Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ahfeGIf8-pJEuTHZbagmeMAUdmM.cer
File: ahfeGIf8-pJEuTHZbagmeMAUdmM.cer (raw, json)
Hash identifier: 7TCkOzWyaqFAzGskD6gDe7gCsq/CV2ORSx9oC/QJsX4=
Subject key identifier: 6A:17:DE:18:87:FC:FA:92:44:B9:31:D9:6D:A8:26:78:C0:14:76:63
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC8DF7506FAB57C8FC6755A08692C9638
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/54/ec25bd-219e-4d02-a532-0799a52a6387/1/ahfeGIf8-pJEuTHZbagmeMAUdmM.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/54/ec25bd-219e-4d02-a532-0799a52a6387/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 06:32:16 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 35361
AS: 41267
IP: 85.119.88.0/21
IP: 89.239.0.0/19
IP: 2a02:4000::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:df:75:06:fa:b5:7c:8f:c6:75:5a:08:69:2c:96:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 06:32:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6a17de1887fcfa9244b931d96da82678c0147663
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:ec:34:99:eb:90:3e:b1:a2:04:59:5f:bd:25:
94:43:7d:a9:30:9f:63:9e:27:a7:a0:cb:32:a5:62:
20:43:df:cd:10:71:93:8c:3e:14:1f:de:f7:1a:49:
e7:90:3e:41:61:a7:77:47:a1:13:ac:61:6a:41:49:
5b:41:86:fe:1b:5c:bd:0a:a8:9f:8c:2b:a9:01:25:
f1:df:ad:63:15:fb:9e:d6:fe:62:c6:66:cd:61:a3:
c7:b5:fd:10:d8:95:8b:ef:c4:f2:fe:d7:6b:bd:41:
e3:00:26:87:d0:76:bc:5f:95:15:e1:b5:52:a8:2d:
c5:dc:47:66:94:c5:83:bd:14:9c:88:3d:1e:53:f0:
d8:70:83:a7:21:77:4d:5d:f6:c9:38:f6:9e:f2:2b:
26:2b:43:f9:c9:47:a3:24:c5:92:e5:db:07:c1:07:
96:fb:73:5e:e7:01:7f:9b:67:99:ed:8f:89:d4:af:
39:6c:b3:ce:27:3f:28:8a:c7:8c:7d:e9:5b:f8:7f:
4b:2a:38:3d:41:20:af:6f:98:5b:41:0b:25:47:3e:
c7:a1:39:79:43:68:da:8f:39:5b:ad:1c:13:b8:e4:
f9:04:08:b9:83:86:da:4d:16:8c:43:7e:f4:b5:bb:
87:a0:17:84:ec:d8:e5:a9:ad:4c:29:3a:ed:3a:7b:
0c:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:17:DE:18:87:FC:FA:92:44:B9:31:D9:6D:A8:26:78:C0:14:76:63
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/ec25bd-219e-4d02-a532-0799a52a6387/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/ec25bd-219e-4d02-a532-0799a52a6387/1/ahfeGIf8-pJEuTHZbagmeMAUdmM.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.119.88.0/21
89.239.0.0/19
IPv6:
2a02:4000::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
35361
41267
Signature Algorithm: sha256WithRSAEncryption
36:ea:b1:49:87:1b:ee:a3:57:48:f3:8f:6e:38:21:26:64:ed:
84:e1:ce:c7:fe:29:74:c4:bb:8e:85:c4:77:6b:33:8b:cb:01:
34:01:9e:9c:19:71:de:94:3e:41:8f:6d:fd:d3:4f:7b:41:e2:
d2:b5:7f:99:db:12:98:29:c4:58:97:36:d9:97:c9:26:29:40:
30:aa:53:d1:21:dd:35:1d:78:0a:47:5b:d8:e6:72:43:3a:70:
3e:ce:b5:64:68:c4:40:c0:31:da:48:7a:9e:61:ed:b4:c4:e3:
86:b5:23:df:23:ed:e4:0b:e6:17:87:5d:e9:85:87:4b:ef:ce:
3a:63:47:86:b3:85:75:86:7a:d9:aa:f1:22:df:84:77:a1:0a:
be:77:7e:92:a9:5b:b7:50:ea:91:6b:1e:ab:35:95:2e:8c:c5:
19:d3:88:5b:74:40:01:63:0a:84:cb:91:e8:5d:75:76:61:ca:
d1:31:c1:10:ee:38:88:37:8f:41:31:43:5c:bc:00:71:92:40:
62:89:42:3b:ed:f8:83:90:a1:d9:89:a5:90:b4:cd:1e:19:b5:
04:58:40:cd:6e:83:a8:9d:51:50:21:2c:39:42:f9:ed:83:ef:
d3:90:88:8b:6e:4b:8b:45:3b:3a:4f:75:31:10:af:7f:21:a7:
8d:41:87:4f
-----BEGIN CERTIFICATE-----
MIIFrjCCBJagAwIBAgISAYzI33UG+rV8j8Z1WghpLJY4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAyMDYzMjE2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2YTE3ZGUxODg3ZmNmYTkyNDRiOTMxZDk2ZGE4MjY3OGMwMTQ3NjYzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlOw0meuQPrGiBFlfvSWUQ32pMJ9j
nienoMsypWIgQ9/NEHGTjD4UH973GknnkD5BYad3R6ETrGFqQUlbQYb+G1y9Cqif
jCupASXx361jFfue1v5ixmbNYaPHtf0Q2JWL78Ty/tdrvUHjACaH0Ha8X5UV4bVS
qC3F3EdmlMWDvRSciD0eU/DYcIOnIXdNXfbJOPae8ismK0P5yUejJMWS5dsHwQeW
+3Ne5wF/m2eZ7Y+J1K85bLPOJz8oiseMfelb+H9LKjg9QSCvb5hbQQslRz7HoTl5
Q2jajzlbrRwTuOT5BAi5g4baTRaMQ370tbuHoBeE7Njlqa1MKTrtOnsM1QIDAQAB
o4ICujCCArYwHQYDVR0OBBYEFGoX3hiH/PqSRLkx2W2oJnjAFHZjMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzU0L2VjMjVi
ZC0yMTllLTRkMDItYTUzMi0wNzk5YTUyYTYzODcvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTQvZWMyNWJk
LTIxOWUtNGQwMi1hNTMyLTA3OTlhNTJhNjM4Ny8xL2FoZmVHSWY4LXBKRXVUSFpi
YWdtZU1BVWRtTS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDQGCCsGAQUF
BwEHAQH/BCUwIzASBAIAATAMAwQDVXdYAwQFWe8AMA0EAgACMAcDBQMqAkAAMB8G
CCsGAQUFBwEIAQH/BBAwDqAMMAoCAwCKIQIDAKEzMA0GCSqGSIb3DQEBCwUAA4IB
AQA26rFJhxvuo1dI849uOCEmZO2E4c7H/il0xLuOhcR3azOLywE0AZ6cGXHelD5B
j2390097QeLStX+Z2xKYKcRYlzbZl8kmKUAwqlPRId01HXgKR1vY5nJDOnA+zrVk
aMRAwDHaSHqeYe20xOOGtSPfI+3kC+YXh13phYdL7846Y0eGs4V1hnrZqvEi34R3
oQq+d36SqVu3UOqRax6rNZUujMUZ04hbdEABYwqEy5HoXXV2YcrRMcEQ7jiIN49B
MUNcvABxkkBiiUI77fiDkKHZiaWQtM0eGbUEWEDNboOonVFQISw5Qvntg+/TkIiL
bkuLRTs6T3UxEK9/IaeNQYdP
-----END CERTIFICATE-----
Generated at Fri May 3 01:53:16 2024 by rpki-client on console-ams.rpki-client.org