Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5JWsuv5G7y9NbFH88jvXL2Oc_Qs.cer
File: 5JWsuv5G7y9NbFH88jvXL2Oc_Qs.cer (raw, json)
Hash identifier: 0kS1DiQqqIqWYvbDUXn+plt4XZTJsddIwv++xuZ3MPw=
Subject key identifier: E4:95:AC:BA:FE:46:EF:2F:4D:6C:51:FC:F2:3B:D7:2F:63:9C:FD:0B
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0192434DB07F004522C0995B5D3D6E043F40
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/b3/440877-319d-4630-a691-7991b4e4bfa2/1/5JWsuv5G7y9NbFH88jvXL2Oc_Qs.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/b3/440877-319d-4630-a691-7991b4e4bfa2/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 30 Sep 2024 14:20:17 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 12453
IP: 2.56.160.0/22
IP: 91.223.248.0/24
IP: 185.31.52.0/22
IP: 185.85.32.0/22
IP: 185.155.124.0/22
IP: 185.224.24.0/22
IP: 194.32.208.0/24
IP: 194.59.177.0/24
IP: 195.93.174.0/23
IP: 2a0d:5dc0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:43:4d:b0:7f:00:45:22:c0:99:5b:5d:3d:6e:04:3f:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Sep 30 14:20:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e495acbafe46ef2f4d6c51fcf23bd72f639cfd0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:b5:9b:73:fa:3a:dc:cd:77:fc:ab:3b:30:c6:
76:2b:4f:7d:34:f5:28:fa:4e:9f:bf:ff:a5:62:b6:
39:ba:7b:80:c1:6d:1d:fb:14:e6:0a:66:1f:48:1c:
5d:e7:38:bf:8e:87:18:df:e9:20:fb:04:cf:a9:e9:
a5:88:8c:92:77:4b:45:45:7e:52:73:63:e9:e6:3a:
59:13:78:7f:96:f2:d3:c7:39:e4:2d:3d:b1:33:44:
e0:7f:0a:0f:1d:5e:3f:fb:ce:92:5d:f6:4a:6a:97:
3e:dd:41:19:36:90:24:6c:75:6e:8d:93:b8:2b:c1:
2e:a8:96:97:63:10:8c:08:b1:a0:87:fb:4a:c9:dc:
05:6b:6f:0f:4e:2a:66:aa:a3:96:c7:6a:d1:d9:6e:
b0:ec:47:88:e7:fa:41:2d:c8:72:5f:ee:05:16:c3:
c9:37:08:8f:ab:c4:7c:57:a9:9e:5f:73:5e:87:a5:
e1:72:f3:83:3d:4d:22:d8:a6:16:37:f8:65:6d:f1:
09:77:88:ff:d7:d2:b1:c9:90:56:7f:80:1e:c6:bd:
51:e7:a3:92:5c:55:11:8a:cd:13:6c:9d:6d:9f:d4:
fa:c1:4d:c1:17:3e:86:30:51:1c:4d:40:cd:ae:36:
de:e3:6a:3c:a2:16:15:e3:01:a5:8c:39:73:8a:3f:
66:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:95:AC:BA:FE:46:EF:2F:4D:6C:51:FC:F2:3B:D7:2F:63:9C:FD:0B
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/440877-319d-4630-a691-7991b4e4bfa2/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/440877-319d-4630-a691-7991b4e4bfa2/1/5JWsuv5G7y9NbFH88jvXL2Oc_Qs.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.160.0/22
91.223.248.0/24
185.31.52.0/22
185.85.32.0/22
185.155.124.0/22
185.224.24.0/22
194.32.208.0/24
194.59.177.0/24
195.93.174.0/23
IPv6:
2a0d:5dc0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
12453
Signature Algorithm: sha256WithRSAEncryption
0f:60:9c:64:62:63:0e:00:3d:a6:ac:ba:ec:b8:98:39:e5:80:
ca:fa:bf:f3:4a:d3:26:8f:fd:d0:a3:b8:ce:37:9c:dc:c0:6f:
b6:a2:15:3b:10:a0:f7:15:e7:2a:94:3c:e3:83:66:97:a3:03:
b5:f0:1d:cf:d8:e4:27:07:71:bb:a1:6d:ec:06:bc:c9:05:69:
55:de:a1:a6:52:e2:47:ec:41:77:ef:c9:d2:43:f8:32:5c:fb:
7c:a1:08:a9:ab:e3:e8:52:75:f7:e0:2e:4f:17:76:ee:7c:9a:
da:47:7f:f8:fb:4a:77:f1:e2:15:08:1e:40:5a:31:d1:f6:85:
23:b0:52:92:0f:f0:ab:65:ff:89:36:51:ec:fd:b4:2d:50:6f:
fb:88:ad:b6:b6:bf:d1:fe:12:f5:b9:3d:fc:4f:3d:a3:9a:75:
7a:7a:f6:b1:8d:37:f7:ed:62:86:6c:35:22:f2:d9:af:47:69:
ab:2d:5b:ac:ef:44:f3:c5:47:39:0d:a6:ba:64:2a:c3:6a:b8:
45:c2:1c:43:aa:12:4f:63:b5:05:32:29:33:31:79:97:74:36:
ef:53:16:cf:bf:e3:59:d6:f5:61:38:b2:32:8a:db:f3:6e:fe:
68:7e:4a:7b:7f:06:72:23:52:01:0b:61:09:31:d7:fd:ef:e7:
ef:ec:f8:55
-----BEGIN CERTIFICATE-----
MIIF0jCCBLqgAwIBAgISAZJDTbB/AEUiwJlbXT1uBD9AMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwOTMwMTQyMDE3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlNDk1YWNiYWZlNDZlZjJmNGQ2YzUxZmNmMjNiZDcyZjYzOWNmZDBiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqrWbc/o63M13/Ks7MMZ2K099NPUo
+k6fv/+lYrY5unuAwW0d+xTmCmYfSBxd5zi/jocY3+kg+wTPqemliIySd0tFRX5S
c2Pp5jpZE3h/lvLTxznkLT2xM0TgfwoPHV4/+86SXfZKapc+3UEZNpAkbHVujZO4
K8EuqJaXYxCMCLGgh/tKydwFa28PTipmqqOWx2rR2W6w7EeI5/pBLchyX+4FFsPJ
NwiPq8R8V6meX3Neh6XhcvODPU0i2KYWN/hlbfEJd4j/19KxyZBWf4Aexr1R56OS
XFURis0TbJ1tn9T6wU3BFz6GMFEcTUDNrjbe42o8ohYV4wGljDlzij9mswIDAQAB
o4IC3jCCAtowHQYDVR0OBBYEFOSVrLr+Ru8vTWxR/PI71y9jnP0LMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2IzLzQ0MDg3
Ny0zMTlkLTQ2MzAtYTY5MS03OTkxYjRlNGJmYTIvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjMvNDQwODc3
LTMxOWQtNDYzMC1hNjkxLTc5OTFiNGU0YmZhMi8xLzVKV3N1djVHN3k5TmJGSDg4
anZYTDJPY19Rcy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF4GCCsGAQUF
BwEHAQH/BE8wTTA8BAIAATA2AwQCAjigAwQAW9/4AwQCuR80AwQCuVUgAwQCuZt8
AwQCueAYAwQAwiDQAwQAwjuxAwQBw12uMA0EAgACMAcDBQMqDV3AMBkGCCsGAQUF
BwEIAQH/BAowCKAGMAQCAjClMA0GCSqGSIb3DQEBCwUAA4IBAQAPYJxkYmMOAD2m
rLrsuJg55YDK+r/zStMmj/3Qo7jON5zcwG+2ohU7EKD3FecqlDzjg2aXowO18B3P
2OQnB3G7oW3sBrzJBWlV3qGmUuJH7EF378nSQ/gyXPt8oQipq+PoUnX34C5PF3bu
fJraR3/4+0p38eIVCB5AWjHR9oUjsFKSD/CrZf+JNlHs/bQtUG/7iK22tr/R/hL1
uT38Tz2jmnV6evaxjTf37WKGbDUi8tmvR2mrLVus70TzxUc5Daa6ZCrDarhFwhxD
qhJPY7UFMikzMXmXdDbvUxbPv+NZ1vVhOLIyitvzbv5ofkp7fwZyI1IBC2EJMdf9
7+fv7PhV
-----END CERTIFICATE-----
Generated at Sat Nov 23 09:58:39 2024 by rpki-client on console-fra.rpki-client.org