Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ahfeGIf8-pJEuTHZbagmeMAUdmM.cer
File: ahfeGIf8-pJEuTHZbagmeMAUdmM.cer (raw, json)
Hash identifier: BwGfT+Kw8PUCUOW+dORmXPgXuP0YHon2XVbLD4GDDS8=
Subject key identifier: 6A:17:DE:18:87:FC:FA:92:44:B9:31:D9:6D:A8:26:78:C0:14:76:63
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019343E813BB88FF7123A4508AB184059D70
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/54/ec25bd-219e-4d02-a532-0799a52a6387/1/ahfeGIf8-pJEuTHZbagmeMAUdmM.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/54/ec25bd-219e-4d02-a532-0799a52a6387/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 19 Nov 2024 10:11:43 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 35361
IP: 85.119.88.0/21
IP: 89.239.0.0/19
IP: 2a02:4000::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:43:e8:13:bb:88:ff:71:23:a4:50:8a:b1:84:05:9d:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Nov 19 10:11:43 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6a17de1887fcfa9244b931d96da82678c0147663
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:ec:34:99:eb:90:3e:b1:a2:04:59:5f:bd:25:
94:43:7d:a9:30:9f:63:9e:27:a7:a0:cb:32:a5:62:
20:43:df:cd:10:71:93:8c:3e:14:1f:de:f7:1a:49:
e7:90:3e:41:61:a7:77:47:a1:13:ac:61:6a:41:49:
5b:41:86:fe:1b:5c:bd:0a:a8:9f:8c:2b:a9:01:25:
f1:df:ad:63:15:fb:9e:d6:fe:62:c6:66:cd:61:a3:
c7:b5:fd:10:d8:95:8b:ef:c4:f2:fe:d7:6b:bd:41:
e3:00:26:87:d0:76:bc:5f:95:15:e1:b5:52:a8:2d:
c5:dc:47:66:94:c5:83:bd:14:9c:88:3d:1e:53:f0:
d8:70:83:a7:21:77:4d:5d:f6:c9:38:f6:9e:f2:2b:
26:2b:43:f9:c9:47:a3:24:c5:92:e5:db:07:c1:07:
96:fb:73:5e:e7:01:7f:9b:67:99:ed:8f:89:d4:af:
39:6c:b3:ce:27:3f:28:8a:c7:8c:7d:e9:5b:f8:7f:
4b:2a:38:3d:41:20:af:6f:98:5b:41:0b:25:47:3e:
c7:a1:39:79:43:68:da:8f:39:5b:ad:1c:13:b8:e4:
f9:04:08:b9:83:86:da:4d:16:8c:43:7e:f4:b5:bb:
87:a0:17:84:ec:d8:e5:a9:ad:4c:29:3a:ed:3a:7b:
0c:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:17:DE:18:87:FC:FA:92:44:B9:31:D9:6D:A8:26:78:C0:14:76:63
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/ec25bd-219e-4d02-a532-0799a52a6387/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/ec25bd-219e-4d02-a532-0799a52a6387/1/ahfeGIf8-pJEuTHZbagmeMAUdmM.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.119.88.0/21
89.239.0.0/19
IPv6:
2a02:4000::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
35361
Signature Algorithm: sha256WithRSAEncryption
09:a3:7b:f1:3f:0a:e9:df:2f:b0:cd:94:b8:2f:45:3c:64:21:
4c:c2:0b:4a:03:b6:83:3b:10:7b:68:90:7f:44:c2:e0:29:4f:
a9:c1:d4:1e:c9:a3:fd:2b:23:61:cc:81:3c:7d:c3:2c:66:86:
06:76:cc:78:a8:77:2e:72:5c:4c:06:5d:de:80:f8:3e:42:1e:
84:12:02:e2:74:7c:aa:2b:95:24:db:2d:c9:db:7d:ef:38:21:
26:01:90:85:1a:09:82:81:b8:c7:7e:2f:01:48:fb:b2:9f:24:
4f:15:bc:11:c8:5f:97:a6:46:29:41:4b:4a:b7:26:f7:8c:ae:
fc:64:7d:e6:40:4a:54:04:dd:1e:32:d6:46:3d:fc:07:bc:96:
8a:26:82:4d:e3:f0:b2:99:29:12:27:b6:e7:78:44:42:b1:8e:
f0:e6:b9:6f:88:42:b1:c4:a9:2b:80:4d:57:62:6c:14:0f:2c:
cd:0d:a4:02:c1:ac:08:a3:ba:da:f1:01:02:aa:9a:a8:96:98:
aa:57:c6:31:ca:6c:d5:d7:cb:9c:db:7c:5a:55:bc:ce:4a:a0:
78:ae:2c:88:8f:5d:be:24:32:f4:2a:2a:8b:52:aa:e0:50:10:
ed:a4:ee:85:87:44:d3:54:09:7f:bc:c8:82:1d:87:64:54:3a:
cd:51:f7:eb
-----BEGIN CERTIFICATE-----
MIIFqTCCBJGgAwIBAgISAZND6BO7iP9xI6RQirGEBZ1wMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQxMTE5MTAxMTQzWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2YTE3ZGUxODg3ZmNmYTkyNDRiOTMxZDk2ZGE4MjY3OGMwMTQ3NjYzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlOw0meuQPrGiBFlfvSWUQ32pMJ9j
nienoMsypWIgQ9/NEHGTjD4UH973GknnkD5BYad3R6ETrGFqQUlbQYb+G1y9Cqif
jCupASXx361jFfue1v5ixmbNYaPHtf0Q2JWL78Ty/tdrvUHjACaH0Ha8X5UV4bVS
qC3F3EdmlMWDvRSciD0eU/DYcIOnIXdNXfbJOPae8ismK0P5yUejJMWS5dsHwQeW
+3Ne5wF/m2eZ7Y+J1K85bLPOJz8oiseMfelb+H9LKjg9QSCvb5hbQQslRz7HoTl5
Q2jajzlbrRwTuOT5BAi5g4baTRaMQ370tbuHoBeE7Njlqa1MKTrtOnsM1QIDAQAB
o4ICtTCCArEwHQYDVR0OBBYEFGoX3hiH/PqSRLkx2W2oJnjAFHZjMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzU0L2VjMjVi
ZC0yMTllLTRkMDItYTUzMi0wNzk5YTUyYTYzODcvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTQvZWMyNWJk
LTIxOWUtNGQwMi1hNTMyLTA3OTlhNTJhNjM4Ny8xL2FoZmVHSWY4LXBKRXVUSFpi
YWdtZU1BVWRtTS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDQGCCsGAQUF
BwEHAQH/BCUwIzASBAIAATAMAwQDVXdYAwQFWe8AMA0EAgACMAcDBQMqAkAAMBoG
CCsGAQUFBwEIAQH/BAswCaAHMAUCAwCKITANBgkqhkiG9w0BAQsFAAOCAQEACaN7
8T8K6d8vsM2UuC9FPGQhTMILSgO2gzsQe2iQf0TC4ClPqcHUHsmj/SsjYcyBPH3D
LGaGBnbMeKh3LnJcTAZd3oD4PkIehBIC4nR8qiuVJNstydt97zghJgGQhRoJgoG4
x34vAUj7sp8kTxW8Echfl6ZGKUFLSrcm94yu/GR95kBKVATdHjLWRj38B7yWiiaC
TePwspkpEie253hEQrGO8Oa5b4hCscSpK4BNV2JsFA8szQ2kAsGsCKO62vEBAqqa
qJaYqlfGMcps1dfLnNt8WlW8zkqgeK4siI9dviQy9Coqi1Kq4FAQ7aTuhYdE01QJ
f7zIgh2HZFQ6zVH36w==
-----END CERTIFICATE-----
Generated at Sat Nov 23 10:54:07 2024 by rpki-client on console-ams.rpki-client.org