Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/OA73_1tU9T_PIxKr4uw_WVi6FCU.cer
File: OA73_1tU9T_PIxKr4uw_WVi6FCU.cer (raw, json)
Hash identifier: omn2LE/KiBU+9RUUV7TgepTur4eviDMoOZuJcP4ft+A=
Subject key identifier: 38:0E:F7:FF:5B:54:F5:3F:CF:23:12:AB:E2:EC:3F:59:58:BA:14:25
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0191BCCA6EF01D78FA48E8414CA3CE764D1B
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/fd/d91255-3243-4a47-946a-f04cc1c230cf/1/OA73_1tU9T_PIxKr4uw_WVi6FCU.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/fd/d91255-3243-4a47-946a-f04cc1c230cf/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 04 Sep 2024 11:27:48 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 198090
AS: 198843
IP: 91.199.170.0/24
IP: 91.231.164.0/22
IP: 91.237.16.0/23
IP: 185.30.68.0/22
IP: 185.114.80.0/22
IP: 185.158.36.0/22
IP: 185.246.36.0/22
IP: 2a06:6d40::/29
IP: 2a07:a9c0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:bc:ca:6e:f0:1d:78:fa:48:e8:41:4c:a3:ce:76:4d:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Sep 4 11:27:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=380ef7ff5b54f53fcf2312abe2ec3f5958ba1425
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:45:76:17:bb:6e:80:6c:2e:6e:dd:a9:27:8f:
a4:14:e3:eb:42:de:07:db:6f:94:40:16:e0:5e:55:
f6:7b:0d:fc:4d:2a:17:b4:f5:9a:8a:18:2f:5d:e1:
87:c2:26:8c:55:8a:88:3f:07:45:02:14:9d:0e:71:
16:db:f4:fe:88:59:6f:48:5f:bb:f1:d3:c4:09:7e:
e0:da:4f:9c:fe:3a:7a:01:91:a8:ed:5a:e1:89:11:
f8:99:c2:c7:1e:7e:72:2b:0b:5d:eb:5e:45:a6:23:
21:ea:fe:8c:2e:4e:59:18:8c:8b:b9:95:a7:2d:da:
a4:2d:27:c6:27:f1:63:15:c7:0e:dd:09:be:20:fb:
c8:99:eb:67:e4:ea:67:af:ae:ea:0d:a2:db:9e:33:
44:9b:13:e2:15:e0:5e:e8:8a:43:dd:44:c4:31:3b:
3c:fa:1d:f0:39:3c:a5:34:90:29:7e:7d:a2:60:c0:
6a:a3:ce:ba:85:e5:6f:6e:94:2c:6c:ca:fd:c4:fd:
cc:4a:0a:d8:3b:7a:e4:28:ab:6e:d6:ed:5e:e4:28:
57:ee:6a:4d:be:fa:2d:bd:25:87:33:c9:7d:91:a1:
5c:97:9f:97:dc:89:74:87:34:47:4a:8f:d6:58:59:
f9:8b:be:9c:17:d9:1c:f4:c9:ed:c9:68:5e:a0:83:
9b:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:0E:F7:FF:5B:54:F5:3F:CF:23:12:AB:E2:EC:3F:59:58:BA:14:25
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/d91255-3243-4a47-946a-f04cc1c230cf/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/d91255-3243-4a47-946a-f04cc1c230cf/1/OA73_1tU9T_PIxKr4uw_WVi6FCU.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.199.170.0/24
91.231.164.0/22
91.237.16.0/23
185.30.68.0/22
185.114.80.0/22
185.158.36.0/22
185.246.36.0/22
IPv6:
2a06:6d40::/29
2a07:a9c0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
198090
198843
Signature Algorithm: sha256WithRSAEncryption
a2:eb:62:c0:54:87:a8:7d:ab:ad:44:a7:3f:18:df:78:9d:a9:
71:3b:30:bd:b9:5d:cb:59:32:81:ce:fb:36:6b:5e:bc:2e:b1:
d2:8c:0a:29:05:0f:11:f6:4e:0a:b7:00:ac:77:6f:95:97:af:
df:0b:c0:a7:ef:6e:cb:c7:1a:5b:85:5a:ab:31:99:9b:fa:20:
3a:b2:93:35:f2:b6:77:55:09:b1:5a:a7:bc:36:0e:a2:37:a0:
c9:40:26:f2:39:85:8e:9a:f5:14:19:b6:9c:0f:f5:98:ab:02:
de:99:f9:c6:6d:9b:03:c3:45:77:ff:9f:9b:21:3f:d5:38:73:
2c:d4:37:0c:ab:bc:71:8c:27:ae:23:98:9d:35:2d:23:f7:bc:
3f:a1:c0:b0:64:91:7b:2c:b8:e9:2c:6d:5d:fc:cb:8e:73:c3:
8f:2c:dc:ab:d1:91:d9:a3:df:46:17:28:77:7d:72:bb:05:44:
8e:ff:a7:5d:e9:ca:f2:00:52:e9:45:d2:a4:09:a1:45:7e:46:
55:f4:d3:92:ca:52:c9:ed:07:97:99:86:05:f6:96:2e:ad:99:
92:31:b6:d4:ac:04:4f:06:15:62:76:c1:61:dd:e3:ed:38:c6:
35:c8:e2:dc:55:7e:c7:06:7f:e7:b3:ae:6a:71:a6:f3:a0:dc:
13:89:e7:65
-----BEGIN CERTIFICATE-----
MIIF0zCCBLugAwIBAgISAZG8ym7wHXj6SOhBTKPOdk0bMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwOTA0MTEyNzQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzODBlZjdmZjViNTRmNTNmY2YyMzEyYWJlMmVjM2Y1OTU4YmExNDI1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp0V2F7tugGwubt2pJ4+kFOPrQt4H
22+UQBbgXlX2ew38TSoXtPWaihgvXeGHwiaMVYqIPwdFAhSdDnEW2/T+iFlvSF+7
8dPECX7g2k+c/jp6AZGo7VrhiRH4mcLHHn5yKwtd615FpiMh6v6MLk5ZGIyLuZWn
LdqkLSfGJ/FjFccO3Qm+IPvImetn5Opnr67qDaLbnjNEmxPiFeBe6IpD3UTEMTs8
+h3wOTylNJApfn2iYMBqo866heVvbpQsbMr9xP3MSgrYO3rkKKtu1u1e5ChX7mpN
vvotvSWHM8l9kaFcl5+X3Il0hzRHSo/WWFn5i76cF9kc9MntyWheoIObFQIDAQAB
o4IC3zCCAtswHQYDVR0OBBYEFDgO9/9bVPU/zyMSq+LsP1lYuhQlMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2ZkL2Q5MTI1
NS0zMjQzLTRhNDctOTQ2YS1mMDRjYzFjMjMwY2YvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZmQvZDkxMjU1
LTMyNDMtNGE0Ny05NDZhLWYwNGNjMWMyMzBjZi8xL09BNzNfMXRVOVRfUEl4S3I0
dXdfV1ZpNkZDVS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFkGCCsGAQUF
BwEHAQH/BEowSDAwBAIAATAqAwQAW8eqAwQCW+ekAwQBW+0QAwQCuR5EAwQCuXJQ
AwQCuZ4kAwQCufYkMBQEAgACMA4DBQMqBm1AAwUDKgepwDAfBggrBgEFBQcBCAEB
/wQQMA6gDDAKAgMDBcoCAwMIuzANBgkqhkiG9w0BAQsFAAOCAQEAoutiwFSHqH2r
rUSnPxjfeJ2pcTswvbldy1kygc77NmtevC6x0owKKQUPEfZOCrcArHdvlZev3wvA
p+9uy8caW4VaqzGZm/ogOrKTNfK2d1UJsVqnvDYOojegyUAm8jmFjpr1FBm2nA/1
mKsC3pn5xm2bA8NFd/+fmyE/1ThzLNQ3DKu8cYwnriOYnTUtI/e8P6HAsGSReyy4
6SxtXfzLjnPDjyzcq9GR2aPfRhcod31yuwVEjv+nXenK8gBS6UXSpAmhRX5GVfTT
kspSye0Hl5mGBfaWLq2ZkjG21KwETwYVYnbBYd3j7TjGNcji3FV+xwZ/57OuanGm
86DcE4nnZQ==
-----END CERTIFICATE-----
Generated at Sat Nov 23 03:30:44 2024 by rpki-client on console-fra.rpki-client.org