Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8RqaRFV9Rv8tgIiiKIha_wANwqI.cer
File: 8RqaRFV9Rv8tgIiiKIha_wANwqI.cer (raw, json)
Hash identifier: WRe2sjDg/lWH9zCwJPYY53tbhCCd02aUzcqUQz7f/G0=
Subject key identifier: F1:1A:9A:44:55:7D:46:FF:2D:80:88:A2:28:88:5A:FF:00:0D:C2:A2
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC5DC3F9C3F84B4EBF6DCCA468417BD5A
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/4c/07e4b2-6b38-4bc0-a680-a60bc7d07878/1/8RqaRFV9Rv8tgIiiKIha_wANwqI.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/4c/07e4b2-6b38-4bc0-a680-a60bc7d07878/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 16:29:54 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 48398
IP: 91.209.145.0/24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Dec 2024 06:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:dc:3f:9c:3f:84:b4:eb:f6:dc:ca:46:84:17:bd:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 16:29:54 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f11a9a44557d46ff2d8088a228885aff000dc2a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:c6:76:c8:b4:23:3e:82:43:01:1c:d3:aa:76:
25:e8:e2:c2:8c:d0:f6:7f:11:a0:17:9c:9b:c7:57:
d0:92:25:12:9c:b3:05:f1:0a:1f:4e:c0:30:ea:8b:
af:ad:dd:5e:97:7b:a6:03:71:72:83:44:b5:e5:f0:
63:da:a9:60:57:68:4d:0e:4a:7b:52:bd:ef:00:05:
62:37:16:5b:89:a9:dd:ea:f1:a5:47:0d:e1:03:1d:
cd:9f:2d:99:f8:86:9e:51:4b:21:5e:dc:29:0f:5b:
be:0a:0a:02:56:df:be:71:f8:77:ea:bf:b4:82:c1:
1c:6b:12:3a:d7:93:bc:85:e9:8f:fd:c2:44:4b:e7:
3d:17:91:18:34:3b:a1:cd:85:73:e0:f2:66:b6:cc:
ce:32:b5:04:66:13:61:2a:3d:17:1b:87:6a:ec:2c:
14:14:c5:7a:c0:ed:da:a7:2e:f5:41:dd:65:41:cd:
61:1a:de:38:9c:75:a4:06:2e:de:70:e8:0b:e2:c2:
17:7b:10:a3:0a:fd:dd:96:7b:9a:57:8e:07:8f:c0:
d8:40:8c:30:9c:eb:c2:a5:3e:90:18:17:98:8a:42:
10:09:55:2b:e3:b6:8c:c4:82:67:cb:27:90:51:f3:
45:82:e1:8a:15:cd:e1:d3:5a:f1:55:6c:77:b2:9a:
db:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:1A:9A:44:55:7D:46:FF:2D:80:88:A2:28:88:5A:FF:00:0D:C2:A2
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/07e4b2-6b38-4bc0-a680-a60bc7d07878/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/07e4b2-6b38-4bc0-a680-a60bc7d07878/1/8RqaRFV9Rv8tgIiiKIha_wANwqI.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.209.145.0/24
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
48398
Signature Algorithm: sha256WithRSAEncryption
8e:09:8b:6d:e4:54:fa:37:a4:40:45:9a:38:0f:06:08:7e:33:
5a:f2:78:e6:8b:78:88:3f:33:c6:7a:45:b4:85:25:72:e8:b6:
e1:b0:c1:c7:68:08:21:73:37:db:d2:be:23:6f:93:08:44:45:
3f:3f:89:bf:80:37:65:9c:24:8d:e2:dd:c9:56:d9:d5:e6:93:
e8:8f:95:9c:19:e4:e2:36:19:65:35:b9:a0:b4:fc:d9:ec:53:
2d:a0:7a:d4:fa:d3:0e:8f:0d:e4:e1:9a:10:3a:a8:07:6e:c6:
60:97:78:62:a5:40:c1:e6:c6:1d:2f:a9:26:27:3d:07:26:7f:
17:12:92:b6:d0:87:a8:28:15:e0:15:4e:16:b8:1e:c3:bd:b2:
f9:35:d0:df:a2:e7:79:2f:94:07:7c:41:0d:08:cb:9b:c9:2e:
31:b8:f8:41:80:f2:7e:c0:f8:6e:4c:66:e3:d8:5c:26:b4:bf:
86:b7:ac:74:7b:34:81:22:cb:64:8a:55:fd:a5:2d:0e:53:10:
c8:c2:de:2b:cd:4b:05:b8:67:bc:46:8b:ba:b4:53:21:69:a6:
67:c2:69:54:eb:00:50:12:a1:ea:81:5b:2d:1f:6a:3e:af:93:
43:01:37:78:1c:61:a2:13:f1:f6:a1:fb:05:f7:12:0f:d3:5d:
8a:07:d2:3a
-----BEGIN CERTIFICATE-----
MIIFlDCCBHygAwIBAgISAYzF3D+cP4S06/bcykaEF71aMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAxMTYyOTU0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmMTFhOWE0NDU1N2Q0NmZmMmQ4MDg4YTIyODg4NWFmZjAwMGRjMmEyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsMZ2yLQjPoJDARzTqnYl6OLCjND2
fxGgF5ybx1fQkiUSnLMF8QofTsAw6ouvrd1el3umA3Fyg0S15fBj2qlgV2hNDkp7
Ur3vAAViNxZbiand6vGlRw3hAx3Nny2Z+IaeUUshXtwpD1u+CgoCVt++cfh36r+0
gsEcaxI615O8hemP/cJES+c9F5EYNDuhzYVz4PJmtszOMrUEZhNhKj0XG4dq7CwU
FMV6wO3apy71Qd1lQc1hGt44nHWkBi7ecOgL4sIXexCjCv3dlnuaV44Hj8DYQIww
nOvCpT6QGBeYikIQCVUr47aMxIJnyyeQUfNFguGKFc3h01rxVWx3sprbhQIDAQAB
o4ICoDCCApwwHQYDVR0OBBYEFPEamkRVfUb/LYCIoiiIWv8ADcKiMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzRjLzA3ZTRi
Mi02YjM4LTRiYzAtYTY4MC1hNjBiYzdkMDc4NzgvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNGMvMDdlNGIy
LTZiMzgtNGJjMC1hNjgwLWE2MGJjN2QwNzg3OC8xLzhScWFSRlY5UnY4dGdJaWlL
SWhhX3dBTndxSS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF
BwEHAQH/BBAwDjAMBAIAATAGAwQAW9GRMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUC
AwC9DjANBgkqhkiG9w0BAQsFAAOCAQEAjgmLbeRU+jekQEWaOA8GCH4zWvJ45ot4
iD8zxnpFtIUlcui24bDBx2gIIXM329K+I2+TCERFPz+Jv4A3ZZwkjeLdyVbZ1eaT
6I+VnBnk4jYZZTW5oLT82exTLaB61PrTDo8N5OGaEDqoB27GYJd4YqVAwebGHS+p
Jic9ByZ/FxKSttCHqCgV4BVOFrgew72y+TXQ36LneS+UB3xBDQjLm8kuMbj4QYDy
fsD4bkxm49hcJrS/hresdHs0gSLLZIpV/aUtDlMQyMLeK81LBbhnvEaLurRTIWmm
Z8JpVOsAUBKh6oFbLR9qPq+TQwE3eBxhohPx9qH7BfcSD9NdigfSOg==
-----END CERTIFICATE-----
Generated at Thu Dec 26 16:59:36 2024 by rpki-client on console-fra.rpki-client.org