Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/K5didVR7dd8rBMT5spHAcQxQd0A.cer
File: K5didVR7dd8rBMT5spHAcQxQd0A.cer (raw, json)
Hash identifier: ykb4YrFwPlGXw+p6EvveG/B9kt06+FtBnagPvgHWRg4=
Subject key identifier: 2B:97:62:75:54:7B:75:DF:2B:04:C4:F9:B2:91:C0:71:0C:50:77:40
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC94E2B8EA0278AF86A1BFACB7DFE453F
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/42/58f45f-8b07-4e6a-9548-d5b0f91d97c2/1/K5didVR7dd8rBMT5spHAcQxQd0A.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/42/58f45f-8b07-4e6a-9548-d5b0f91d97c2/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 08:33:12 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 202975
IP: 85.116.128.0/21
IP: 89.105.88.0/21
IP: 185.89.220.0/22
IP: 185.135.100.0/22
IP: 2a06:f2c0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4e:2b:8e:a0:27:8a:f8:6a:1b:fa:cb:7d:fe:45:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 08:33:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2b976275547b75df2b04c4f9b291c0710c507740
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:f7:82:2e:7b:92:80:e6:e9:0c:20:35:04:a0:
e3:73:77:32:0d:73:ea:f2:a8:c5:68:0c:fd:85:6b:
f4:40:f0:32:cc:fd:fd:9d:13:9f:68:dd:48:0e:ae:
ec:24:1d:1c:ea:99:94:1d:92:36:d2:3d:bc:ad:96:
31:76:db:59:8b:0e:1d:d3:ad:c2:62:2f:0f:49:b4:
54:df:0b:e2:f4:e1:d5:f2:89:f8:ff:1c:af:d3:6a:
ab:a7:fa:56:ea:8b:08:bd:30:4b:e3:cb:94:4e:ef:
0e:73:20:1e:bc:a8:d0:35:1c:8b:99:d0:a8:9b:59:
ca:c5:aa:19:af:f5:03:4f:02:5b:59:63:30:56:00:
c4:0d:c4:bc:71:7c:f0:61:03:54:fa:dd:e4:ea:11:
5c:c9:5f:ff:b8:e4:5d:1a:67:06:c8:72:83:7c:12:
a5:fd:c6:ec:5f:e1:e2:9a:00:4f:c5:fc:9e:f0:c4:
93:de:e8:41:56:b5:67:2c:8f:21:8b:64:fb:f2:c3:
de:ca:85:ed:45:89:9b:0c:e5:9e:ee:b3:42:16:01:
83:52:f4:7e:9c:f7:d3:6e:7d:85:f7:90:95:c7:4b:
93:15:5a:d7:1c:e8:23:de:19:20:b4:c2:b4:f8:9e:
12:16:ad:46:35:e9:5e:1f:27:7b:5d:9b:55:bb:39:
2c:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:97:62:75:54:7B:75:DF:2B:04:C4:F9:B2:91:C0:71:0C:50:77:40
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/58f45f-8b07-4e6a-9548-d5b0f91d97c2/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/58f45f-8b07-4e6a-9548-d5b0f91d97c2/1/K5didVR7dd8rBMT5spHAcQxQd0A.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.116.128.0/21
89.105.88.0/21
185.89.220.0/22
185.135.100.0/22
IPv6:
2a06:f2c0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
202975
Signature Algorithm: sha256WithRSAEncryption
40:dd:04:61:a2:a5:8e:37:0f:9c:3e:4e:17:95:de:31:29:ea:
f1:b3:82:31:86:bc:68:be:cb:75:b3:50:11:84:e6:b9:57:3c:
e7:6b:33:20:d7:76:34:7f:f4:d8:07:9e:b3:5f:cb:75:ca:81:
d6:96:9f:da:fe:93:2b:95:ae:30:9d:5f:60:50:22:cd:d6:94:
4a:6b:1c:a7:7f:21:e8:5b:30:8c:c8:1c:8e:e5:5f:14:6c:38:
c0:e3:0e:5f:4b:9a:fa:f9:62:20:dc:72:41:52:fa:c0:e1:bc:
5f:5d:6e:91:c7:64:c1:02:b7:00:73:ab:bb:ce:e3:cd:68:ff:
85:60:60:3f:f5:1f:1a:c7:2f:73:fb:95:22:09:07:25:3f:d3:
db:0a:db:aa:10:ce:37:de:e7:e5:3c:56:46:93:be:d8:a3:ff:
1e:79:2f:34:f6:63:ef:1f:73:87:7c:93:42:a4:12:60:5f:51:
1f:d6:ce:c4:5a:68:46:8e:80:3b:d4:e1:ed:b7:c4:30:eb:a7:
09:62:ba:f5:5d:6c:93:55:89:a0:51:c9:78:02:ed:f4:0d:b8:
b4:b0:e6:9b:e9:72:6d:9a:b2:25:b3:5c:00:f6:bf:c6:ac:00:
5b:22:6a:dc:76:e7:a9:0b:9b:a8:28:63:b3:ff:a8:06:cc:95:
5c:4c:2c:7f
-----BEGIN CERTIFICATE-----
MIIFtTCCBJ2gAwIBAgISAYzJTiuOoCeK+Gob+st9/kU/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAyMDgzMzEyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyYjk3NjI3NTU0N2I3NWRmMmIwNGM0ZjliMjkxYzA3MTBjNTA3NzQwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqveCLnuSgObpDCA1BKDjc3cyDXPq
8qjFaAz9hWv0QPAyzP39nROfaN1IDq7sJB0c6pmUHZI20j28rZYxdttZiw4d063C
Yi8PSbRU3wvi9OHV8on4/xyv02qrp/pW6osIvTBL48uUTu8OcyAevKjQNRyLmdCo
m1nKxaoZr/UDTwJbWWMwVgDEDcS8cXzwYQNU+t3k6hFcyV//uORdGmcGyHKDfBKl
/cbsX+HimgBPxfye8MST3uhBVrVnLI8hi2T78sPeyoXtRYmbDOWe7rNCFgGDUvR+
nPfTbn2F95CVx0uTFVrXHOgj3hkgtMK0+J4SFq1GNeleHyd7XZtVuzksHQIDAQAB
o4ICwTCCAr0wHQYDVR0OBBYEFCuXYnVUe3XfKwTE+bKRwHEMUHdAMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzQyLzU4ZjQ1
Zi04YjA3LTRlNmEtOTU0OC1kNWIwZjkxZDk3YzIvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDIvNThmNDVm
LThiMDctNGU2YS05NTQ4LWQ1YjBmOTFkOTdjMi8xL0s1ZGlkVlI3ZGQ4ckJNVDVz
cEhBY1F4UWQwQS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMEAGCCsGAQUF
BwEHAQH/BDEwLzAeBAIAATAYAwQDVXSAAwQDWWlYAwQCuVncAwQCuYdkMA0EAgAC
MAcDBQMqBvLAMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwMY3zANBgkqhkiG9w0B
AQsFAAOCAQEAQN0EYaKljjcPnD5OF5XeMSnq8bOCMYa8aL7LdbNQEYTmuVc852sz
INd2NH/02Aees1/LdcqB1paf2v6TK5WuMJ1fYFAizdaUSmscp38h6FswjMgcjuVf
FGw4wOMOX0ua+vliINxyQVL6wOG8X11ukcdkwQK3AHOru87jzWj/hWBgP/UfGscv
c/uVIgkHJT/T2wrbqhDON97n5TxWRpO+2KP/HnkvNPZj7x9zh3yTQqQSYF9RH9bO
xFpoRo6AO9Th7bfEMOunCWK69V1sk1WJoFHJeALt9A24tLDmm+lybZqyJbNcAPa/
xqwAWyJq3HbnqQubqChjs/+oBsyVXEwsfw==
-----END CERTIFICATE-----
Generated at Fri May 3 02:52:23 2024 by rpki-client on console-fra.rpki-client.org