Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/U53I-Drwei_XEh53wBzCg8ZRoIc.cer
File: U53I-Drwei_XEh53wBzCg8ZRoIc.cer (raw, json)
Hash identifier: aecGDH2nWvhvw8nkQuqa4bW4D+ICVVWoP1uNgr0xle8=
Subject key identifier: 53:9D:C8:F8:3A:F0:7A:2F:D7:12:1E:77:C0:1C:C2:83:C6:51:A0:87
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC8DD90653D10A5E157516B4E7A6974B3
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/60/732ea2-9a5c-4eda-b9b4-6276b178efdf/1/U53I-Drwei_XEh53wBzCg8ZRoIc.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/60/732ea2-9a5c-4eda-b9b4-6276b178efdf/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 06:30:12 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 48842
IP: 91.212.60.0/24
IP: 91.217.163.0/24
IP: 193.169.172.0/23
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:dd:90:65:3d:10:a5:e1:57:51:6b:4e:7a:69:74:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 06:30:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=539dc8f83af07a2fd7121e77c01cc283c651a087
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:05:be:14:38:77:3f:7d:db:a2:61:89:5d:b3:
81:27:1c:07:f3:b1:60:36:23:e7:d2:ea:56:6f:8e:
9a:81:3b:25:78:f2:a0:d5:77:79:08:10:af:0b:c4:
47:49:3a:78:cd:be:ca:ff:07:f3:87:a9:e8:4b:25:
e7:d9:32:84:80:c6:1d:24:27:0e:cb:80:ef:5f:4f:
1d:92:59:05:0a:e8:e4:9a:74:bf:49:08:ea:c9:fe:
81:55:1e:1b:13:20:e1:c6:84:14:65:33:21:c0:10:
08:2d:f0:f7:de:5f:65:0d:db:1e:3f:1b:3d:03:d4:
e1:e1:12:bc:a1:51:e7:ab:7a:f8:e9:bc:f0:79:f4:
75:77:25:6d:7d:04:96:ac:83:00:82:d2:76:7b:78:
60:d0:00:74:e0:9a:df:b3:07:0d:68:ff:fd:22:33:
ce:cb:56:0c:c9:ee:01:26:76:93:5f:79:a4:83:bd:
ad:ac:d6:41:13:b4:7e:dc:3b:66:50:ea:61:9e:65:
5f:4b:05:82:51:0d:2d:25:fd:43:64:3c:01:87:1c:
32:ba:0a:cc:cd:d7:9f:12:e8:17:6f:1c:38:95:20:
b2:38:73:ae:08:4d:5b:70:9a:42:3d:24:a2:59:a7:
bc:d5:f5:79:7c:5f:cd:44:11:ca:29:08:95:cd:1f:
15:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:9D:C8:F8:3A:F0:7A:2F:D7:12:1E:77:C0:1C:C2:83:C6:51:A0:87
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/732ea2-9a5c-4eda-b9b4-6276b178efdf/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/732ea2-9a5c-4eda-b9b4-6276b178efdf/1/U53I-Drwei_XEh53wBzCg8ZRoIc.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.212.60.0/24
91.217.163.0/24
193.169.172.0/23
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
48842
Signature Algorithm: sha256WithRSAEncryption
76:c0:7c:44:f1:b7:d3:e3:4f:04:d8:4f:59:ef:6e:ee:86:43:
54:47:76:55:b4:04:72:44:96:e8:e3:b7:8a:1d:fc:e9:08:8a:
f2:f5:8f:3e:02:21:da:81:c8:b2:2f:e8:2b:81:d9:de:45:33:
bb:f5:c5:d1:75:3a:34:63:81:4f:84:d9:d8:69:0d:b2:b7:8d:
db:d0:9b:0f:b9:e3:83:45:2e:31:74:d5:fd:15:ce:e6:a9:52:
a4:f6:7b:b7:ab:f5:d6:1c:da:9f:dc:2d:02:ed:70:8e:61:8b:
f6:80:e5:fc:a5:d6:38:fe:b9:e7:6a:ec:d7:d5:53:a2:7e:16:
f5:70:44:60:69:5f:85:83:ea:da:6e:82:7e:64:fb:b6:1f:0c:
18:6a:23:b6:82:0c:6d:4f:f2:ee:65:b3:1f:f2:27:b4:e5:c0:
5c:12:40:5c:06:c9:3d:87:bb:cf:77:94:d8:ec:30:81:1b:34:
2f:3e:87:8d:60:7e:e7:15:6c:b2:bc:9a:ad:2f:0a:f0:9d:42:
96:5d:03:26:fc:5a:c6:d4:e5:6b:32:82:79:de:a6:6d:5e:28:
e6:54:70:65:15:74:f9:48:72:e5:e0:ab:7e:a3:b9:59:ff:3e:
0a:35:72:a6:65:5c:a4:78:2c:c7:1b:27:a8:ab:38:22:03:78:
e6:82:ab:84
-----BEGIN CERTIFICATE-----
MIIFoDCCBIigAwIBAgISAYzI3ZBlPRCl4VdRa056aXSzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAyMDYzMDEyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1MzlkYzhmODNhZjA3YTJmZDcxMjFlNzdjMDFjYzI4M2M2NTFhMDg3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtQW+FDh3P33bomGJXbOBJxwH87Fg
NiPn0upWb46agTslePKg1Xd5CBCvC8RHSTp4zb7K/wfzh6noSyXn2TKEgMYdJCcO
y4DvX08dklkFCujkmnS/SQjqyf6BVR4bEyDhxoQUZTMhwBAILfD33l9lDdsePxs9
A9Th4RK8oVHnq3r46bzwefR1dyVtfQSWrIMAgtJ2e3hg0AB04JrfswcNaP/9IjPO
y1YMye4BJnaTX3mkg72trNZBE7R+3DtmUOphnmVfSwWCUQ0tJf1DZDwBhxwyugrM
zdefEugXbxw4lSCyOHOuCE1bcJpCPSSiWae81fV5fF/NRBHKKQiVzR8VrQIDAQAB
o4ICrDCCAqgwHQYDVR0OBBYEFFOdyPg68Hov1xIed8AcwoPGUaCHMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzYwLzczMmVh
Mi05YTVjLTRlZGEtYjliNC02Mjc2YjE3OGVmZGYvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjAvNzMyZWEy
LTlhNWMtNGVkYS1iOWI0LTYyNzZiMTc4ZWZkZi8xL1U1M0ktRHJ3ZWlfWEVoNTN3
QnpDZzhaUm9JYy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCsGCCsGAQUF
BwEHAQH/BBwwGjAYBAIAATASAwQAW9Q8AwQAW9mjAwQBwamsMBoGCCsGAQUFBwEI
AQH/BAswCaAHMAUCAwC+yjANBgkqhkiG9w0BAQsFAAOCAQEAdsB8RPG30+NPBNhP
We9u7oZDVEd2VbQEckSW6OO3ih386QiK8vWPPgIh2oHIsi/oK4HZ3kUzu/XF0XU6
NGOBT4TZ2GkNsreN29CbD7njg0UuMXTV/RXO5qlSpPZ7t6v11hzan9wtAu1wjmGL
9oDl/KXWOP6552rs19VTon4W9XBEYGlfhYPq2m6CfmT7th8MGGojtoIMbU/y7mWz
H/IntOXAXBJAXAbJPYe7z3eU2OwwgRs0Lz6HjWB+5xVssryarS8K8J1Cll0DJvxa
xtTlazKCed6mbV4o5lRwZRV0+Uhy5eCrfqO5Wf8+CjVypmVcpHgsxxsnqKs4IgN4
5oKrhA==
-----END CERTIFICATE-----
Generated at Fri May 3 03:01:26 2024 by rpki-client on console-fra.rpki-client.org