Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/MVlVxK8-sajTQAqGYl42XCYpjWo.cer
File: MVlVxK8-sajTQAqGYl42XCYpjWo.cer (raw, json)
Hash identifier: bwAHA7ICNW/K37Kd3sCIOpahysHoolSxy0PY7hxs9ds=
Subject key identifier: 31:59:55:C4:AF:3E:B1:A8:D3:40:0A:86:62:5E:36:5C:26:29:8D:6A
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC801208C18AD37354451801DE1537BF8
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/9c/21c61a-d6b1-4aca-9782-97348336f33a/1/MVlVxK8-sajTQAqGYl42XCYpjWo.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/9c/21c61a-d6b1-4aca-9782-97348336f33a/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 02:29:26 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 210057
IP: 45.147.208.0/22
IP: 176.124.40.0/22
IP: 2a0f:3400::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:20:8c:18:ad:37:35:44:51:80:1d:e1:53:7b:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 02:29:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=315955c4af3eb1a8d3400a86625e365c26298d6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:07:4e:d2:f9:9b:fa:ed:06:dd:a7:01:98:f1:
a4:4c:dd:76:c7:37:22:d5:97:33:90:57:62:1b:c7:
d9:b5:b5:3e:03:36:2c:49:c7:fc:5b:95:cf:2b:5b:
7b:86:96:fb:8e:a4:06:46:9f:98:f4:03:b3:c8:ec:
bb:fb:57:91:fc:01:10:2a:26:3c:2e:16:36:ac:a8:
fc:23:b9:65:0b:54:48:3a:41:6a:e8:a6:f8:26:cb:
31:ca:bb:2b:61:2d:a6:7b:ec:2f:e0:5b:ed:36:b8:
99:f9:27:17:59:a0:b8:66:c1:8f:fb:ff:6b:6e:c1:
84:8e:a8:70:03:f9:ee:55:06:83:10:0a:eb:74:3a:
73:55:a7:3d:55:ec:fe:a8:88:d0:17:f0:87:94:9d:
1a:46:70:c8:e6:48:ad:ab:30:54:78:e4:67:46:9d:
5c:0d:d3:10:c8:f0:7d:7c:df:91:a2:36:30:85:39:
c9:c3:81:04:aa:23:05:54:e1:1f:04:11:20:65:6e:
18:9b:42:bd:7e:0b:57:24:4a:90:d1:db:84:4d:3e:
6b:cb:e3:2e:63:11:14:1f:63:15:cf:9b:e5:97:b2:
41:c6:bf:15:1d:3e:67:00:b1:85:49:eb:cf:b9:13:
3a:fd:9a:ce:19:6b:e4:a8:51:55:8c:15:54:4c:60:
db:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:59:55:C4:AF:3E:B1:A8:D3:40:0A:86:62:5E:36:5C:26:29:8D:6A
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/21c61a-d6b1-4aca-9782-97348336f33a/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/21c61a-d6b1-4aca-9782-97348336f33a/1/MVlVxK8-sajTQAqGYl42XCYpjWo.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.147.208.0/22
176.124.40.0/22
IPv6:
2a0f:3400::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
210057
Signature Algorithm: sha256WithRSAEncryption
69:32:1f:ce:0a:bf:10:b9:c3:7f:a9:64:83:44:ec:c7:ea:90:
d5:92:f6:24:5d:8d:6c:68:75:df:eb:54:97:f2:54:38:22:2e:
82:06:3f:d4:70:21:04:35:c9:51:27:6c:95:86:11:dd:a9:30:
c7:05:dd:b5:bd:71:ea:f0:72:96:71:4d:7f:06:49:d9:b9:0c:
3b:21:0c:9f:ff:8c:0f:49:de:4f:bb:e9:bd:c6:ce:63:17:43:
b7:aa:14:46:11:88:ec:d6:c0:07:a3:c2:7e:d2:5a:e5:f9:6f:
83:87:03:04:60:a8:36:05:8d:eb:3f:51:39:01:f0:23:ff:a0:
85:84:d4:b0:18:b5:f1:81:1f:77:13:0a:41:b1:44:28:e1:c4:
e6:41:0c:48:5d:c4:18:9b:49:5e:02:6b:86:35:56:ef:37:3a:
4f:f3:5d:4b:90:58:a1:6c:81:71:63:9b:76:e8:f8:dd:52:44:
a0:65:de:81:06:a6:ef:ef:53:50:e5:4f:94:ec:96:17:1a:f4:
8e:70:13:4e:aa:3d:42:eb:b0:98:72:43:05:62:a9:21:4b:71:
82:3d:ae:d5:c1:93:59:4e:ae:e4:d2:19:d5:46:41:60:45:90:
d5:e3:89:9c:12:d8:84:c5:c6:94:e8:0b:93:30:c3:b3:b0:ce:
02:b3:fb:d2
-----BEGIN CERTIFICATE-----
MIIFqTCCBJGgAwIBAgISAYzIASCMGK03NURRgB3hU3v4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAyMDIyOTI2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzMTU5NTVjNGFmM2ViMWE4ZDM0MDBhODY2MjVlMzY1YzI2Mjk4ZDZhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzAdO0vmb+u0G3acBmPGkTN12xzci
1ZczkFdiG8fZtbU+AzYsScf8W5XPK1t7hpb7jqQGRp+Y9AOzyOy7+1eR/AEQKiY8
LhY2rKj8I7llC1RIOkFq6Kb4JssxyrsrYS2me+wv4FvtNriZ+ScXWaC4ZsGP+/9r
bsGEjqhwA/nuVQaDEArrdDpzVac9Vez+qIjQF/CHlJ0aRnDI5kitqzBUeORnRp1c
DdMQyPB9fN+RojYwhTnJw4EEqiMFVOEfBBEgZW4Ym0K9fgtXJEqQ0duETT5ry+Mu
YxEUH2MVz5vll7JBxr8VHT5nALGFSevPuRM6/ZrOGWvkqFFVjBVUTGDbMQIDAQAB
o4ICtTCCArEwHQYDVR0OBBYEFDFZVcSvPrGo00AKhmJeNlwmKY1qMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzljLzIxYzYx
YS1kNmIxLTRhY2EtOTc4Mi05NzM0ODMzNmYzM2EvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOWMvMjFjNjFh
LWQ2YjEtNGFjYS05NzgyLTk3MzQ4MzM2ZjMzYS8xL01WbFZ4Szgtc2FqVFFBcUdZ
bDQyWENZcGpXby5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDQGCCsGAQUF
BwEHAQH/BCUwIzASBAIAATAMAwQCLZPQAwQCsHwoMA0EAgACMAcDBQMqDzQAMBoG
CCsGAQUFBwEIAQH/BAswCaAHMAUCAwM0iTANBgkqhkiG9w0BAQsFAAOCAQEAaTIf
zgq/ELnDf6lkg0Tsx+qQ1ZL2JF2NbGh13+tUl/JUOCIuggY/1HAhBDXJUSdslYYR
3akwxwXdtb1x6vBylnFNfwZJ2bkMOyEMn/+MD0neT7vpvcbOYxdDt6oURhGI7NbA
B6PCftJa5flvg4cDBGCoNgWN6z9ROQHwI/+ghYTUsBi18YEfdxMKQbFEKOHE5kEM
SF3EGJtJXgJrhjVW7zc6T/NdS5BYoWyBcWObduj43VJEoGXegQam7+9TUOVPlOyW
Fxr0jnATTqo9QuuwmHJDBWKpIUtxgj2u1cGTWU6u5NIZ1UZBYEWQ1eOJnBLYhMXG
lOgLkzDDs7DOArP70g==
-----END CERTIFICATE-----
Generated at Sat Nov 23 10:48:59 2024 by rpki-client on console-ams.rpki-client.org