Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/Fa8HL54VarwgxGhJjiMjFSxzaug.cer
File: Fa8HL54VarwgxGhJjiMjFSxzaug.cer (raw, json)
Hash identifier: 7FW+nFamZtSZ2JQTujIq1symw/AHV1YkMW0HmIo+Mr4=
Subject key identifier: 15:AF:07:2F:9E:15:6A:BC:20:C4:68:49:8E:23:23:15:2C:73:6A:E8
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC794B9885001311F9D1E8E80A45C5379
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/1b/12f26e-fb11-42e1-bacc-3969eca7b7d4/1/Fa8HL54VarwgxGhJjiMjFSxzaug.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/1b/12f26e-fb11-42e1-bacc-3969eca7b7d4/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 00:31:02 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 47702
IP: 93.175.192.0/20
IP: 213.109.224.0/20
IP: 2001:67c:11d4::/48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:94:b9:88:50:01:31:1f:9d:1e:8e:80:a4:5c:53:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 00:31:02 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=15af072f9e156abc20c468498e2323152c736ae8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:bd:f4:80:8e:11:d6:88:05:e5:a1:eb:0a:50:
ca:48:6a:a0:92:a0:ee:0c:3c:3b:c3:01:df:7d:f0:
d3:26:ac:bf:4f:b6:7e:80:10:10:4d:08:2e:c4:14:
2f:d0:c9:ac:46:a8:35:24:c9:5e:ce:b8:6f:60:48:
94:dc:33:c8:1b:1d:49:8a:03:ed:30:45:d7:ea:88:
60:e4:5a:99:ca:6e:8c:d6:35:c8:41:de:3c:09:10:
c1:0a:ea:dc:4f:ef:89:70:67:b9:d4:e4:24:58:3a:
0e:96:a6:c1:9a:6c:73:1f:7e:40:e9:14:fe:3e:11:
c9:57:f3:91:4e:8b:82:20:35:b7:81:16:6b:4e:41:
5b:61:cb:52:9b:b1:e7:05:9b:b4:83:0b:f7:b8:8a:
94:c6:03:c1:0c:07:d0:0b:02:73:2d:6a:1b:c1:eb:
d2:65:fe:27:fd:61:17:cc:2b:9d:77:20:1e:41:85:
71:af:d1:d9:11:10:c8:ea:90:0d:ad:2f:0d:07:1a:
70:f2:3d:d4:f4:34:68:a9:f0:33:0d:35:9d:8f:4b:
e2:55:60:d7:09:a7:60:d1:1e:a5:45:77:2d:22:15:
1d:7d:24:b0:84:46:64:06:4f:27:9b:c8:4b:6c:0c:
37:b7:6f:56:c5:05:a7:56:05:61:36:c6:d8:43:b9:
f3:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:AF:07:2F:9E:15:6A:BC:20:C4:68:49:8E:23:23:15:2C:73:6A:E8
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/12f26e-fb11-42e1-bacc-3969eca7b7d4/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/12f26e-fb11-42e1-bacc-3969eca7b7d4/1/Fa8HL54VarwgxGhJjiMjFSxzaug.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.175.192.0/20
213.109.224.0/20
IPv6:
2001:67c:11d4::/48
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
47702
Signature Algorithm: sha256WithRSAEncryption
7d:0a:93:ab:98:14:6d:1d:3e:bb:a9:6e:7d:5b:e8:81:1b:05:
86:91:d2:b7:f4:26:c5:3b:0e:61:b4:5c:1d:aa:f2:c7:cd:91:
66:52:d6:b1:2d:f9:1a:b5:be:97:2c:a5:c3:33:f7:f4:7e:fb:
d2:02:49:91:21:2a:1b:4a:a2:ee:d3:6f:ee:27:06:7f:4d:9a:
d1:83:64:cf:f1:f3:94:ea:ce:67:1e:8d:dd:01:86:60:de:54:
4c:fb:f1:1d:be:e9:69:ec:38:c0:39:98:89:2e:a9:c4:95:e6:
48:54:00:93:fb:58:c6:f2:ee:8e:a5:0e:22:b7:a1:7f:73:b5:
30:45:b1:47:e6:ff:31:03:c6:f5:27:61:f6:40:0a:6d:63:90:
52:16:82:f2:2e:79:42:fe:7f:34:ab:86:d4:2b:64:f6:1b:82:
82:5c:c3:46:74:5b:ef:41:b4:c5:2f:f9:1e:d6:11:64:1d:04:
38:4c:ef:c7:f1:cc:f4:d1:24:b3:dd:a9:f9:3e:cc:cf:6f:ba:
8d:ef:47:92:13:d7:67:05:fc:75:60:90:14:9c:8f:ed:da:8d:
0c:39:87:f7:9f:4e:aa:1e:95:59:60:09:80:68:5a:8b:98:cc:
72:f9:2f:63:75:24:e5:45:10:8a:3d:c3:e0:ae:c7:a5:fa:6f:
bf:22:c2:00
-----BEGIN CERTIFICATE-----
MIIFqzCCBJOgAwIBAgISAYzHlLmIUAExH50ejoCkXFN5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAyMDAzMTAyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxNWFmMDcyZjllMTU2YWJjMjBjNDY4NDk4ZTIzMjMxNTJjNzM2YWU4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs730gI4R1ogF5aHrClDKSGqgkqDu
DDw7wwHfffDTJqy/T7Z+gBAQTQguxBQv0MmsRqg1JMlezrhvYEiU3DPIGx1JigPt
MEXX6ohg5FqZym6M1jXIQd48CRDBCurcT++JcGe51OQkWDoOlqbBmmxzH35A6RT+
PhHJV/ORTouCIDW3gRZrTkFbYctSm7HnBZu0gwv3uIqUxgPBDAfQCwJzLWobwevS
Zf4n/WEXzCuddyAeQYVxr9HZERDI6pANrS8NBxpw8j3U9DRoqfAzDTWdj0viVWDX
Cadg0R6lRXctIhUdfSSwhEZkBk8nm8hLbAw3t29WxQWnVgVhNsbYQ7nzzwIDAQAB
o4ICtzCCArMwHQYDVR0OBBYEFBWvBy+eFWq8IMRoSY4jIxUsc2roMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzFiLzEyZjI2
ZS1mYjExLTQyZTEtYmFjYy0zOTY5ZWNhN2I3ZDQvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMWIvMTJmMjZl
LWZiMTEtNDJlMS1iYWNjLTM5NjllY2E3YjdkNC8xL0ZhOEhMNTRWYXJ3Z3hHaEpq
aU1qRlN4emF1Zy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDYGCCsGAQUF
BwEHAQH/BCcwJTASBAIAATAMAwQEXa/AAwQE1W3gMA8EAgACMAkDBwAgAQZ8EdQw
GgYIKwYBBQUHAQgBAf8ECzAJoAcwBQIDALpWMA0GCSqGSIb3DQEBCwUAA4IBAQB9
CpOrmBRtHT67qW59W+iBGwWGkdK39CbFOw5htFwdqvLHzZFmUtaxLfkatb6XLKXD
M/f0fvvSAkmRISobSqLu02/uJwZ/TZrRg2TP8fOU6s5nHo3dAYZg3lRM+/Edvulp
7DjAOZiJLqnEleZIVACT+1jG8u6OpQ4it6F/c7UwRbFH5v8xA8b1J2H2QAptY5BS
FoLyLnlC/n80q4bUK2T2G4KCXMNGdFvvQbTFL/ke1hFkHQQ4TO/H8cz00SSz3an5
PszPb7qN70eSE9dnBfx1YJAUnI/t2o0MOYf3n06qHpVZYAmAaFqLmMxy+S9jdSTl
RRCKPcPgrsel+m+/IsIA
-----END CERTIFICATE-----
Generated at Tue Nov 26 09:24:17 2024 by rpki-client on console-fra.rpki-client.org