Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/V5mzJ91s2hrTe8HCJKRUsC3qKvw.cer
File: V5mzJ91s2hrTe8HCJKRUsC3qKvw.cer (raw, json)
Hash identifier: cQn6AVcAGzgqx0NFYltGdoCg7zvz7anMdyavSQAYnwA=
Subject key identifier: 57:99:B3:27:DD:6C:DA:1A:D3:7B:C1:C2:24:A4:54:B0:2D:EA:2A:FC
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018F15A4F1E7C4A3A54770FB7C44B6A35A45
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/ed/8c2ae9-0a77-49eb-ad3a-ea150e7638ce/1/V5mzJ91s2hrTe8HCJKRUsC3qKvw.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/ed/8c2ae9-0a77-49eb-ad3a-ea150e7638ce/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 25 Apr 2024 14:24:42 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: IP: 87.251.24.0/21
IP: 91.102.180.0/22
IP: 145.224.64.0/18
IP: 162.43.192.0/22
IP: 169.155.224.0/19
IP: 176.116.124.0/23
IP: 188.92.248.0/21
IP: 188.95.144.0/23
IP: 209.198.128.0/19
IP: 216.128.0.0/19
IP: 217.65.136.0/21
IP: 217.142.16.0/20
IP: 2a0d:3340::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 11:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:15:a4:f1:e7:c4:a3:a5:47:70:fb:7c:44:b6:a3:5a:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Apr 25 14:24:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5799b327dd6cda1ad37bc1c224a454b02dea2afc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:fa:27:b4:a5:ef:e5:a8:73:05:6f:dc:93:a8:
d2:a8:d5:52:0c:ae:38:86:4a:52:41:17:63:7e:e5:
14:76:84:84:5d:ad:ac:34:0b:c2:ee:73:81:80:bb:
df:1e:34:87:32:d2:2e:ce:ec:a6:36:e4:eb:2d:0e:
91:f3:d8:8e:04:23:de:84:1e:94:ce:78:22:32:5f:
8d:dc:a8:a5:9c:8d:55:85:34:79:9f:3b:32:1a:0d:
7d:8c:93:11:d1:72:e2:c3:54:64:f2:31:17:28:fc:
39:9a:cc:e6:bf:0a:05:42:eb:06:dd:c3:14:2e:0f:
5b:ff:6a:ba:80:33:8a:87:9d:19:b8:fc:c7:e3:64:
d8:1c:74:c0:a0:61:7a:b7:7d:10:80:52:f9:73:ab:
08:d4:f3:64:7d:09:13:04:7d:bc:1c:90:a4:49:6b:
13:ab:96:ae:48:c3:13:38:9e:fa:c4:ac:85:af:75:
7c:88:96:84:b0:6e:20:31:84:b6:8b:6b:0c:14:af:
26:cd:68:d7:8e:57:f1:aa:6c:e4:80:06:26:50:43:
49:8d:bc:b0:6d:a9:34:49:33:13:aa:43:c1:2a:ea:
e9:c7:3b:9b:74:fc:14:e2:da:dc:83:73:73:7a:c9:
0c:e7:12:c5:9b:9d:36:d7:f7:88:68:bc:e4:93:97:
28:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:99:B3:27:DD:6C:DA:1A:D3:7B:C1:C2:24:A4:54:B0:2D:EA:2A:FC
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/8c2ae9-0a77-49eb-ad3a-ea150e7638ce/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/8c2ae9-0a77-49eb-ad3a-ea150e7638ce/1/V5mzJ91s2hrTe8HCJKRUsC3qKvw.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.251.24.0/21
91.102.180.0/22
145.224.64.0/18
162.43.192.0/22
169.155.224.0/19
176.116.124.0/23
188.92.248.0/21
188.95.144.0/23
209.198.128.0/19
216.128.0.0/19
217.65.136.0/21
217.142.16.0/20
IPv6:
2a0d:3340::/29
Signature Algorithm: sha256WithRSAEncryption
64:12:5a:99:96:20:2d:c8:b3:3b:e9:ed:fb:45:33:4f:86:12:
01:b3:72:80:68:b8:a1:65:06:1a:f6:32:2d:97:ce:92:c0:81:
41:67:dc:da:a9:8c:b7:90:6e:2b:5a:37:66:4c:60:fb:d0:ca:
21:3e:fd:b6:32:c6:cd:ca:c0:4c:5b:31:65:e9:0c:19:b1:5b:
d0:ec:91:1d:3f:69:04:47:39:cc:16:45:37:da:9e:2f:fb:86:
18:4f:50:9b:6b:b6:88:4a:1e:c9:16:c7:8f:c1:17:1e:16:9b:
3b:5d:5a:82:a0:7a:54:4d:f7:98:40:f2:be:19:0f:87:47:b2:
7d:cd:32:d7:d8:02:8a:6d:75:e7:bc:28:69:bc:79:4a:3f:58:
d3:6e:52:c6:27:9d:3a:c6:c1:52:81:ed:2c:d0:46:27:b7:6f:
1d:e1:01:ba:34:14:d1:18:21:b0:66:6e:e8:58:bf:47:b7:b1:
12:e2:2b:5d:57:d7:ec:59:ca:ef:48:96:18:fd:8a:8f:0c:11:
c7:8b:67:69:ad:98:7b:db:49:0a:d2:2e:3b:ca:8a:26:c0:5c:
7d:25:2e:43:b8:97:99:89:85:56:ed:27:88:af:bf:06:13:2b:
3f:aa:e4:80:5b:01:bd:7c:e0:57:93:7f:58:af:fd:01:09:d6:
9d:76:f9:c5
-----BEGIN CERTIFICATE-----
MIIFyTCCBLGgAwIBAgISAY8VpPHnxKOlR3D7fES2o1pFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwNDI1MTQyNDQyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1Nzk5YjMyN2RkNmNkYTFhZDM3YmMxYzIyNGE0NTRiMDJkZWEyYWZjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2vontKXv5ahzBW/ck6jSqNVSDK44
hkpSQRdjfuUUdoSEXa2sNAvC7nOBgLvfHjSHMtIuzuymNuTrLQ6R89iOBCPehB6U
zngiMl+N3KilnI1VhTR5nzsyGg19jJMR0XLiw1Rk8jEXKPw5mszmvwoFQusG3cMU
Lg9b/2q6gDOKh50ZuPzH42TYHHTAoGF6t30QgFL5c6sI1PNkfQkTBH28HJCkSWsT
q5auSMMTOJ76xKyFr3V8iJaEsG4gMYS2i2sMFK8mzWjXjlfxqmzkgAYmUENJjbyw
bak0STMTqkPBKurpxzubdPwU4trcg3NzeskM5xLFm5021/eIaLzkk5cosQIDAQAB
o4IC1TCCAtEwHQYDVR0OBBYEFFeZsyfdbNoa03vBwiSkVLAt6ir8MB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2VkLzhjMmFl
OS0wYTc3LTQ5ZWItYWQzYS1lYTE1MGU3NjM4Y2UvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZWQvOGMyYWU5
LTBhNzctNDllYi1hZDNhLWVhMTUwZTc2MzhjZS8xL1Y1bXpKOTFzMmhyVGU4SENK
S1JVc0MzcUt2dy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMHAGCCsGAQUF
BwEHAQH/BGEwXzBOBAIAATBIAwQDV/sYAwQCW2a0AwQGkeBAAwQCoivAAwQFqZvg
AwQBsHR8AwQDvFz4AwQBvF+QAwQF0caAAwQF2IAAAwQD2UGIAwQE2Y4QMA0EAgAC
MAcDBQMqDTNAMA0GCSqGSIb3DQEBCwUAA4IBAQBkElqZliAtyLM76e37RTNPhhIB
s3KAaLihZQYa9jItl86SwIFBZ9zaqYy3kG4rWjdmTGD70MohPv22MsbNysBMWzFl
6QwZsVvQ7JEdP2kERznMFkU32p4v+4YYT1Cba7aISh7JFsePwRceFps7XVqCoHpU
TfeYQPK+GQ+HR7J9zTLX2AKKbXXnvChpvHlKP1jTblLGJ506xsFSge0s0EYnt28d
4QG6NBTRGCGwZm7oWL9Ht7ES4itdV9fsWcrvSJYY/YqPDBHHi2dprZh720kK0i47
yoomwFx9JS5DuJeZiYVW7SeIr78GEys/quSAWwG9fOBXk39Yr/0BCdaddvnF
-----END CERTIFICATE-----
Generated at Fri May 3 13:46:05 2024 by rpki-client on console-ams.rpki-client.org