f:cf:5a:ec:39:e1:
0c:da:d3:74
-----BEGIN CERTIFICATE-----
MIIFtzCCBJ+gAwIBAgISAYzJvOh2nTqRmrHkUY0VnRWDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAyMTAzNDA5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlMzQ2OTZlNmE4NTU3OTFkZTE4Y2ExNWNmNjc4ZWVhNTczNjA2NzJiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkSQ0BDXYglHPGkFjGXgkM7q9ze0K
+nXSS+lMYDLla+h9RoNmpsAWHbMY20wYVDmc9EXPNGSkDaN872LgEJ0DXWutkOLd
GqZIBYllrhQXtqNyWzKDbD8Nr9+ZtG/a62jUZSmYMhON6gzE3Fff+perkGnAYvf8
97MN8XmeRMxtofF0lcDUbbXZbiyqwQr0SM4GKbQ4ukdz0spWIvPAmZ8JZB2yPO8U
AcNFPhzNDqtL9+KTwyCM1ELMneKTPZUmHU6vougfmecQFcvqms7A2655RVDDfXRG
jO0NDrIFsOXkJZFMV6utoB6RlRO2TbiILvINEnWYD4w0PVQ1arVIC81FPwIDAQAB
o4ICwzCCAr8wHQYDVR0OBBYEFONGluaoVXkd4YyhXPZ47qVzYGcrMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2Y2LzAzYWJh
Zi1mOGEwLTQxZmYtYTFiYy05ZGM0NjU3ZjQ5NzUvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjYvMDNhYmFm
LWY4YTAtNDFmZi1hMWJjLTlkYzQ2NTdmNDk3NS8xLzQwYVc1cWhWZVIzaGpLRmM5
bmp1cFhOZ1p5cy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF4GCCsGAQUF
BwEHAQH/BE8wTTA8BAIAATA2AwQEH6zwAwQDJdxgAwQDLudwAwQDTiggAwQDUPEw
AwQEXmaQAwQFX6wAAwQFbW3gAwQCuSDIMA0EAgACMAcDBQAqAQe4MA0GCSqGSIb3
DQEBCwUAA4IBAQBJmbquqH6w8Uds6TKj3rNUdxj+dfrvdceEMtTe+T08pQ0U64k+
LvbJ/MeDvAq2a0MuWAa8XUebM4qaU06DIgLtRkGv1jENMvrGDNYn9SmHApF84s2l
u0AUMZdIp/8rt1wQo4gi+VULH6MkJTiHnm02ggacOivNEmhFpaSBHRndlLPjeYVw
tjUmC72fcJFMIg/JcJbUOeVymdaa0XB030EzLAx+SZyd3rdJA9NXIeMLgJmhcIWy
utjBQFujr6/cusDAVRtzMFzS1IZxzL7pOBxHYPMQsomugpIqNtvk1l+JN24zysD/
J4euslStXbhClshobIeLkblvz1rsOeEM2tN0
-----END CERTIFICATE-----
Generated at Fri Apr 19 22:33:27 2024 by rpki-client on console-fra.rpki-client.org