Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/UQzngdsNx-T59JQUWileTMsSHK4.cer
File: UQzngdsNx-T59JQUWileTMsSHK4.cer (raw, json)
Hash identifier: BXbVb6nkzQkcLjbSgSEY07mYauJ3f+Xi+9VIlv8zt+s=
Subject key identifier: 51:0C:E7:81:DB:0D:C7:E4:F9:F4:94:14:5A:29:5E:4C:CB:12:1C:AE
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0190592900FFCBD643E835817130F7BBC839
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/5f/31fd16-6d00-4d09-a8d4-c1d6c8f319c1/1/UQzngdsNx-T59JQUWileTMsSHK4.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/5f/31fd16-6d00-4d09-a8d4-c1d6c8f319c1/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 27 Jun 2024 10:06:17 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 21469
IP: 80.252.192.0/20
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Sep 2024 14:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:59:29:00:ff:cb:d6:43:e8:35:81:71:30:f7:bb:c8:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jun 27 10:06:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=510ce781db0dc7e4f9f494145a295e4ccb121cae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:ad:04:53:8c:40:dd:4d:91:b2:d8:97:7a:7d:
65:ff:1f:f7:e0:0a:ba:b1:bb:d2:a9:b4:c7:31:44:
b6:d4:1e:f7:00:e2:c1:7b:9c:82:22:09:24:df:cf:
53:c9:57:c8:ff:2e:89:78:1b:24:9d:81:38:f7:7e:
b5:26:1d:55:be:d5:60:b3:a7:c2:ea:eb:38:2b:55:
c1:c8:73:3e:34:46:f5:c3:30:56:45:2b:b1:25:a1:
60:8b:73:4f:ed:2f:8f:5b:69:69:94:a6:1f:04:c0:
58:9c:8c:c4:9a:40:7a:da:1b:fe:33:74:1d:bb:7b:
1f:08:b0:d4:5c:0e:44:0e:07:ee:18:ce:7f:21:d0:
7c:9e:22:7e:6a:9b:0d:1f:6c:cf:c2:b8:02:36:16:
85:b4:ed:f3:d0:23:ff:7a:63:c9:45:97:e6:84:7b:
a0:23:b4:1a:d4:25:3d:2e:47:57:43:7c:28:e7:ea:
f9:db:4d:67:b9:d2:20:e7:fa:13:d1:1d:bf:87:04:
00:7f:06:45:8c:9a:f6:dc:af:1a:56:96:80:18:a2:
0e:3c:eb:ee:0e:a7:ea:36:76:26:cf:14:47:60:c6:
04:81:f8:9f:8e:73:37:de:fd:fd:da:42:88:e1:59:
1f:fb:5f:f9:e5:f9:de:f1:12:cb:b8:7b:14:74:5b:
38:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:0C:E7:81:DB:0D:C7:E4:F9:F4:94:14:5A:29:5E:4C:CB:12:1C:AE
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/31fd16-6d00-4d09-a8d4-c1d6c8f319c1/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/31fd16-6d00-4d09-a8d4-c1d6c8f319c1/1/UQzngdsNx-T59JQUWileTMsSHK4.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.252.192.0/20
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
21469
Signature Algorithm: sha256WithRSAEncryption
98:25:48:90:51:3a:7e:d4:72:f3:7d:99:c4:02:bf:1e:e7:18:
b7:f5:6b:51:59:03:bf:22:8f:4b:cd:42:98:08:1d:5e:22:8c:
9e:11:3d:b8:88:d8:81:72:df:d2:95:49:af:cf:bf:a3:33:da:
66:fd:a8:93:cb:0b:b4:f3:a5:2c:35:bf:82:dc:99:ed:07:ce:
7f:2e:99:a0:4f:db:21:c3:76:ca:24:47:bb:52:e8:4c:61:9a:
8c:bb:15:8a:aa:a1:85:64:23:80:3d:11:d6:da:4a:8b:6f:2a:
8f:83:ad:f5:4b:9c:14:09:88:a6:de:a8:1a:ba:02:2b:94:51:
70:b6:8a:e1:f5:c6:b6:59:c0:29:6b:18:be:8a:f0:e1:b6:d0:
4a:43:6b:68:69:9c:f6:9c:73:9a:55:63:21:16:18:84:38:79:
77:47:63:6c:79:6a:55:b1:c5:73:9e:e1:b0:20:b3:a2:80:6b:
60:5c:44:01:dd:57:d5:19:e9:f5:ae:f9:73:ce:2b:09:46:dd:
6d:41:30:f6:cd:98:a6:36:99:af:c1:b4:b1:b1:bf:8d:dd:28:
b8:30:76:11:2d:ca:32:47:5b:86:14:dc:45:af:4a:e8:ed:d8:
99:c2:b3:fd:d2:c3:a1:da:6a:7a:f7:0d:33:8b:c0:99:9d:d3:
1b:c6:d0:a6
-----BEGIN CERTIFICATE-----
MIIFkzCCBHugAwIBAgISAZBZKQD/y9ZD6DWBcTD3u8g5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwNjI3MTAwNjE3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1MTBjZTc4MWRiMGRjN2U0ZjlmNDk0MTQ1YTI5NWU0Y2NiMTIxY2FlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtq0EU4xA3U2RstiXen1l/x/34Aq6
sbvSqbTHMUS21B73AOLBe5yCIgkk389TyVfI/y6JeBsknYE49361Jh1VvtVgs6fC
6us4K1XByHM+NEb1wzBWRSuxJaFgi3NP7S+PW2lplKYfBMBYnIzEmkB62hv+M3Qd
u3sfCLDUXA5EDgfuGM5/IdB8niJ+apsNH2zPwrgCNhaFtO3z0CP/emPJRZfmhHug
I7Qa1CU9LkdXQ3wo5+r5201nudIg5/oT0R2/hwQAfwZFjJr23K8aVpaAGKIOPOvu
DqfqNnYmzxRHYMYEgfifjnM33v392kKI4Vkf+1/55fne8RLLuHsUdFs4bwIDAQAB
o4ICnzCCApswHQYDVR0OBBYEFFEM54HbDcfk+fSUFFopXkzLEhyuMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzVmLzMxZmQx
Ni02ZDAwLTRkMDktYThkNC1jMWQ2YzhmMzE5YzEvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNWYvMzFmZDE2
LTZkMDAtNGQwOS1hOGQ0LWMxZDZjOGYzMTljMS8xL1VRem5nZHNOeC1UNTlKUVVX
aWxlVE1zU0hLNC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF
BwEHAQH/BBAwDjAMBAIAATAGAwQEUPzAMBkGCCsGAQUFBwEIAQH/BAowCKAGMAQC
AlPdMA0GCSqGSIb3DQEBCwUAA4IBAQCYJUiQUTp+1HLzfZnEAr8e5xi39WtRWQO/
Io9LzUKYCB1eIoyeET24iNiBct/SlUmvz7+jM9pm/aiTywu086UsNb+C3JntB85/
LpmgT9shw3bKJEe7UuhMYZqMuxWKqqGFZCOAPRHW2kqLbyqPg631S5wUCYim3qga
ugIrlFFwtorh9ca2WcApaxi+ivDhttBKQ2toaZz2nHOaVWMhFhiEOHl3R2NseWpV
scVznuGwILOigGtgXEQB3VfVGen1rvlzzisJRt1tQTD2zZimNpmvwbSxsb+N3Si4
MHYRLcoyR1uGFNxFr0ro7diZwrP90sOh2mp69w0zi8CZndMbxtCm
-----END CERTIFICATE-----
Generated at Sat Sep 7 21:02:49 2024 by rpki-client on console-fra.rpki-client.org