Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/UsbdFxnihP9ccH-BIujtDYeVrz0.cer
File: UsbdFxnihP9ccH-BIujtDYeVrz0.cer (raw, json)
Hash identifier: A1hMP3i887JG+6J49G8lNCkNEN8QYZFutgm58aIeRlI=
Subject key identifier: 52:C6:DD:17:19:E2:84:FF:5C:70:7F:81:22:E8:ED:0D:87:95:AF:3D
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0194228DDFB2DA4EFDF85C11AD0030B1F0CF
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/d4/10b28e-f928-4a30-94f3-69d406e18653/1/UsbdFxnihP9ccH-BIujtDYeVrz0.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/d4/10b28e-f928-4a30-94f3-69d406e18653/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 15:48:30 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 210593
AS: 211808
IP: 91.247.175.0/24
IP: 185.237.187.0/24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 21:14:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8d:df:b2:da:4e:fd:f8:5c:11:ad:00:30:b1:f0:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 15:48:30 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=52c6dd1719e284ff5c707f8122e8ed0d8795af3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:1a:21:b5:d1:25:2b:c7:a7:ec:61:ce:be:3a:
e1:16:3a:c9:ac:fb:c0:f3:9e:4f:e1:a1:32:00:bd:
44:c1:ea:3b:4f:b8:f6:80:b3:d1:b2:1c:5c:8a:c9:
ee:23:f4:48:0b:ed:83:04:f6:01:43:a9:c0:81:90:
62:3e:fe:bb:30:9c:79:2b:f6:a0:95:57:59:eb:53:
00:32:8b:68:42:bc:36:c4:f4:1d:8f:13:cb:5d:aa:
bf:f8:00:af:9f:e5:3d:06:fc:7b:6b:50:88:68:57:
2a:69:6b:e4:97:fb:e3:05:94:33:cf:20:71:b6:b9:
c3:40:85:1d:a0:e1:97:00:96:cd:54:0d:5d:78:dc:
46:e0:a4:72:88:b9:68:f7:8b:18:e6:e9:3e:94:1b:
5e:e3:3d:81:fd:09:b1:88:71:7c:5a:85:2b:9f:77:
1d:06:99:ab:a9:ab:00:f4:47:cf:55:55:3a:73:a2:
d4:db:ed:c5:55:07:06:23:a8:0a:df:3b:16:ae:36:
f2:d7:67:8a:9d:0b:da:1d:c6:1b:38:89:0b:c4:d3:
d7:a5:75:b3:83:fc:52:7a:dc:56:45:fd:a8:e2:8f:
ae:21:95:50:81:a3:2d:c3:00:0f:e7:1b:2b:13:30:
d4:9e:90:7c:5a:0c:53:5d:4b:84:ac:43:26:64:24:
3e:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:C6:DD:17:19:E2:84:FF:5C:70:7F:81:22:E8:ED:0D:87:95:AF:3D
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/10b28e-f928-4a30-94f3-69d406e18653/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/10b28e-f928-4a30-94f3-69d406e18653/1/UsbdFxnihP9ccH-BIujtDYeVrz0.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.247.175.0/24
185.237.187.0/24
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
210593
211808
Signature Algorithm: sha256WithRSAEncryption
66:26:c8:8f:78:be:4f:cc:dd:98:26:98:2f:4b:8c:27:d7:6d:
d3:fb:23:5f:9d:46:be:63:34:90:2f:29:1b:af:4d:9e:93:c5:
f6:33:b1:b1:e3:bc:75:3c:02:93:47:46:ba:16:30:e5:82:53:
c7:2a:dd:23:52:37:fe:94:8d:63:26:59:ab:1b:74:36:6d:31:
87:29:9c:c1:0c:b7:b7:ba:b5:44:a1:84:5a:a2:0a:48:4f:b7:
9f:f3:18:42:67:c6:85:f7:6c:84:9e:58:90:0f:ec:00:44:4b:
6f:c6:73:5a:60:e1:a1:b8:a7:40:87:69:7f:c1:96:3f:98:25:
65:cb:88:6e:c4:5a:e1:79:57:ac:e5:53:d5:0f:5e:96:37:5d:
09:5a:48:d9:6d:d2:5c:e0:34:c6:a9:50:a9:8c:cc:e1:a6:41:
e4:73:7e:ad:54:b4:8d:7e:07:1c:c6:0d:25:ea:ea:95:a3:ce:
16:0f:27:e0:0f:76:ae:22:02:e7:6f:af:bf:d6:67:0f:8f:ac:
0f:e3:96:b0:86:9d:e5:1a:57:91:ca:80:20:b7:25:6d:ed:68:
ab:4f:d0:b1:6a:88:ea:73:99:ae:12:5c:5e:63:36:99:dc:25:
cc:ea:97:85:3b:3e:7d:12:86:e1:3f:6b:ab:09:52:f2:43:ef:
72:f9:8c:2b
-----BEGIN CERTIFICATE-----
MIIFnzCCBIegAwIBAgISAZQijd+y2k79+FwRrQAwsfDPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjUwMTAxMTU0ODMwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1MmM2ZGQxNzE5ZTI4NGZmNWM3MDdmODEyMmU4ZWQwZDg3OTVhZjNkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1RohtdElK8en7GHOvjrhFjrJrPvA
855P4aEyAL1Eweo7T7j2gLPRshxcisnuI/RIC+2DBPYBQ6nAgZBiPv67MJx5K/ag
lVdZ61MAMotoQrw2xPQdjxPLXaq/+ACvn+U9Bvx7a1CIaFcqaWvkl/vjBZQzzyBx
trnDQIUdoOGXAJbNVA1deNxG4KRyiLlo94sY5uk+lBte4z2B/QmxiHF8WoUrn3cd
BpmrqasA9EfPVVU6c6LU2+3FVQcGI6gK3zsWrjby12eKnQvaHcYbOIkLxNPXpXWz
g/xSetxWRf2o4o+uIZVQgaMtwwAP5xsrEzDUnpB8WgxTXUuErEMmZCQ+TQIDAQAB
o4ICqzCCAqcwHQYDVR0OBBYEFFLG3RcZ4oT/XHB/gSLo7Q2Hla89MB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2Q0LzEwYjI4
ZS1mOTI4LTRhMzAtOTRmMy02OWQ0MDZlMTg2NTMvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDQvMTBiMjhl
LWY5MjgtNGEzMC05NGYzLTY5ZDQwNmUxODY1My8xL1VzYmRGeG5paFA5Y2NILUJJ
dWp0RFllVnJ6MC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCUGCCsGAQUF
BwEHAQH/BBYwFDASBAIAATAMAwQAW/evAwQAue27MB8GCCsGAQUFBwEIAQH/BBAw
DqAMMAoCAwM2oQIDAztgMA0GCSqGSIb3DQEBCwUAA4IBAQBmJsiPeL5PzN2YJpgv
S4wn123T+yNfnUa+YzSQLykbr02ek8X2M7Gx47x1PAKTR0a6FjDlglPHKt0jUjf+
lI1jJlmrG3Q2bTGHKZzBDLe3urVEoYRaogpIT7ef8xhCZ8aF92yEnliQD+wAREtv
xnNaYOGhuKdAh2l/wZY/mCVly4huxFrheVes5VPVD16WN10JWkjZbdJc4DTGqVCp
jMzhpkHkc36tVLSNfgccxg0l6uqVo84WDyfgD3auIgLnb6+/1mcPj6wP45awhp3l
GleRyoAgtyVt7WirT9Cxaojqc5muElxeYzaZ3CXM6peFOz59EobhP2urCVLyQ+9y
+Ywr
-----END CERTIFICATE-----
Generated at Sun Feb 2 04:05:00 2025 by rpki-client