Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/U7u7qj7iTHrZssYEMuFO2jhJteI.cer
File: U7u7qj7iTHrZssYEMuFO2jhJteI.cer (raw, json)
Hash identifier: +i1ZPazSaW1JwE+7l1PP9UnTOg4Ev5qKUhFOO7mppyM=
Subject key identifier: 53:BB:BB:AA:3E:E2:4C:7A:D9:B2:C6:04:32:E1:4E:DA:38:49:B5:E2
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018E7A054F2538ACD61451C0388243F86EF0
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/53/3394c0-4587-444e-9a25-00ecf0c4d0ef/1/U7u7qj7iTHrZssYEMuFO2jhJteI.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/53/3394c0-4587-444e-9a25-00ecf0c4d0ef/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 26 Mar 2024 09:09:12 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: IP: 185.92.160.0/22
IP: 185.211.220.0/22
IP: 212.79.200.0 -- 212.79.223.255
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:7a:05:4f:25:38:ac:d6:14:51:c0:38:82:43:f8:6e:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Mar 26 09:09:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=53bbbbaa3ee24c7ad9b2c60432e14eda3849b5e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:b4:37:11:0d:7a:4c:f8:34:8c:7b:30:e6:3c:
bc:d2:2a:e5:62:9e:07:1b:35:2d:28:e6:b3:6e:f3:
ca:a2:cf:ff:18:6c:bc:43:99:6e:f6:5b:e7:61:17:
bb:b4:e3:4f:1f:eb:2c:2b:35:64:8c:64:23:c2:f6:
7a:c2:e6:77:f0:7a:31:09:19:66:db:75:4f:88:16:
ef:91:84:b2:66:9d:86:ae:45:cf:be:91:6e:b9:56:
c9:f4:17:32:e3:5f:d1:16:fd:dd:7f:14:38:ed:21:
c1:eb:9b:bc:22:e6:f5:48:5b:c6:49:d7:8d:12:38:
1c:8d:1d:04:13:c3:e1:10:48:06:10:0d:ac:5c:90:
d6:b3:bc:1e:45:29:0c:ee:04:ad:04:65:a4:4d:a4:
36:e2:d5:11:de:3d:79:f5:64:b6:56:a0:95:17:9e:
1d:c7:f2:95:92:c2:b5:e6:dd:1d:1e:da:16:b9:c2:
cb:af:b3:81:4f:47:66:31:48:e5:a2:38:5e:11:85:
34:a2:13:58:60:7c:40:55:fa:e3:b4:21:9c:04:56:
13:d3:88:11:7a:b3:bd:82:57:fb:3f:2b:7c:b3:bc:
87:01:e0:a6:ea:13:e3:99:3b:33:ea:70:cb:b0:aa:
22:03:21:7d:45:8b:f7:e2:5d:29:63:28:ad:68:c8:
45:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:BB:BB:AA:3E:E2:4C:7A:D9:B2:C6:04:32:E1:4E:DA:38:49:B5:E2
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/3394c0-4587-444e-9a25-00ecf0c4d0ef/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/3394c0-4587-444e-9a25-00ecf0c4d0ef/1/U7u7qj7iTHrZssYEMuFO2jhJteI.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.92.160.0/22
185.211.220.0/22
212.79.200.0-212.79.223.255
Signature Algorithm: sha256WithRSAEncryption
16:3c:cf:a8:e2:5d:a1:d3:31:59:9b:32:26:45:4d:6b:80:53:
3b:da:38:b3:51:e7:84:f7:24:f4:d1:bc:f6:0f:84:e2:86:cd:
c3:96:b4:ea:de:61:0c:d3:3e:2d:9a:40:c7:74:e9:0f:ba:3e:
56:af:b0:7e:6b:94:52:05:4f:39:13:47:bb:2a:23:a7:59:58:
00:1f:a7:a6:08:f3:e7:85:f2:e9:58:c7:79:27:d8:cb:c4:1c:
a0:66:ef:af:35:65:83:28:5c:01:9f:2b:0b:2a:7a:00:ce:cc:
2d:83:58:b1:4d:ac:c0:cc:b8:e0:cd:52:2e:8e:54:2d:09:1f:
a2:9a:d2:42:f6:4c:77:38:98:a8:92:e1:ee:cd:6e:3f:4e:73:
80:7c:f3:95:dd:b0:94:a4:6b:19:ad:e7:02:c3:88:0c:aa:7e:
08:89:93:63:ec:62:77:ba:6b:e4:c6:f5:73:52:3c:de:0c:5e:
32:ca:fd:28:b1:73:6c:aa:55:77:df:74:f4:f3:2b:90:38:d7:
ce:ad:ef:91:6c:42:20:62:10:23:5b:ee:cd:14:c7:53:fc:8c:
6b:63:9a:c8:d3:2d:ac:09:de:8b:2e:df:af:ca:35:88:2d:01:
72:3b:d6:ab:ee:f2:2f:f0:5e:e3:a4:8b:0f:59:1a:74:97:ba:
3d:ea:e3:c6
-----BEGIN CERTIFICATE-----
MIIFjDCCBHSgAwIBAgISAY56BU8lOKzWFFHAOIJD+G7wMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMzI2MDkwOTEyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1M2JiYmJhYTNlZTI0YzdhZDliMmM2MDQzMmUxNGVkYTM4NDliNWUyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0rQ3EQ16TPg0jHsw5jy80irlYp4H
GzUtKOazbvPKos//GGy8Q5lu9lvnYRe7tONPH+ssKzVkjGQjwvZ6wuZ38HoxCRlm
23VPiBbvkYSyZp2GrkXPvpFuuVbJ9Bcy41/RFv3dfxQ47SHB65u8Iub1SFvGSdeN
EjgcjR0EE8PhEEgGEA2sXJDWs7weRSkM7gStBGWkTaQ24tUR3j159WS2VqCVF54d
x/KVksK15t0dHtoWucLLr7OBT0dmMUjlojheEYU0ohNYYHxAVfrjtCGcBFYT04gR
erO9glf7Pyt8s7yHAeCm6hPjmTsz6nDLsKoiAyF9RYv34l0pYyitaMhFfwIDAQAB
o4ICmDCCApQwHQYDVR0OBBYEFFO7u6o+4kx62bLGBDLhTto4SbXiMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzUzLzMzOTRj
MC00NTg3LTQ0NGUtOWEyNS0wMGVjZjBjNGQwZWYvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTMvMzM5NGMw
LTQ1ODctNDQ0ZS05YTI1LTAwZWNmMGM0ZDBlZi8xL1U3dTdxajdpVEhyWnNzWUVN
dUZPMmpoSnRlSS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDMGCCsGAQUF
BwEHAQH/BCQwIjAgBAIAATAaAwQCuVygAwQCudPcMAwDBAPUT8gDBAXUT8AwDQYJ
KoZIhvcNAQELBQADggEBABY8z6jiXaHTMVmbMiZFTWuAUzvaOLNR54T3JPTRvPYP
hOKGzcOWtOreYQzTPi2aQMd06Q+6PlavsH5rlFIFTzkTR7sqI6dZWAAfp6YI8+eF
8ulYx3kn2MvEHKBm7681ZYMoXAGfKwsqegDOzC2DWLFNrMDMuODNUi6OVC0JH6Ka
0kL2THc4mKiS4e7Nbj9Oc4B885XdsJSkaxmt5wLDiAyqfgiJk2PsYne6a+TG9XNS
PN4MXjLK/Sixc2yqVXffdPTzK5A4186t75FsQiBiECNb7s0Ux1P8jGtjmsjTLawJ
3osu36/KNYgtAXI71qvu8i/wXuOkiw9ZGnSXuj3q48Y=
-----END CERTIFICATE-----
Generated at Fri May 3 07:02:00 2024 by rpki-client on console-ams.rpki-client.org