Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/UsbdFxnihP9ccH-BIujtDYeVrz0.cer
File: UsbdFxnihP9ccH-BIujtDYeVrz0.cer (raw, json)
Hash identifier: BPeDMhX4OqFHvqfRuQFmklj0SyLRbXzrlStsFc16jtc=
Subject key identifier: 52:C6:DD:17:19:E2:84:FF:5C:70:7F:81:22:E8:ED:0D:87:95:AF:3D
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018DA29E771578B7D80E6C2442F15558CDA1
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/d4/10b28e-f928-4a30-94f3-69d406e18653/1/UsbdFxnihP9ccH-BIujtDYeVrz0.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/d4/10b28e-f928-4a30-94f3-69d406e18653/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 13 Feb 2024 13:18:30 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 210593
AS: 211808
IP: 91.247.175.0/24
IP: 185.237.187.0/24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:a2:9e:77:15:78:b7:d8:0e:6c:24:42:f1:55:58:cd:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Feb 13 13:18:30 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=52c6dd1719e284ff5c707f8122e8ed0d8795af3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:1a:21:b5:d1:25:2b:c7:a7:ec:61:ce:be:3a:
e1:16:3a:c9:ac:fb:c0:f3:9e:4f:e1:a1:32:00:bd:
44:c1:ea:3b:4f:b8:f6:80:b3:d1:b2:1c:5c:8a:c9:
ee:23:f4:48:0b:ed:83:04:f6:01:43:a9:c0:81:90:
62:3e:fe:bb:30:9c:79:2b:f6:a0:95:57:59:eb:53:
00:32:8b:68:42:bc:36:c4:f4:1d:8f:13:cb:5d:aa:
bf:f8:00:af:9f:e5:3d:06:fc:7b:6b:50:88:68:57:
2a:69:6b:e4:97:fb:e3:05:94:33:cf:20:71:b6:b9:
c3:40:85:1d:a0:e1:97:00:96:cd:54:0d:5d:78:dc:
46:e0:a4:72:88:b9:68:f7:8b:18:e6:e9:3e:94:1b:
5e:e3:3d:81:fd:09:b1:88:71:7c:5a:85:2b:9f:77:
1d:06:99:ab:a9:ab:00:f4:47:cf:55:55:3a:73:a2:
d4:db:ed:c5:55:07:06:23:a8:0a:df:3b:16:ae:36:
f2:d7:67:8a:9d:0b:da:1d:c6:1b:38:89:0b:c4:d3:
d7:a5:75:b3:83:fc:52:7a:dc:56:45:fd:a8:e2:8f:
ae:21:95:50:81:a3:2d:c3:00:0f:e7:1b:2b:13:30:
d4:9e:90:7c:5a:0c:53:5d:4b:84:ac:43:26:64:24:
3e:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:C6:DD:17:19:E2:84:FF:5C:70:7F:81:22:E8:ED:0D:87:95:AF:3D
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/10b28e-f928-4a30-94f3-69d406e18653/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/10b28e-f928-4a30-94f3-69d406e18653/1/UsbdFxnihP9ccH-BIujtDYeVrz0.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.247.175.0/24
185.237.187.0/24
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
210593
211808
Signature Algorithm: sha256WithRSAEncryption
91:d3:1e:db:1b:e5:8a:bc:9d:71:f6:d5:e4:6f:b8:3e:21:8b:
d4:3c:69:3d:8c:12:4d:cc:da:5e:aa:d9:eb:84:5e:22:11:fe:
04:10:77:e3:44:e5:a2:e5:3c:18:80:00:6a:a9:8c:5a:03:69:
3e:25:d1:9a:5e:e7:24:1d:4f:df:55:57:f6:9c:ed:a8:27:3a:
cb:1f:64:9a:60:99:cb:b7:9e:f8:b8:22:5b:d5:eb:69:ff:b6:
cd:2d:22:fa:71:48:9a:df:f3:87:f3:c4:e2:ee:c8:17:85:48:
95:8b:6c:a7:ec:43:de:9a:65:90:b2:f1:e9:ac:44:f6:b9:54:
49:38:69:54:89:7d:96:e9:a9:9b:4d:3e:43:72:70:56:69:63:
1d:f1:3f:93:1b:8b:87:c3:80:02:d9:21:e2:32:a5:22:4b:f7:
c1:79:d3:18:25:27:b2:4f:95:36:0c:70:0d:f9:66:b1:20:46:
42:71:f1:40:6f:8e:64:3c:f8:3c:68:d0:99:5a:4c:06:f5:6b:
ee:36:51:d9:0b:26:61:a5:27:fd:37:e0:e2:2c:29:47:cd:bb:
7d:17:50:76:b8:32:00:b8:02:35:d5:34:79:a1:ab:fa:a8:8f:
5b:d3:3c:4f:90:f4:ec:2c:11:e3:43:59:71:7d:49:d3:f3:bf:
d2:f5:0b:38
-----BEGIN CERTIFICATE-----
MIIFnzCCBIegAwIBAgISAY2inncVeLfYDmwkQvFVWM2hMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMjEzMTMxODMwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1MmM2ZGQxNzE5ZTI4NGZmNWM3MDdmODEyMmU4ZWQwZDg3OTVhZjNkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1RohtdElK8en7GHOvjrhFjrJrPvA
855P4aEyAL1Eweo7T7j2gLPRshxcisnuI/RIC+2DBPYBQ6nAgZBiPv67MJx5K/ag
lVdZ61MAMotoQrw2xPQdjxPLXaq/+ACvn+U9Bvx7a1CIaFcqaWvkl/vjBZQzzyBx
trnDQIUdoOGXAJbNVA1deNxG4KRyiLlo94sY5uk+lBte4z2B/QmxiHF8WoUrn3cd
BpmrqasA9EfPVVU6c6LU2+3FVQcGI6gK3zsWrjby12eKnQvaHcYbOIkLxNPXpXWz
g/xSetxWRf2o4o+uIZVQgaMtwwAP5xsrEzDUnpB8WgxTXUuErEMmZCQ+TQIDAQAB
o4ICqzCCAqcwHQYDVR0OBBYEFFLG3RcZ4oT/XHB/gSLo7Q2Hla89MB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2Q0LzEwYjI4
ZS1mOTI4LTRhMzAtOTRmMy02OWQ0MDZlMTg2NTMvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDQvMTBiMjhl
LWY5MjgtNGEzMC05NGYzLTY5ZDQwNmUxODY1My8xL1VzYmRGeG5paFA5Y2NILUJJ
dWp0RFllVnJ6MC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCUGCCsGAQUF
BwEHAQH/BBYwFDASBAIAATAMAwQAW/evAwQAue27MB8GCCsGAQUFBwEIAQH/BBAw
DqAMMAoCAwM2oQIDAztgMA0GCSqGSIb3DQEBCwUAA4IBAQCR0x7bG+WKvJ1x9tXk
b7g+IYvUPGk9jBJNzNpeqtnrhF4iEf4EEHfjROWi5TwYgABqqYxaA2k+JdGaXuck
HU/fVVf2nO2oJzrLH2SaYJnLt574uCJb1etp/7bNLSL6cUia3/OH88Ti7sgXhUiV
i2yn7EPemmWQsvHprET2uVRJOGlUiX2W6ambTT5DcnBWaWMd8T+TG4uHw4AC2SHi
MqUiS/fBedMYJSeyT5U2DHAN+WaxIEZCcfFAb45kPPg8aNCZWkwG9WvuNlHZCyZh
pSf9N+DiLClHzbt9F1B2uDIAuAI11TR5oav6qI9b0zxPkPTsLBHjQ1lxfUnT87/S
9Qs4
-----END CERTIFICATE-----
Generated at Fri May 3 07:02:25 2024 by rpki-client on console-ams.rpki-client.org