Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/VHkd3iyb3qNmzn7GxagAxdpjNFQ.cer
File: VHkd3iyb3qNmzn7GxagAxdpjNFQ.cer (raw, json)
Hash identifier: VQELg7rFYex40T1sMW3IEWfWKv5QEVVIV1o87RnS+g8=
Subject key identifier: 54:79:1D:DE:2C:9B:DE:A3:66:CE:7E:C6:C5:A8:00:C5:DA:63:34:54
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC4253E24893D34F394820274CAEBBE05
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/8f/17e567-9e44-444a-ac64-18b34bea9b06/1/VHkd3iyb3qNmzn7GxagAxdpjNFQ.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/8f/17e567-9e44-444a-ac64-18b34bea9b06/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 08:30:24 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 212772
IP: 45.156.136.0/22
IP: 46.243.228.0/22
IP: 92.255.56.0/24
IP: 92.255.68.0/22
IP: 92.255.84.0/24
IP: 94.140.14.0/23
IP: 176.103.128.0/19
IP: 185.113.28.0/22
IP: 217.72.12.0/22
IP: 2a10:50c0::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:25:3e:24:89:3d:34:f3:94:82:02:74:ca:eb:be:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 08:30:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=54791dde2c9bdea366ce7ec6c5a800c5da633454
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:c0:30:89:bc:2e:3e:a8:13:68:fa:b4:c0:2d:
07:77:65:ce:2a:e9:9b:b1:f6:82:eb:2e:38:55:c7:
0c:46:42:21:8b:6d:35:f1:e1:1c:19:52:99:bc:2d:
f7:b4:64:89:fb:2b:8b:ed:55:3d:65:28:f8:aa:c7:
b4:46:8c:6a:90:21:48:f2:cc:b5:33:01:c7:c2:b4:
11:b3:30:c7:e8:75:a7:c3:db:39:5f:2a:49:de:67:
76:08:3a:df:12:be:8f:08:5b:3c:fa:ab:09:d2:dd:
d9:a1:9f:9a:12:cf:b2:d3:a5:36:8a:4b:45:e2:1c:
bb:6f:a4:45:0c:19:25:e1:17:c0:af:0e:27:79:6b:
10:0a:5b:47:52:d4:8a:d4:fb:50:ac:40:ad:5a:bf:
16:5b:bc:a4:9b:7d:23:4c:cb:6e:5a:fa:ed:7f:dd:
8b:f9:83:ee:b7:05:1e:c5:94:43:94:a9:22:46:d4:
78:34:42:b9:f7:77:6d:d7:f5:37:26:fd:4f:80:b9:
d8:81:1c:e9:3c:44:34:f4:13:93:53:c3:79:56:5b:
c2:12:17:48:af:5d:d7:27:de:e5:47:a7:52:82:8c:
fe:42:ed:ec:38:e2:91:1a:e7:33:a3:f5:f2:38:15:
8d:a9:d2:0a:89:f6:a5:d3:da:71:2e:a7:da:d2:a3:
81:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:79:1D:DE:2C:9B:DE:A3:66:CE:7E:C6:C5:A8:00:C5:DA:63:34:54
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/17e567-9e44-444a-ac64-18b34bea9b06/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/17e567-9e44-444a-ac64-18b34bea9b06/1/VHkd3iyb3qNmzn7GxagAxdpjNFQ.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.156.136.0/22
46.243.228.0/22
92.255.56.0/24
92.255.68.0/22
92.255.84.0/24
94.140.14.0/23
176.103.128.0/19
185.113.28.0/22
217.72.12.0/22
IPv6:
2a10:50c0::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
212772
Signature Algorithm: sha256WithRSAEncryption
0a:19:b1:1d:71:9b:02:a5:57:15:10:cb:75:b2:6b:a1:75:12:
b3:ee:bc:19:5b:d0:1f:98:88:74:b0:bd:4f:7d:d0:90:42:d5:
a7:77:69:53:6c:59:2a:15:c3:fd:93:52:ad:8d:b5:2e:55:f5:
2a:28:88:8b:ff:93:06:79:9c:79:a8:7b:a5:58:79:56:18:e7:
58:25:4f:c3:38:21:c7:52:0c:68:d2:ca:f3:c9:9d:e8:cc:02:
2d:0d:5d:bc:db:3f:a6:05:93:cb:6a:d9:cb:56:e6:9a:06:d5:
03:88:d6:2b:67:c9:84:56:b7:a3:aa:67:2c:2d:8c:fb:3d:53:
75:24:df:9a:d4:54:1a:08:a4:ec:0e:a1:78:7d:01:50:6c:16:
e7:26:fa:2d:68:61:32:e3:90:e1:fd:38:03:68:2e:a6:9d:2d:
59:7c:a0:51:a6:a0:f2:16:80:d9:b3:77:55:ae:60:6b:8d:69:
75:22:f4:f3:b8:20:4a:ca:05:43:16:38:bd:c0:25:70:ae:fc:
94:c1:41:21:6c:35:e3:c4:85:e4:b9:39:ab:5b:1e:e6:51:1a:
a7:75:35:85:f0:c1:bc:7c:22:0f:7d:7d:f4:a4:b7:9d:f1:97:
d7:f6:4d:c0:45:e1:5f:45:82:51:fc:95:9d:bc:77:f4:ee:2e:
76:9e:bd:78
-----BEGIN CERTIFICATE-----
MIIF0zCCBLugAwIBAgISAYzEJT4kiT0085SCAnTK674FMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAxMDgzMDI0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1NDc5MWRkZTJjOWJkZWEzNjZjZTdlYzZjNWE4MDBjNWRhNjMzNDU0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmsAwibwuPqgTaPq0wC0Hd2XOKumb
sfaC6y44VccMRkIhi2018eEcGVKZvC33tGSJ+yuL7VU9ZSj4qse0RoxqkCFI8sy1
MwHHwrQRszDH6HWnw9s5XypJ3md2CDrfEr6PCFs8+qsJ0t3ZoZ+aEs+y06U2iktF
4hy7b6RFDBkl4RfArw4neWsQCltHUtSK1PtQrECtWr8WW7ykm30jTMtuWvrtf92L
+YPutwUexZRDlKkiRtR4NEK593dt1/U3Jv1PgLnYgRzpPEQ09BOTU8N5VlvCEhdI
r13XJ97lR6dSgoz+Qu3sOOKRGuczo/XyOBWNqdIKifal09pxLqfa0qOBKwIDAQAB
o4IC3zCCAtswHQYDVR0OBBYEFFR5Hd4sm96jZs5+xsWoAMXaYzRUMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzhmLzE3ZTU2
Ny05ZTQ0LTQ0NGEtYWM2NC0xOGIzNGJlYTliMDYvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOGYvMTdlNTY3
LTllNDQtNDQ0YS1hYzY0LTE4YjM0YmVhOWIwNi8xL1ZIa2QzaXliM3FObXpuN0d4
YWdBeGRwak5GUS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF4GCCsGAQUF
BwEHAQH/BE8wTTA8BAIAATA2AwQCLZyIAwQCLvPkAwQAXP84AwQCXP9EAwQAXP9U
AwQBXowOAwQFsGeAAwQCuXEcAwQC2UgMMA0EAgACMAcDBQAqEFDAMBoGCCsGAQUF
BwEIAQH/BAswCaAHMAUCAwM/JDANBgkqhkiG9w0BAQsFAAOCAQEAChmxHXGbAqVX
FRDLdbJroXUSs+68GVvQH5iIdLC9T33QkELVp3dpU2xZKhXD/ZNSrY21LlX1KiiI
i/+TBnmceah7pVh5VhjnWCVPwzghx1IMaNLK88md6MwCLQ1dvNs/pgWTy2rZy1bm
mgbVA4jWK2fJhFa3o6pnLC2M+z1TdSTfmtRUGgik7A6heH0BUGwW5yb6LWhhMuOQ
4f04A2gupp0tWXygUaag8haA2bN3Va5ga41pdSL087ggSsoFQxY4vcAlcK78lMFB
IWw148SF5Lk5q1se5lEap3U1hfDBvHwiD3199KS3nfGX1/ZNwEXhX0WCUfyVnbx3
9O4udp69eA==
-----END CERTIFICATE-----
Generated at Wed Nov 27 00:54:19 2024 by rpki-client on console-fra.rpki-client.org