Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/Q53Rzq4PZdYqLrfGfEjdQw59ppY.cer
File: Q53Rzq4PZdYqLrfGfEjdQw59ppY.cer (raw, json)
Hash identifier: 9JlUWJga+6CwSx8q2MKH9Z6DNZuUFSApXEOx6QoBcPY=
Subject key identifier: 43:9D:D1:CE:AE:0F:65:D6:2A:2E:B7:C6:7C:48:DD:43:0E:7D:A6:96
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01902562AACC146B748A74E16493E8B36368
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/5b/b37a56-7bb1-4f83-a17e-6417bd8fe29c/1/Q53Rzq4PZdYqLrfGfEjdQw59ppY.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/5b/b37a56-7bb1-4f83-a17e-6417bd8fe29c/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 17 Jun 2024 08:49:01 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 201876
IP: 185.50.112.0/22
IP: 2a01:a1a0::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Sep 2024 14:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:25:62:aa:cc:14:6b:74:8a:74:e1:64:93:e8:b3:63:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jun 17 08:49:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=439dd1ceae0f65d62a2eb7c67c48dd430e7da696
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:a3:a2:0f:76:2e:10:8c:1d:45:ce:86:f5:e4:
65:cc:c3:ef:c9:1f:76:29:de:dc:97:50:6a:5f:1d:
57:af:45:c5:13:b8:62:51:36:89:95:f7:2f:bc:91:
cc:b8:5a:aa:6e:21:99:2e:2d:11:ed:99:02:31:11:
cd:e6:da:ef:ec:90:d7:4a:db:60:17:4e:e3:86:15:
6e:e5:4e:c6:6d:bc:3e:c5:c7:de:a5:a7:ec:b2:da:
01:cd:b1:c8:0e:c3:98:63:81:36:71:78:cb:1f:81:
0a:e2:e6:5f:3c:49:18:e0:1f:d5:98:cb:3f:c3:72:
b6:ae:62:81:bc:e6:75:5b:ce:7e:b6:59:76:5b:49:
15:80:e9:b0:b9:cc:c0:49:45:56:cd:fe:4c:e6:40:
bf:de:97:4b:b2:9a:62:fd:ea:89:13:e6:e8:b7:f6:
3d:2d:ea:4c:92:42:c5:ab:60:13:7d:f9:55:ff:0c:
16:0a:28:e6:7f:10:20:b6:1a:ee:e4:c1:ad:53:f2:
bd:a7:d4:03:e1:c2:19:31:28:ac:e7:7e:f8:6b:2e:
9e:de:e2:0b:57:7c:75:55:f0:06:53:17:fe:3a:c1:
97:c3:08:dc:25:21:89:09:d7:e7:73:62:41:28:c0:
c8:11:b9:20:ea:e3:44:e3:a5:50:8d:00:e9:48:6e:
de:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:9D:D1:CE:AE:0F:65:D6:2A:2E:B7:C6:7C:48:DD:43:0E:7D:A6:96
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/b37a56-7bb1-4f83-a17e-6417bd8fe29c/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/b37a56-7bb1-4f83-a17e-6417bd8fe29c/1/Q53Rzq4PZdYqLrfGfEjdQw59ppY.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.50.112.0/22
IPv6:
2a01:a1a0::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
201876
Signature Algorithm: sha256WithRSAEncryption
09:fe:4d:b1:40:11:69:b4:d2:e6:77:e9:96:38:5f:d7:43:19:
93:4c:90:50:2b:82:8e:d9:ce:95:d8:2f:30:d1:86:2b:16:7f:
da:2e:65:5a:51:2e:16:d9:2b:79:d4:29:a0:d6:53:f1:2a:ed:
90:b8:e0:4e:2d:29:7c:ed:36:ce:f6:e9:38:7f:48:25:63:cd:
0f:52:dd:c4:f6:72:80:cd:71:54:fb:e9:d1:28:27:c2:e2:30:
4e:e7:4f:df:fd:9f:01:e9:83:5b:c4:b9:07:d8:2b:ac:f7:05:
09:37:9f:52:30:08:31:82:0b:11:fb:ed:3c:79:37:90:f9:56:
01:6d:44:c4:3d:48:c4:d1:11:be:df:8a:9c:a5:7d:a4:7e:e7:
01:d6:99:90:e2:fe:00:8f:1a:f1:82:73:21:98:ca:79:c4:bb:
6b:a2:c0:de:47:51:3d:ad:10:98:c9:74:f3:39:24:da:ff:a4:
30:8a:f8:3d:b9:01:c4:7a:2b:69:9d:2d:40:8b:3d:4a:33:33:
53:7c:a8:5f:d4:97:ff:be:dc:cb:57:4c:50:d0:89:da:1d:f0:
84:3c:65:09:d7:36:19:78:91:e4:24:43:30:aa:5b:47:7a:ee:
b6:f3:a5:44:39:a4:0d:07:6a:d1:60:49:99:94:e3:99:f6:71:
fc:51:5a:42
-----BEGIN CERTIFICATE-----
MIIFozCCBIugAwIBAgISAZAlYqrMFGt0inThZJPos2NoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwNjE3MDg0OTAxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0MzlkZDFjZWFlMGY2NWQ2MmEyZWI3YzY3YzQ4ZGQ0MzBlN2RhNjk2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsaOiD3YuEIwdRc6G9eRlzMPvyR92
Kd7cl1BqXx1Xr0XFE7hiUTaJlfcvvJHMuFqqbiGZLi0R7ZkCMRHN5trv7JDXSttg
F07jhhVu5U7Gbbw+xcfepafsstoBzbHIDsOYY4E2cXjLH4EK4uZfPEkY4B/VmMs/
w3K2rmKBvOZ1W85+tll2W0kVgOmwuczASUVWzf5M5kC/3pdLsppi/eqJE+bot/Y9
LepMkkLFq2ATfflV/wwWCijmfxAgthru5MGtU/K9p9QD4cIZMSis5374ay6e3uIL
V3x1VfAGUxf+OsGXwwjcJSGJCdfnc2JBKMDIEbkg6uNE46VQjQDpSG7e+QIDAQAB
o4ICrzCCAqswHQYDVR0OBBYEFEOd0c6uD2XWKi63xnxI3UMOfaaWMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzViL2IzN2E1
Ni03YmIxLTRmODMtYTE3ZS02NDE3YmQ4ZmUyOWMvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNWIvYjM3YTU2
LTdiYjEtNGY4My1hMTdlLTY0MTdiZDhmZTI5Yy8xL1E1M1J6cTRQWmRZcUxyZkdm
RWpkUXc1OXBwWS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF
BwEHAQH/BB8wHTAMBAIAATAGAwQCuTJwMA0EAgACMAcDBQAqAaGgMBoGCCsGAQUF
BwEIAQH/BAswCaAHMAUCAwMUlDANBgkqhkiG9w0BAQsFAAOCAQEACf5NsUARabTS
5nfpljhf10MZk0yQUCuCjtnOldgvMNGGKxZ/2i5lWlEuFtkredQpoNZT8SrtkLjg
Ti0pfO02zvbpOH9IJWPND1LdxPZygM1xVPvp0SgnwuIwTudP3/2fAemDW8S5B9gr
rPcFCTefUjAIMYILEfvtPHk3kPlWAW1ExD1IxNERvt+KnKV9pH7nAdaZkOL+AI8a
8YJzIZjKecS7a6LA3kdRPa0QmMl08zkk2v+kMIr4PbkBxHoraZ0tQIs9SjMzU3yo
X9SX/77cy1dMUNCJ2h3whDxlCdc2GXiR5CRDMKpbR3rutvOlRDmkDQdq0WBJmZTj
mfZx/FFaQg==
-----END CERTIFICATE-----
Generated at Sat Sep 7 21:01:58 2024 by rpki-client on console-fra.rpki-client.org