Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/H0MPwJpxOySayqdniRHo0eMjOv0.cer
File: H0MPwJpxOySayqdniRHo0eMjOv0.cer (raw, json)
Hash identifier: nwUU/fGN0BTrHX7YrC8bpNM5UecOevOtvGDFMZHXvcA=
Subject key identifier: 1F:43:0F:C0:9A:71:3B:24:9A:CA:A7:67:89:11:E8:D1:E3:23:3A:FD
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC2DB5287F998D2BCE7FC2DC0EF90AC18
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/e0/26761e-7c6f-488e-a21d-be3917c5e2f7/1/H0MPwJpxOySayqdniRHo0eMjOv0.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/e0/26761e-7c6f-488e-a21d-be3917c5e2f7/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 02:30:02 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 59933
IP: 185.39.248.0/22
IP: 2a01:4ae0::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:db:52:87:f9:98:d2:bc:e7:fc:2d:c0:ef:90:ac:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 02:30:02 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1f430fc09a713b249acaa7678911e8d1e3233afd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:bf:0b:dc:56:f8:5f:ff:b5:03:c0:7e:52:19:
99:c2:cb:7d:6d:0e:13:97:cd:03:d2:15:29:dd:9d:
2a:16:1c:e4:1a:c2:f8:73:81:c8:49:19:83:f5:cb:
e8:e4:7c:b6:aa:79:29:27:2f:3f:03:eb:0b:ba:9d:
ba:36:24:35:04:b5:ca:c6:f8:b6:46:91:d1:8f:e2:
2d:f7:1f:71:5e:a0:3d:57:b5:c0:5c:14:ba:8b:15:
a1:b7:b2:ae:24:87:0e:4a:65:13:5e:55:e3:3f:68:
84:4c:f2:7f:b2:a4:0a:b3:a5:a4:9a:c6:44:f9:14:
23:93:3a:ea:29:01:ee:26:98:b4:d8:79:9d:de:02:
72:1b:e9:0d:e0:ae:0c:a7:dd:c5:2c:a0:71:f1:8a:
7c:6a:6b:27:eb:d3:79:16:b5:48:55:f5:d9:e2:28:
92:d1:17:84:36:c3:8c:c8:14:f6:47:a2:5c:57:b5:
43:ff:8c:02:18:71:33:39:ee:e7:5a:77:49:58:ee:
7e:b6:8a:07:30:9c:bc:30:8d:b9:bb:b0:fd:67:16:
cf:bc:39:4b:37:ab:b3:fb:54:61:59:68:a3:b1:13:
2c:da:35:02:30:e3:52:03:46:8e:7e:4b:2e:90:be:
9b:80:50:e0:18:bf:fc:2d:13:a1:58:f0:61:7c:bf:
94:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:43:0F:C0:9A:71:3B:24:9A:CA:A7:67:89:11:E8:D1:E3:23:3A:FD
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/26761e-7c6f-488e-a21d-be3917c5e2f7/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/26761e-7c6f-488e-a21d-be3917c5e2f7/1/H0MPwJpxOySayqdniRHo0eMjOv0.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.39.248.0/22
IPv6:
2a01:4ae0::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
59933
Signature Algorithm: sha256WithRSAEncryption
a6:7e:fd:ec:f8:87:bc:8a:f9:52:9d:5d:89:08:e5:fb:ea:f0:
6a:53:42:be:db:cb:0a:12:57:1c:a8:1a:82:6f:75:d9:b9:06:
b6:55:7e:a6:2d:f8:8a:f1:bb:04:56:cf:66:28:c5:34:a5:ec:
cb:67:c0:73:68:f0:93:2f:aa:de:4e:ae:07:fb:af:10:e6:83:
dd:c4:85:7e:92:a7:53:5e:08:69:4c:ab:42:d7:09:c3:67:23:
73:94:d5:ce:7f:00:60:d9:17:de:bb:cf:38:9a:bc:2b:c9:05:
c7:90:da:bd:08:8b:70:f6:5b:e0:1e:5f:3d:9f:b3:36:e3:19:
38:db:a4:f2:17:8b:db:de:cd:54:aa:7e:59:7c:83:c9:4c:d7:
35:21:d5:ba:a7:e6:b8:70:ed:86:b3:34:95:2a:ea:df:3a:a0:
ad:17:25:0c:f5:a0:96:f9:f1:d5:e4:71:88:dc:68:55:1c:a4:
45:8d:12:4a:5f:73:9d:a8:cf:8c:b0:a0:fd:3b:66:ca:e3:31:
ac:6d:f5:f6:30:1b:8b:e7:9f:eb:c0:ef:4b:2c:17:e8:16:4f:
d3:7c:a6:fa:e3:6a:49:20:f3:02:1b:db:9d:a1:da:ad:ff:0e:
e7:7b:6f:1f:3c:f9:d6:3e:a8:db:26:59:8c:90:81:b6:16:e2:
c2:e3:cc:be
-----BEGIN CERTIFICATE-----
MIIFozCCBIugAwIBAgISAYzC21KH+ZjSvOf8LcDvkKwYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAxMDIzMDAyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxZjQzMGZjMDlhNzEzYjI0OWFjYWE3Njc4OTExZThkMWUzMjMzYWZkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqb8L3Fb4X/+1A8B+UhmZwst9bQ4T
l80D0hUp3Z0qFhzkGsL4c4HISRmD9cvo5Hy2qnkpJy8/A+sLup26NiQ1BLXKxvi2
RpHRj+It9x9xXqA9V7XAXBS6ixWht7KuJIcOSmUTXlXjP2iETPJ/sqQKs6WkmsZE
+RQjkzrqKQHuJpi02Hmd3gJyG+kN4K4Mp93FLKBx8Yp8amsn69N5FrVIVfXZ4iiS
0ReENsOMyBT2R6JcV7VD/4wCGHEzOe7nWndJWO5+tooHMJy8MI25u7D9ZxbPvDlL
N6uz+1RhWWijsRMs2jUCMONSA0aOfksukL6bgFDgGL/8LROhWPBhfL+UpwIDAQAB
o4ICrzCCAqswHQYDVR0OBBYEFB9DD8CacTskmsqnZ4kR6NHjIzr9MB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2UwLzI2NzYx
ZS03YzZmLTQ4OGUtYTIxZC1iZTM5MTdjNWUyZjcvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZTAvMjY3NjFl
LTdjNmYtNDg4ZS1hMjFkLWJlMzkxN2M1ZTJmNy8xL0gwTVB3SnB4T3lTYXlxZG5p
UkhvMGVNak92MC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF
BwEHAQH/BB8wHTAMBAIAATAGAwQCuSf4MA0EAgACMAcDBQAqAUrgMBoGCCsGAQUF
BwEIAQH/BAswCaAHMAUCAwDqHTANBgkqhkiG9w0BAQsFAAOCAQEApn797PiHvIr5
Up1diQjl++rwalNCvtvLChJXHKgagm912bkGtlV+pi34ivG7BFbPZijFNKXsy2fA
c2jwky+q3k6uB/uvEOaD3cSFfpKnU14IaUyrQtcJw2cjc5TVzn8AYNkX3rvPOJq8
K8kFx5DavQiLcPZb4B5fPZ+zNuMZONuk8heL297NVKp+WXyDyUzXNSHVuqfmuHDt
hrM0lSrq3zqgrRclDPWglvnx1eRxiNxoVRykRY0SSl9znajPjLCg/TtmyuMxrG31
9jAbi+ef68DvSywX6BZP03ym+uNqSSDzAhvbnaHarf8O53tvHzz51j6o2yZZjJCB
thbiwuPMvg==
-----END CERTIFICATE-----
Generated at Sat Nov 23 10:47:43 2024 by rpki-client on console-ams.rpki-client.org