Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/YTdPxOqwDUHB7uR_37ABB4x0-oU.cer
File: YTdPxOqwDUHB7uR_37ABB4x0-oU.cer (raw, json)
Hash identifier: +UBRE5FQBj2L5SrcD5I+EN6HVV/LMwTjCtqegGyFkOk=
Subject key identifier: 61:37:4F:C4:EA:B0:0D:41:C1:EE:E4:7F:DF:B0:01:07:8C:74:FA:85
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018E180886B003D99072D0FE81A341D646FC
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/e6/a14d46-408a-470c-929d-1fc259bb7de2/1/YTdPxOqwDUHB7uR_37ABB4x0-oU.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/e6/a14d46-408a-470c-929d-1fc259bb7de2/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 07 Mar 2024 08:29:55 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 210895
AS: 211381
IP: 45.131.182.0/23
IP: 213.134.31.0/24
IP: 2a13:4ac0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:18:08:86:b0:03:d9:90:72:d0:fe:81:a3:41:d6:46:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Mar 7 08:29:55 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=61374fc4eab00d41c1eee47fdfb001078c74fa85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:53:b1:2f:50:c6:19:1d:6e:91:54:0c:77:aa:
02:44:3c:3d:5c:87:f4:38:59:5c:73:51:6b:37:77:
3c:2f:6b:ec:2f:a2:cb:71:1b:73:15:9f:4c:60:38:
51:75:a8:fa:41:16:6f:86:30:87:2c:69:1b:3a:49:
92:57:59:06:99:57:1f:96:12:e2:53:69:65:06:68:
05:b0:22:a5:c0:94:36:79:26:e8:27:ec:fb:ef:4d:
80:98:eb:5c:59:09:2c:db:bc:84:04:b4:81:86:ca:
a6:2c:b2:7e:d8:e3:7a:8c:83:75:b0:e4:e1:f8:98:
6b:9b:3e:d7:fd:86:db:28:b5:31:8f:80:d1:d6:27:
bb:ad:de:b3:55:8b:93:ef:3e:ad:f1:e0:84:4e:2e:
63:e8:03:42:92:39:81:01:8f:91:71:72:be:94:04:
dc:c9:d8:8d:c1:64:75:b4:44:57:95:76:76:a6:e8:
de:3e:4f:b5:e0:33:5e:24:c6:6d:92:17:6f:a2:60:
55:8a:05:bd:64:2d:22:b8:da:30:b5:75:f7:bd:bc:
de:b5:bd:f6:a1:99:be:45:1a:73:05:06:43:f3:a8:
f3:3c:6b:97:10:3a:76:54:b3:29:3b:01:6e:04:98:
b5:1e:db:1b:a3:60:4d:03:84:c1:50:5e:0d:1a:6a:
d1:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:37:4F:C4:EA:B0:0D:41:C1:EE:E4:7F:DF:B0:01:07:8C:74:FA:85
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/a14d46-408a-470c-929d-1fc259bb7de2/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/a14d46-408a-470c-929d-1fc259bb7de2/1/YTdPxOqwDUHB7uR_37ABB4x0-oU.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.131.182.0/23
213.134.31.0/24
IPv6:
2a13:4ac0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
210895
211381
Signature Algorithm: sha256WithRSAEncryption
5a:5b:8f:f0:f0:c4:c4:2e:39:ca:31:67:dd:bf:53:03:2e:e4:
2d:62:33:0d:01:0b:7a:16:80:03:d7:06:13:c0:90:6a:ce:b0:
91:8d:e1:c2:01:37:be:21:19:d0:55:42:bf:40:6b:73:1b:ee:
77:1b:5d:49:46:f4:e8:0e:47:3f:db:60:31:f3:43:e5:cb:9b:
94:7a:29:c3:1e:7f:da:99:5a:01:af:85:8d:f1:32:b9:9a:54:
e7:73:88:31:38:ed:77:d3:bf:a1:d9:9e:b6:7b:35:92:e9:5d:
78:36:34:6d:d4:84:4a:2c:29:0c:98:e1:7c:55:d6:66:59:69:
96:56:23:ba:f7:da:a8:47:43:01:e0:72:22:83:26:f6:85:77:
60:12:32:73:d1:39:56:02:f9:10:72:63:ec:69:0c:a4:e3:56:
12:aa:34:42:14:75:a0:01:40:02:60:f6:36:0d:5a:67:5e:6c:
87:1d:06:f5:6a:e2:e2:64:f5:3b:5b:2f:13:6b:2d:31:64:86:
24:f9:41:7d:ee:1f:ed:b6:1c:0f:20:6b:6a:d8:12:89:08:8f:
af:45:36:e9:e3:7f:a5:34:97:df:04:9a:42:1f:b0:54:48:06:
53:20:12:c2:d3:32:3b:7c:2c:4a:7e:23:41:60:19:4c:52:ec:
06:13:fb:b5
-----BEGIN CERTIFICATE-----
MIIFrjCCBJagAwIBAgISAY4YCIawA9mQctD+gaNB1kb8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMzA3MDgyOTU1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2MTM3NGZjNGVhYjAwZDQxYzFlZWU0N2ZkZmIwMDEwNzhjNzRmYTg1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx1OxL1DGGR1ukVQMd6oCRDw9XIf0
OFlcc1FrN3c8L2vsL6LLcRtzFZ9MYDhRdaj6QRZvhjCHLGkbOkmSV1kGmVcflhLi
U2llBmgFsCKlwJQ2eSboJ+z7702AmOtcWQks27yEBLSBhsqmLLJ+2ON6jIN1sOTh
+Jhrmz7X/YbbKLUxj4DR1ie7rd6zVYuT7z6t8eCETi5j6ANCkjmBAY+RcXK+lATc
ydiNwWR1tERXlXZ2pujePk+14DNeJMZtkhdvomBVigW9ZC0iuNowtXX3vbzetb32
oZm+RRpzBQZD86jzPGuXEDp2VLMpOwFuBJi1Htsbo2BNA4TBUF4NGmrRxwIDAQAB
o4ICujCCArYwHQYDVR0OBBYEFGE3T8TqsA1Bwe7kf9+wAQeMdPqFMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2U2L2ExNGQ0
Ni00MDhhLTQ3MGMtOTI5ZC0xZmMyNTliYjdkZTIvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZTYvYTE0ZDQ2
LTQwOGEtNDcwYy05MjlkLTFmYzI1OWJiN2RlMi8xL1lUZFB4T3F3RFVIQjd1Ul8z
N0FCQjR4MC1vVS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDQGCCsGAQUF
BwEHAQH/BCUwIzASBAIAATAMAwQBLYO2AwQA1YYfMA0EAgACMAcDBQMqE0rAMB8G
CCsGAQUFBwEIAQH/BBAwDqAMMAoCAwM3zwIDAzm1MA0GCSqGSIb3DQEBCwUAA4IB
AQBaW4/w8MTELjnKMWfdv1MDLuQtYjMNAQt6FoAD1wYTwJBqzrCRjeHCATe+IRnQ
VUK/QGtzG+53G11JRvToDkc/22Ax80Ply5uUeinDHn/amVoBr4WN8TK5mlTnc4gx
OO1307+h2Z62ezWS6V14NjRt1IRKLCkMmOF8VdZmWWmWViO699qoR0MB4HIigyb2
hXdgEjJz0TlWAvkQcmPsaQyk41YSqjRCFHWgAUACYPY2DVpnXmyHHQb1auLiZPU7
Wy8Tay0xZIYk+UF97h/tthwPIGtq2BKJCI+vRTbp43+lNJffBJpCH7BUSAZTIBLC
0zI7fCxKfiNBYBlMUuwGE/u1
-----END CERTIFICATE-----
Generated at Wed Nov 27 00:55:08 2024 by rpki-client on console-fra.rpki-client.org