Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/HqsBKTydvRqdatyGGCtSDNF2wAc.cer
File: HqsBKTydvRqdatyGGCtSDNF2wAc.cer (raw, json)
Hash identifier: N4GWRfDBBABZ9lpNExXwD/NJAFe3qHJNTOu6pMIaf9w=
Subject key identifier: 1E:AB:01:29:3C:9D:BD:1A:9D:6A:DC:86:18:2B:52:0C:D1:76:C0:07
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC5DCCD67BB34EA30CDEF8EA460A5BB1A
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/11/c00c13-791a-4e15-baf7-e03ac589a03f/1/HqsBKTydvRqdatyGGCtSDNF2wAc.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/11/c00c13-791a-4e15-baf7-e03ac589a03f/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 16:30:31 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 196945
IP: 91.217.155.0/24
IP: 185.106.16.0/22
IP: 2a06:3ac0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:dc:cd:67:bb:34:ea:30:cd:ef:8e:a4:60:a5:bb:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 16:30:31 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1eab01293c9dbd1a9d6adc86182b520cd176c007
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:64:68:4d:8b:02:92:4c:05:7f:d1:64:b2:67:
09:82:fd:e8:94:a5:55:a4:dd:bb:28:f7:f1:7a:b7:
99:93:69:07:38:1e:bd:56:ce:32:1a:11:8b:af:1f:
fa:43:25:69:dd:38:44:d4:98:ed:fa:6c:12:41:85:
66:2f:10:d2:3d:ba:db:69:50:8b:dc:17:a5:7f:bf:
3c:e9:d3:87:a2:10:25:4f:9b:b9:b9:0a:4a:d8:0f:
5a:0c:37:c0:72:c1:85:71:a1:83:0a:4f:de:64:c7:
80:4c:83:fa:de:9c:b5:7f:b1:7f:2f:aa:ca:69:04:
3b:ba:d5:ff:ee:d2:73:12:de:ed:21:d9:a3:90:db:
20:e1:66:fd:8c:b8:d8:e6:bb:36:b2:21:1b:c2:b7:
6d:77:e2:d6:83:c5:1f:f4:a8:57:bc:42:80:77:93:
fc:d3:03:e7:8c:8e:41:c4:51:af:26:e8:ef:84:95:
36:26:87:94:4e:ab:4e:f0:99:62:d6:c7:c5:2f:27:
a0:37:8a:f2:65:98:77:49:97:96:80:a0:e2:7a:e3:
21:fa:67:69:e1:92:4f:2d:7e:83:0e:e5:93:6d:69:
88:0f:c5:ba:cf:8c:cb:de:26:d7:37:3b:fb:17:8f:
ab:98:b6:07:d1:be:02:b9:9e:7b:4b:ca:d8:06:fa:
02:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:AB:01:29:3C:9D:BD:1A:9D:6A:DC:86:18:2B:52:0C:D1:76:C0:07
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/c00c13-791a-4e15-baf7-e03ac589a03f/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/c00c13-791a-4e15-baf7-e03ac589a03f/1/HqsBKTydvRqdatyGGCtSDNF2wAc.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.217.155.0/24
185.106.16.0/22
IPv6:
2a06:3ac0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
196945
Signature Algorithm: sha256WithRSAEncryption
2c:61:51:58:08:72:3e:f0:c9:01:e0:e5:d6:8e:67:0b:09:de:
74:0e:d9:a8:85:8a:a4:44:68:5d:46:94:b4:6b:58:d1:9a:fd:
05:90:d0:b5:f7:2a:29:f5:77:86:89:56:68:99:b5:25:c5:5f:
12:25:7a:ce:b6:48:fa:19:f4:12:48:15:2c:46:47:3c:60:91:
33:1c:9c:7a:10:0f:66:b7:57:10:5f:d5:1e:13:85:0f:4d:12:
9f:50:14:53:33:21:ed:7c:1f:06:5e:9a:b4:f8:f0:9d:d7:8b:
14:8d:d1:89:aa:1d:36:b7:1a:4b:fb:6b:0f:3e:01:6e:bf:c7:
11:8e:53:05:da:8c:fd:9c:8a:b4:7e:78:6d:32:bf:d0:d6:7e:
89:c5:16:bc:28:71:d9:50:ae:2f:8b:bf:51:5c:9a:6d:1c:90:
99:b5:52:94:78:bf:3b:d1:bb:4e:fd:3d:0c:a0:01:3d:33:e8:
b7:6c:74:a9:4a:56:5f:5e:06:8d:fb:ad:2a:de:d5:cc:04:07:
c1:1a:37:14:c5:9d:41:4c:bd:4e:91:d5:94:67:e5:5b:90:b8:
13:75:a3:93:36:42:e6:f6:6f:71:c0:e7:b8:cf:0a:6b:52:79:
34:56:5a:bd:18:c0:a8:4a:2d:52:43:60:06:fa:33:d2:68:5e:
37:88:34:cc
-----BEGIN CERTIFICATE-----
MIIFqTCCBJGgAwIBAgISAYzF3M1nuzTqMM3vjqRgpbsaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAxMTYzMDMxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxZWFiMDEyOTNjOWRiZDFhOWQ2YWRjODYxODJiNTIwY2QxNzZjMDA3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8GRoTYsCkkwFf9FksmcJgv3olKVV
pN27KPfxereZk2kHOB69Vs4yGhGLrx/6QyVp3ThE1Jjt+mwSQYVmLxDSPbrbaVCL
3Belf7886dOHohAlT5u5uQpK2A9aDDfAcsGFcaGDCk/eZMeATIP63py1f7F/L6rK
aQQ7utX/7tJzEt7tIdmjkNsg4Wb9jLjY5rs2siEbwrdtd+LWg8Uf9KhXvEKAd5P8
0wPnjI5BxFGvJujvhJU2JoeUTqtO8Jli1sfFLyegN4ryZZh3SZeWgKDieuMh+mdp
4ZJPLX6DDuWTbWmID8W6z4zL3ibXNzv7F4+rmLYH0b4CuZ57S8rYBvoC/wIDAQAB
o4ICtTCCArEwHQYDVR0OBBYEFB6rASk8nb0anWrchhgrUgzRdsAHMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzExL2MwMGMx
My03OTFhLTRlMTUtYmFmNy1lMDNhYzU4OWEwM2YvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTEvYzAwYzEz
LTc5MWEtNGUxNS1iYWY3LWUwM2FjNTg5YTAzZi8xL0hxc0JLVHlkdlJxZGF0eUdH
Q3RTRE5GMndBYy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDQGCCsGAQUF
BwEHAQH/BCUwIzASBAIAATAMAwQAW9mbAwQCuWoQMA0EAgACMAcDBQMqBjrAMBoG
CCsGAQUFBwEIAQH/BAswCaAHMAUCAwMBUTANBgkqhkiG9w0BAQsFAAOCAQEALGFR
WAhyPvDJAeDl1o5nCwnedA7ZqIWKpERoXUaUtGtY0Zr9BZDQtfcqKfV3holWaJm1
JcVfEiV6zrZI+hn0EkgVLEZHPGCRMxycehAPZrdXEF/VHhOFD00Sn1AUUzMh7Xwf
Bl6atPjwndeLFI3RiaodNrcaS/trDz4Bbr/HEY5TBdqM/ZyKtH54bTK/0NZ+icUW
vChx2VCuL4u/UVyabRyQmbVSlHi/O9G7Tv09DKABPTPot2x0qUpWX14GjfutKt7V
zAQHwRo3FMWdQUy9TpHVlGflW5C4E3WjkzZC5vZvccDnuM8Ka1J5NFZavRjAqEot
UkNgBvoz0mheN4g0zA==
-----END CERTIFICATE-----
Generated at Sat Nov 23 03:29:02 2024 by rpki-client on console-fra.rpki-client.org