Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.cer
File: 8TUzOZ9V61LmsiAMfK5CcrdNZGQ.cer (raw, json)
Hash identifier: fG4RiCfvXWI+G6j1G92+EoaDNefdMFuTtwVmqtNO8D8=
Subject key identifier: F1:35:33:39:9F:55:EB:52:E6:B2:20:0C:7C:AE:42:72:B7:4D:64:64
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CCA286E4D3A1B1FCAB9D2990E3D56CB5E
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 12:31:36 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 197343
AS: 204650
AS: 210609
IP: 5.56.128.0/22
IP: 5.57.32.0/21
IP: 37.32.40.0/21
IP: 178.239.144.0/20
IP: 185.26.32.0/22
IP: 185.124.172.0/22
IP: 185.212.48.0/22
IP: 185.215.228.0/22
IP: 185.243.48.0/22
IP: 2a00:7040::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 16:12:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:28:6e:4d:3a:1b:1f:ca:b9:d2:99:0e:3d:56:cb:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 12:31:36 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f13533399f55eb52e6b2200c7cae4272b74d6464
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:7b:b6:9b:b2:5e:74:c6:94:73:cf:2e:b7:64:
54:ea:fa:81:bc:e4:5a:b6:e7:cf:9c:d3:5a:a5:60:
54:7f:b3:a8:5a:60:eb:aa:c6:ef:7f:96:03:28:ef:
42:83:08:2b:ea:7d:41:db:0d:08:57:1d:10:ee:bf:
fc:cd:85:8a:2e:23:11:e8:03:44:47:34:72:4b:8e:
5e:ec:8f:79:2e:b3:b3:62:31:ed:8e:32:ae:0d:46:
40:68:5f:a7:49:35:90:ae:e5:f9:28:d2:e5:0c:95:
60:9a:4e:14:5e:d4:6e:42:40:e9:69:aa:65:4f:61:
8f:5f:82:74:5d:f5:f8:76:89:2c:ff:b9:4c:75:3d:
b9:d5:75:dd:d1:14:8f:aa:f4:eb:50:83:3c:32:f1:
cf:ba:f1:22:99:c5:89:a2:d3:b3:2f:69:ff:c6:72:
f6:11:14:02:99:d1:11:31:b0:7e:de:f9:22:55:fe:
f9:c6:32:60:b3:3a:68:01:4d:2e:2d:5a:51:5f:33:
da:f7:08:8e:7e:a8:84:b9:2a:98:0d:82:13:57:01:
85:89:c3:7d:31:51:b7:1b:1d:9c:a9:65:4a:bc:2d:
f2:0e:b3:54:a5:1e:99:99:3e:4c:0c:0d:47:6b:dc:
bd:26:2b:59:25:3d:24:43:db:b5:c2:3e:8b:ba:40:
ce:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:35:33:39:9F:55:EB:52:E6:B2:20:0C:7C:AE:42:72:B7:4D:64:64
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.56.128.0/22
5.57.32.0/21
37.32.40.0/21
178.239.144.0/20
185.26.32.0/22
185.124.172.0/22
185.212.48.0/22
185.215.228.0/22
185.243.48.0/22
IPv6:
2a00:7040::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
197343
204650
210609
Signature Algorithm: sha256WithRSAEncryption
84:b5:8a:77:94:84:73:b0:27:e4:72:76:e5:f7:4c:0a:f2:59:
32:38:30:c6:d7:ca:a0:3a:f2:f5:80:58:20:37:d2:81:67:46:
25:2e:e4:4b:78:32:0f:a7:e8:c8:e0:cb:7c:45:13:67:5d:ce:
b5:7b:25:ef:78:29:e3:f1:48:7b:9e:83:28:e0:8a:2c:cb:7f:
27:eb:37:f9:19:06:c9:00:9b:34:d1:83:8c:a5:07:42:ea:7f:
c5:29:93:df:6d:72:85:45:3b:bd:a4:65:f7:7d:6e:c8:08:2c:
28:ea:20:8e:26:32:04:eb:86:18:d1:45:23:f8:ff:82:10:7d:
30:a5:4f:68:29:55:57:94:30:ff:24:46:00:06:8c:09:8f:61:
7f:6e:8a:fa:ef:2d:d8:20:88:1f:a6:dd:4b:81:5e:c7:65:f1:
ab:c0:6d:3a:da:de:03:a8:6b:cc:23:1d:0c:9a:61:97:8d:ce:
5a:9e:2c:c5:1e:cd:39:02:89:bc:dd:98:8e:2a:8a:9b:3a:e7:
e3:9d:09:c1:ea:1a:9f:f8:c5:9b:b6:da:ce:1f:c7:eb:88:53:
2a:c9:d7:be:6e:19:e3:bd:0f:bf:95:26:4f:41:72:5b:fe:56:
e0:e9:25:1a:c5:99:b8:e5:94:4e:b6:e5:3a:19:94:9f:c2:62:
31:13:03:97
-----BEGIN CERTIFICATE-----
MIIF3TCCBMWgAwIBAgISAYzKKG5NOhsfyrnSmQ49VsteMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAyMTIzMTM2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmMTM1MzMzOTlmNTVlYjUyZTZiMjIwMGM3Y2FlNDI3MmI3NGQ2NDY0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1Hu2m7JedMaUc88ut2RU6vqBvORa
tufPnNNapWBUf7OoWmDrqsbvf5YDKO9Cgwgr6n1B2w0IVx0Q7r/8zYWKLiMR6ANE
RzRyS45e7I95LrOzYjHtjjKuDUZAaF+nSTWQruX5KNLlDJVgmk4UXtRuQkDpaapl
T2GPX4J0XfX4doks/7lMdT251XXd0RSPqvTrUIM8MvHPuvEimcWJotOzL2n/xnL2
ERQCmdERMbB+3vkiVf75xjJgszpoAU0uLVpRXzPa9wiOfqiEuSqYDYITVwGFicN9
MVG3Gx2cqWVKvC3yDrNUpR6ZmT5MDA1Ha9y9JitZJT0kQ9u1wj6LukDOJQIDAQAB
o4IC6TCCAuUwHQYDVR0OBBYEFPE1MzmfVetS5rIgDHyuQnK3TWRkMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzkyLzg0NGVl
Yi1jZGYxLTQ3ZjEtYmNmYS05ODkxNjY4ODE5NjkvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTIvODQ0ZWVi
LWNkZjEtNDdmMS1iY2ZhLTk4OTE2Njg4MTk2OS8xLzhUVXpPWjlWNjFMbXNpQU1m
SzVDY3JkTlpHUS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF4GCCsGAQUF
BwEHAQH/BE8wTTA8BAIAATA2AwQCBTiAAwQDBTkgAwQDJSAoAwQEsu+QAwQCuRog
AwQCuXysAwQCudQwAwQCudfkAwQCufMwMA0EAgACMAcDBQAqAHBAMCQGCCsGAQUF
BwEIAQH/BBUwE6ARMA8CAwMC3wIDAx9qAgMDNrEwDQYJKoZIhvcNAQELBQADggEB
AIS1ineUhHOwJ+RyduX3TAryWTI4MMbXyqA68vWAWCA30oFnRiUu5Et4Mg+n6Mjg
y3xFE2ddzrV7Je94KePxSHuegyjgiizLfyfrN/kZBskAmzTRg4ylB0Lqf8Upk99t
coVFO72kZfd9bsgILCjqII4mMgTrhhjRRSP4/4IQfTClT2gpVVeUMP8kRgAGjAmP
YX9uivrvLdggiB+m3UuBXsdl8avAbTra3gOoa8wjHQyaYZeNzlqeLMUezTkCibzd
mI4qips65+OdCcHqGp/4xZu22s4fx+uIUyrJ175uGeO9D7+VJk9Bclv+VuDpJRrF
mbjllE625ToZlJ/CYjETA5c=
-----END CERTIFICATE-----
Generated at Mon Nov 25 22:32:03 2024 by rpki-client on console-fra.rpki-client.org