Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4BpLB7xMpvoFciL96uhg9kRAR-A.cer
File: 4BpLB7xMpvoFciL96uhg9kRAR-A.cer (raw, json)
Hash identifier: StoquoG9IhpJROMtYP2xXWqundP9wYf9ODL5YWJ9GZM=
Subject key identifier: E0:1A:4B:07:BC:4C:A6:FA:05:72:22:FD:EA:E8:60:F6:44:40:47:E0
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019192C99243C06DDDC1BCD8C2897BDC3245
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/43/944c8f-f0f8-4c71-9ede-7a3c532d3a55/1/4BpLB7xMpvoFciL96uhg9kRAR-A.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/43/944c8f-f0f8-4c71-9ede-7a3c532d3a55/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 27 Aug 2024 07:42:49 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 214708
IP: 194.146.94.0/24
IP: 2a13:eb80::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Sep 2024 14:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:92:c9:92:43:c0:6d:dd:c1:bc:d8:c2:89:7b:dc:32:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Aug 27 07:42:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e01a4b07bc4ca6fa057222fdeae860f6444047e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:26:42:d4:35:d6:80:5b:c9:92:55:90:4d:94:
9e:38:4f:2f:2c:67:17:0a:56:45:89:0a:8f:e8:66:
8c:29:d0:8f:8b:4f:78:71:43:00:f4:c2:4d:c0:df:
7a:d4:18:7c:7f:ae:9e:7f:88:9e:8b:53:b5:74:cd:
13:2b:4b:6a:28:05:c0:43:4f:e8:29:69:2c:84:27:
0d:6a:ca:bd:c3:87:a0:8e:55:6e:4c:92:d7:19:d7:
cf:19:36:36:a7:1e:3c:7b:a0:94:71:14:3a:31:01:
9e:35:4d:f8:51:94:1e:c8:91:ab:12:23:c9:77:54:
62:c4:c0:df:d1:f0:de:25:0f:f9:61:26:73:b0:70:
1a:29:89:d9:d5:6d:38:ad:e4:db:ee:ed:d3:93:bb:
b9:a5:e9:ab:c8:b2:53:b1:23:cf:be:c1:40:e1:b4:
18:26:8d:9b:6d:ed:9e:78:6f:c8:ae:e2:06:87:23:
69:16:12:8b:52:78:66:9c:09:92:00:c3:8e:22:73:
54:f0:90:92:ad:ff:40:10:0c:fa:3a:4d:49:f3:9e:
8a:50:21:a2:95:2e:37:3f:3f:e9:d5:cc:10:30:df:
93:b0:df:f4:d9:69:e5:7a:31:8c:9a:ef:52:52:38:
65:d7:33:ad:b1:49:ff:f9:fe:35:cb:dd:03:73:f4:
66:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:1A:4B:07:BC:4C:A6:FA:05:72:22:FD:EA:E8:60:F6:44:40:47:E0
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/944c8f-f0f8-4c71-9ede-7a3c532d3a55/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/944c8f-f0f8-4c71-9ede-7a3c532d3a55/1/4BpLB7xMpvoFciL96uhg9kRAR-A.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.146.94.0/24
IPv6:
2a13:eb80::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
214708
Signature Algorithm: sha256WithRSAEncryption
5f:20:63:f4:56:cf:0a:df:c6:3d:b4:9c:31:8a:ff:c9:0e:f2:
6e:85:8e:81:f5:10:ae:e7:6f:f8:b0:dc:a7:4a:e3:8b:bf:9f:
fb:aa:4f:9e:c8:42:b1:70:6b:62:36:f2:d5:8c:37:54:75:5c:
c0:b3:5a:63:b2:b3:bb:77:b5:5e:24:f2:49:d2:d9:70:4b:02:
9f:6b:10:31:84:70:39:fc:12:5d:f6:03:08:b2:11:42:61:3b:
df:56:db:06:36:47:b3:c1:62:00:da:b9:e3:b4:9a:ca:be:e6:
e3:b6:9b:7f:02:29:51:56:24:1f:74:fd:6a:b6:2d:1c:a2:32:
79:2e:23:91:1e:00:ae:59:c5:fe:1c:92:5d:f3:6d:bc:bb:55:
c5:8d:17:13:7d:b6:be:85:87:1b:2b:a5:70:04:3d:25:3a:96:
8f:79:af:99:25:4a:f1:81:12:d1:01:a8:2c:7a:da:70:58:17:
0b:2b:8f:70:43:35:34:a8:30:33:fe:a1:d2:b0:29:7e:0d:26:
c8:aa:fc:c8:ee:75:66:05:c0:31:ea:0b:14:26:c2:59:22:d9:
6f:7d:72:1a:6f:42:87:e0:42:99:de:56:f4:22:18:ff:57:68:
f8:aa:f5:a6:50:f3:13:c8:29:b0:c3:6f:b9:ef:55:c8:7d:3b:
f7:80:de:72
-----BEGIN CERTIFICATE-----
MIIFozCCBIugAwIBAgISAZGSyZJDwG3dwbzYwol73DJFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwODI3MDc0MjQ5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlMDFhNGIwN2JjNGNhNmZhMDU3MjIyZmRlYWU4NjBmNjQ0NDA0N2UwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkiZC1DXWgFvJklWQTZSeOE8vLGcX
ClZFiQqP6GaMKdCPi094cUMA9MJNwN961Bh8f66ef4iei1O1dM0TK0tqKAXAQ0/o
KWkshCcNasq9w4egjlVuTJLXGdfPGTY2px48e6CUcRQ6MQGeNU34UZQeyJGrEiPJ
d1RixMDf0fDeJQ/5YSZzsHAaKYnZ1W04reTb7u3Tk7u5pemryLJTsSPPvsFA4bQY
Jo2bbe2eeG/IruIGhyNpFhKLUnhmnAmSAMOOInNU8JCSrf9AEAz6Ok1J856KUCGi
lS43Pz/p1cwQMN+TsN/02WnlejGMmu9SUjhl1zOtsUn/+f41y90Dc/RmRQIDAQAB
o4ICrzCCAqswHQYDVR0OBBYEFOAaSwe8TKb6BXIi/eroYPZEQEfgMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzQzLzk0NGM4
Zi1mMGY4LTRjNzEtOWVkZS03YTNjNTMyZDNhNTUvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDMvOTQ0Yzhm
LWYwZjgtNGM3MS05ZWRlLTdhM2M1MzJkM2E1NS8xLzRCcExCN3hNcHZvRmNpTDk2
dWhnOWtSQVItQS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF
BwEHAQH/BB8wHTAMBAIAATAGAwQAwpJeMA0EAgACMAcDBQMqE+uAMBoGCCsGAQUF
BwEIAQH/BAswCaAHMAUCAwNGtDANBgkqhkiG9w0BAQsFAAOCAQEAXyBj9FbPCt/G
PbScMYr/yQ7yboWOgfUQrudv+LDcp0rji7+f+6pPnshCsXBrYjby1Yw3VHVcwLNa
Y7Kzu3e1XiTySdLZcEsCn2sQMYRwOfwSXfYDCLIRQmE731bbBjZHs8FiANq547Sa
yr7m47abfwIpUVYkH3T9arYtHKIyeS4jkR4ArlnF/hySXfNtvLtVxY0XE322voWH
GyulcAQ9JTqWj3mvmSVK8YES0QGoLHracFgXCyuPcEM1NKgwM/6h0rApfg0myKr8
yO51ZgXAMeoLFCbCWSLZb31yGm9Ch+BCmd5W9CIY/1do+Kr1plDzE8gpsMNvue9V
yH0794Decg==
-----END CERTIFICATE-----
Generated at Sat Sep 7 21:02:25 2024 by rpki-client on console-ams.rpki-client.org