Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/QWUyQgoh5CuK0w2iTr9DR96V7zU.cer
File: QWUyQgoh5CuK0w2iTr9DR96V7zU.cer (raw, json)
Hash identifier: XzN/zcuf+NnAYZj8voE0DKaSVgL5Yg3gMdyVZ14PXAI=
Subject key identifier: 41:65:32:42:0A:21:E4:2B:8A:D3:0D:A2:4E:BF:43:47:DE:95:EF:35
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018F381EC82F6D1AB507C211F7002D2E433F
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/86/4f4b20-5136-420b-b516-b6d64a003d9e/1/QWUyQgoh5CuK0w2iTr9DR96V7zU.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/86/4f4b20-5136-420b-b516-b6d64a003d9e/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 May 2024 07:04:52 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 207645
IP: 45.137.18.0/24
IP: 194.120.133.0/24
IP: 2a0d:b100::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:38:1e:c8:2f:6d:1a:b5:07:c2:11:f7:00:2d:2e:43:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: May 2 07:04:52 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=416532420a21e42b8ad30da24ebf4347de95ef35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:7b:08:93:50:36:f3:e9:f7:ac:b7:85:ec:32:
95:17:73:88:b1:69:d0:49:61:68:83:dc:7e:60:67:
60:b6:26:80:06:c9:09:eb:e6:da:93:48:6f:8d:c0:
4e:37:92:0f:29:ed:58:39:40:c7:d5:44:f5:87:07:
69:64:dd:fb:a8:01:c6:55:8c:43:ed:86:b1:f1:e8:
d9:b9:78:27:10:9b:58:9c:eb:5a:fc:20:c4:83:b9:
af:c7:0f:3b:d2:1a:e6:2a:3b:f1:8d:89:b2:61:5c:
4e:98:e7:41:23:94:d7:d0:cb:33:5a:5c:7a:58:40:
4a:15:f6:2f:33:90:c6:db:e2:5a:f1:29:38:78:86:
a0:06:87:d9:ae:0c:fe:04:30:86:c8:8e:66:42:51:
3d:e8:09:03:fa:13:69:f0:52:77:2c:da:28:c7:e6:
1f:5e:64:1b:0b:58:55:6f:26:74:b3:b2:ff:88:fd:
56:cb:c7:5e:d3:79:71:93:a9:54:a2:d9:f6:39:e9:
e7:0c:43:27:ea:59:11:52:65:be:63:00:a0:b3:36:
f8:c1:e5:c1:2f:6f:1f:17:36:23:a7:7e:b7:61:2b:
47:de:7b:06:91:d3:fc:52:ab:ff:76:97:29:81:7a:
1a:e6:70:79:e2:0a:60:99:ec:46:90:93:5b:db:b0:
64:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:65:32:42:0A:21:E4:2B:8A:D3:0D:A2:4E:BF:43:47:DE:95:EF:35
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/4f4b20-5136-420b-b516-b6d64a003d9e/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/4f4b20-5136-420b-b516-b6d64a003d9e/1/QWUyQgoh5CuK0w2iTr9DR96V7zU.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.137.18.0/24
194.120.133.0/24
IPv6:
2a0d:b100::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
207645
Signature Algorithm: sha256WithRSAEncryption
93:13:5d:4f:8b:fc:d0:bd:f3:ca:f0:f3:5c:72:cd:4b:cc:92:
fa:5d:a1:74:c7:57:df:b2:af:e9:55:c8:e1:0a:65:40:33:a7:
48:21:1e:64:9d:87:41:16:cb:b9:1c:01:c1:43:cc:7b:7b:48:
c0:07:af:f3:25:f8:ec:d5:b6:c1:98:3a:c7:9b:20:55:9e:1d:
14:34:f3:55:07:44:89:28:14:1d:89:11:03:25:0b:33:50:b9:
1d:95:58:46:c3:2f:c6:57:43:de:c5:73:ff:84:32:3d:bb:bd:
5f:96:ce:f4:41:f1:d9:93:9a:2a:08:0f:25:dd:36:9f:f2:77:
59:cf:6a:dd:a9:12:53:ca:e8:c7:45:9f:80:75:66:35:5f:bf:
b9:25:e2:ec:90:1b:bc:a2:31:ab:ca:99:87:d2:ec:7e:a6:2e:
0b:bd:03:70:35:39:26:12:9b:32:1e:57:45:94:27:08:92:4e:
7b:f1:ac:01:38:c6:f6:61:76:5e:13:0e:c3:97:25:26:18:60:
f7:7f:5e:dc:ef:38:1b:83:90:5f:53:14:46:10:45:45:d2:55:
3e:ec:0c:a3:da:cd:34:fb:ff:b9:db:9e:df:1e:77:34:11:2a:
c5:6e:f8:85:6a:da:b7:35:ae:86:a7:57:af:87:ae:31:3e:fe:
09:6c:43:2d
-----BEGIN CERTIFICATE-----
MIIFqTCCBJGgAwIBAgISAY84HsgvbRq1B8IR9wAtLkM/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwNTAyMDcwNDUyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0MTY1MzI0MjBhMjFlNDJiOGFkMzBkYTI0ZWJmNDM0N2RlOTVlZjM1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1nsIk1A28+n3rLeF7DKVF3OIsWnQ
SWFog9x+YGdgtiaABskJ6+bak0hvjcBON5IPKe1YOUDH1UT1hwdpZN37qAHGVYxD
7Yax8ejZuXgnEJtYnOta/CDEg7mvxw870hrmKjvxjYmyYVxOmOdBI5TX0MszWlx6
WEBKFfYvM5DG2+Ja8Sk4eIagBofZrgz+BDCGyI5mQlE96AkD+hNp8FJ3LNoox+Yf
XmQbC1hVbyZ0s7L/iP1Wy8de03lxk6lUotn2OennDEMn6lkRUmW+YwCgszb4weXB
L28fFzYjp363YStH3nsGkdP8Uqv/dpcpgXoa5nB54gpgmexGkJNb27BkUQIDAQAB
o4ICtTCCArEwHQYDVR0OBBYEFEFlMkIKIeQritMNok6/Q0fele81MB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzg2LzRmNGIy
MC01MTM2LTQyMGItYjUxNi1iNmQ2NGEwMDNkOWUvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODYvNGY0YjIw
LTUxMzYtNDIwYi1iNTE2LWI2ZDY0YTAwM2Q5ZS8xL1FXVXlRZ29oNUN1SzB3MmlU
cjlEUjk2Vjd6VS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDQGCCsGAQUF
BwEHAQH/BCUwIzASBAIAATAMAwQALYkSAwQAwniFMA0EAgACMAcDBQMqDbEAMBoG
CCsGAQUFBwEIAQH/BAswCaAHMAUCAwMrHTANBgkqhkiG9w0BAQsFAAOCAQEAkxNd
T4v80L3zyvDzXHLNS8yS+l2hdMdX37Kv6VXI4QplQDOnSCEeZJ2HQRbLuRwBwUPM
e3tIwAev8yX47NW2wZg6x5sgVZ4dFDTzVQdEiSgUHYkRAyULM1C5HZVYRsMvxldD
3sVz/4QyPbu9X5bO9EHx2ZOaKggPJd02n/J3Wc9q3akSU8rox0WfgHVmNV+/uSXi
7JAbvKIxq8qZh9LsfqYuC70DcDU5JhKbMh5XRZQnCJJOe/GsATjG9mF2XhMOw5cl
Jhhg939e3O84G4OQX1MURhBFRdJVPuwMo9rNNPv/udue3x53NBEqxW74hWratzWu
hqdXr4euMT7+CWxDLQ==
-----END CERTIFICATE-----
Generated at Fri Nov 22 20:19:33 2024 by rpki-client on console-ams.rpki-client.org