Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/VQ1MVx2L-_3Y-joXD5n7Ovq0EdE.cer
File: VQ1MVx2L-_3Y-joXD5n7Ovq0EdE.cer (raw, json)
Hash identifier: SKpHftfxGO+81lCgwAOlqYfahWkHUinr7Rj6IuOUISw=
Subject key identifier: 55:0D:4C:57:1D:8B:FB:FD:D8:FA:3A:17:0F:99:FB:3A:FA:B4:11:D1
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC3B6FDE7F6B42F18254FB5E5B4C9F51A
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/45/57cd56-7bec-40f1-bf72-3d46caf55738/1/VQ1MVx2L-_3Y-joXD5n7Ovq0EdE.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/45/57cd56-7bec-40f1-bf72-3d46caf55738/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 06:29:58 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 209271
IP: 176.119.220.0/24
IP: 2a0a:ac0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:b6:fd:e7:f6:b4:2f:18:25:4f:b5:e5:b4:c9:f5:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 06:29:58 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=550d4c571d8bfbfdd8fa3a170f99fb3afab411d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:4b:69:cf:9c:23:cc:70:ce:25:b3:d6:c4:c0:
58:57:0a:0a:f9:95:a9:51:db:d7:ee:52:73:f9:65:
9f:c1:ed:05:26:bb:8e:79:1c:a2:35:f8:49:a0:5f:
ea:0b:a1:ef:43:5d:67:84:70:0f:f0:82:8e:4a:ab:
1c:9b:75:8d:22:95:aa:d7:6d:4e:2c:46:1a:b8:38:
c4:c7:6a:1c:6c:ca:52:eb:93:a4:c6:c4:94:5f:7c:
de:76:4a:6d:99:6a:da:f2:c5:18:14:c0:ec:d5:0f:
de:4b:57:fc:49:f0:56:74:cf:61:d0:fb:d4:6f:2f:
64:68:16:c1:f5:85:b9:b4:54:fd:ff:65:c3:ac:f0:
2b:04:f0:99:ad:58:cd:92:51:d9:32:92:7f:09:87:
09:31:da:60:46:4b:79:3e:e9:14:61:9c:14:73:d8:
23:2e:80:dc:5a:56:ab:f5:7b:f4:e3:fe:1d:67:58:
56:40:26:97:ae:98:e3:82:7e:1f:97:da:c7:1d:13:
4d:17:f4:0e:c4:ea:3a:91:e3:16:54:dd:94:e6:67:
cb:b2:e5:cc:e7:db:aa:bb:10:23:82:c5:e3:3a:cf:
6b:15:93:33:cc:9b:a0:5d:aa:a7:1b:6f:5b:25:12:
e6:90:bc:a3:a1:cc:22:d5:28:7d:67:0a:44:f2:c0:
4d:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:0D:4C:57:1D:8B:FB:FD:D8:FA:3A:17:0F:99:FB:3A:FA:B4:11:D1
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/57cd56-7bec-40f1-bf72-3d46caf55738/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/57cd56-7bec-40f1-bf72-3d46caf55738/1/VQ1MVx2L-_3Y-joXD5n7Ovq0EdE.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.119.220.0/24
IPv6:
2a0a:ac0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
209271
Signature Algorithm: sha256WithRSAEncryption
94:08:a5:d6:62:df:84:18:c6:52:f7:65:e0:79:24:32:b1:4f:
af:95:45:e6:70:62:25:ff:58:cc:cd:77:e2:25:2e:41:83:10:
f2:f5:8b:34:d1:f0:2a:4b:56:d3:57:15:d5:0f:e9:19:8f:90:
ec:f7:1f:aa:8d:f9:da:97:90:94:2b:77:6c:1c:67:87:91:bd:
93:d2:c7:94:4f:b6:61:55:69:94:96:87:3b:0c:0b:4d:e1:bf:
28:2e:cb:ab:fc:25:97:cd:4a:a8:c1:b6:3b:6f:b1:00:62:e9:
8b:b6:ec:ab:69:a2:5e:38:94:f3:5e:04:45:ac:94:17:f7:36:
19:15:0a:90:6f:2a:fd:b5:07:88:db:2c:cf:dc:a8:34:6e:65:
b5:89:a5:73:e9:aa:da:e6:6e:8e:4d:1c:7c:ed:f6:86:22:c4:
77:d3:b3:d3:98:94:a2:25:c5:71:be:db:7e:8b:4f:17:4a:de:
bf:df:9c:73:6b:c9:0f:ab:c4:67:77:fd:43:2a:93:06:9d:50:
89:b5:04:ae:fd:55:44:8b:e9:0c:42:fd:d5:06:90:1f:4e:84:
38:4d:23:b4:35:31:3d:82:1d:4d:b3:1c:ad:9e:c5:f7:3f:79:
6e:c1:52:48:9e:9f:01:58:3f:ce:7b:a4:fa:13:88:63:70:ba:
a6:f1:59:28
-----BEGIN CERTIFICATE-----
MIIFozCCBIugAwIBAgISAYzDtv3n9rQvGCVPteW0yfUaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAxMDYyOTU4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1NTBkNGM1NzFkOGJmYmZkZDhmYTNhMTcwZjk5ZmIzYWZhYjQxMWQxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx0tpz5wjzHDOJbPWxMBYVwoK+ZWp
UdvX7lJz+WWfwe0FJruOeRyiNfhJoF/qC6HvQ11nhHAP8IKOSqscm3WNIpWq121O
LEYauDjEx2ocbMpS65OkxsSUX3zedkptmWra8sUYFMDs1Q/eS1f8SfBWdM9h0PvU
by9kaBbB9YW5tFT9/2XDrPArBPCZrVjNklHZMpJ/CYcJMdpgRkt5PukUYZwUc9gj
LoDcWlar9Xv04/4dZ1hWQCaXrpjjgn4fl9rHHRNNF/QOxOo6keMWVN2U5mfLsuXM
59uquxAjgsXjOs9rFZMzzJugXaqnG29bJRLmkLyjocwi1Sh9ZwpE8sBNnQIDAQAB
o4ICrzCCAqswHQYDVR0OBBYEFFUNTFcdi/v92Po6Fw+Z+zr6tBHRMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzQ1LzU3Y2Q1
Ni03YmVjLTQwZjEtYmY3Mi0zZDQ2Y2FmNTU3MzgvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDUvNTdjZDU2
LTdiZWMtNDBmMS1iZjcyLTNkNDZjYWY1NTczOC8xL1ZRMU1WeDJMLV8zWS1qb1hE
NW43T3ZxMEVkRS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF
BwEHAQH/BB8wHTAMBAIAATAGAwQAsHfcMA0EAgACMAcDBQMqCgrAMBoGCCsGAQUF
BwEIAQH/BAswCaAHMAUCAwMxdzANBgkqhkiG9w0BAQsFAAOCAQEAlAil1mLfhBjG
Uvdl4HkkMrFPr5VF5nBiJf9YzM134iUuQYMQ8vWLNNHwKktW01cV1Q/pGY+Q7Pcf
qo352peQlCt3bBxnh5G9k9LHlE+2YVVplJaHOwwLTeG/KC7Lq/wll81KqMG2O2+x
AGLpi7bsq2miXjiU814ERayUF/c2GRUKkG8q/bUHiNssz9yoNG5ltYmlc+mq2uZu
jk0cfO32hiLEd9Oz05iUoiXFcb7bfotPF0rev9+cc2vJD6vEZ3f9QyqTBp1QibUE
rv1VRIvpDEL91QaQH06EOE0jtDUxPYIdTbMcrZ7F9z95bsFSSJ6fAVg/znuk+hOI
Y3C6pvFZKA==
-----END CERTIFICATE-----
Generated at Wed Nov 27 00:54:21 2024 by rpki-client on console-fra.rpki-client.org